Focused on understanding how systems behave, how attackers think, and how defenses can be engineered to be resilient.
| Category | Tools & Technologies |
|---|---|
| Adversary Emulation | Atomic Red Team MITRE Caldera SCYTHE PurpleSharp |
| Threat Intelligence | MITRE ATT&CK Framework Threat Intelligence Feeds |
| Visibility & Analysis | Splunk ELK Stack Wireshark Cribl |
| Detection Engineering | Sigma Rules Yara SPL (Splunk) KQL |
| Purple Team Ops | VECTR DeTTECT Picus BAS SafeBreach |
| Offensive Tooling | Metasploit Cobalt Strike Sliver Impacket |
| Programming | Python Bash PowerShell JavaScript C |
| Infrastructure | Linux Windows macOS GCP AWS Azure |
π Freelance Security Consultancy (JAB Solution)
- Detection Engineering: Developed 20+ detection rules (SPL, Sigma, YARA), reducing false positives by ~30%.
- Automation: Deployed security controls that reduced manual analyst workload by ~25%.
- Anti-Phishing: Built workflows that lowered user-reported phishing incidents by ~35%.
- Hardening: Conducted posture assessments reducing attack surface by 20%.
π Management & Operations (Lapponia Oy / La Villetta Oy)
- Operations: Oversaw nationwide exhibition operations, improving efficiency by ~20%.
- Leadership: Led and coached multicultural teams, increasing performance scores by ~15%.
- Strategic Analysis: Delivered data-driven analyses to achieve annual sales targets.
- ISC2: Certified in Cybersecurity (CC)
- Fortinet: NSE 1 & NSE 2 (Fundamentals & Threat Landscape)
- LetsDefend: SIEM Engineer Career Path
- Talent Garden: Deep - Cybersecurity Bootcamp (Thesis on Digital Terrorism)
- In Progress:
CompTIA Security+Splunk Core Certified UserLinux LPI Essentials
- HelSec: Member since 2024
- TryHackMe: Top 5% Global
- LetsDefend: Top 3 in Finland
- LinkedIn: jacopo-falcone