Cybersecurity Engineer with SOC N1/N2 and Digital Risk Protection experience at Telefonica Tech, combining defensive operations with hands-on training in Offensive Security, Active Directory, Web & API Security and Enterprise Pentesting.
Offensive Security
Penetration Testing over infrastructure, WebApps and APIs
Vulnerability discovery, validation and exploitability analysis
Active Directory Security, internal networks and enterprise attack paths
Privilege Escalation, Lateral Movement, Pivoting and Post-Exploitation
eJPTv2 certified and CPTS currently in progress
Reporting & Communication
Technical reporting with findings, risk, impact and remediation guidance
Ability to explain technical ideas clearly to different audiences
Spanish native and English B2
Documentation of methodologies, writeups and lab evidence
Comfortable working with procedures, priorities and delivery quality
Enterprise AD Laboratory
Enterprise Active Directory lab designed for Red Team simulations
Attack paths aligned with MITRE ATT&CK techniques
Kerberoasting, AS-REP Roasting, NTLM Relay and Password Spraying
Pass-the-Hash, Pass-the-Ticket, DCSync, Golden Ticket and Silver Ticket
Blue Team detectability analysis and mitigation reporting
Tools & Scripting
Burp Suite, Nmap, Wireshark, Metasploit, FFUF and Gobuster
Python, PowerShell, Bash, Java, SQL, HTML, CSS and JavaScript
BloodHound, SharpHound, Impacket, NetExec, Mimikatz, Responder and Rubeus
Windows, Windows Server, Kali Linux, Ubuntu and Debian
TCP/IP, DNS, HTTP/S, SMB, LDAP, Kerberos, WinRM, SSH and RDP
Blue Team Background
SOC N1/N2 operations, alert triage and incident escalation
Digital Risk Protection and external threat analysis
IoC correlation, threat validation and defensive visibility
Microsoft Sentinel, Splunk, QRadar, NetWitness and Cortex XSIAM
Useful attacker mindset with defender context
Professional Mindset
Passion for technology, offensive security and continuous learning
Proactive attitude toward challenges and hands-on labs
Analytical thinking and attention to technical detail
Creative approach to attack paths and vulnerability validation