CV - Achille Dellìs

Most important achievements and projects:

Mobile App Reverse Engineering (HYPE)

I worked in a group of 4 people as an Android Specialist, tasked with proxying messages between API and mobile device using Android Studio and BurpSuite, successfully exploiting CWE-312.
I was also the Project Manager and organized the work following the PDCA method.

PSE - PaloAlto Security Engineer - Cortex Professional

Knowledge of complete management of Cortex XDR, XSIAM and XSOAR environments

Cyberlys - Browser Add-On for IOC Enrichment

Development of an add-on in JS, HTML, and CSS for enriching IP addresses, FQDNs, ASNs, and SHAs to speed up SOC incident analysis, integrating services such as OTX Alienvault, VirusTotal, GreyNoise, Hunter.io, Shodan, IPinfo, and Abuse.ch

Threat Actor Identification - Phishing attack type

I analyzed and traced the IP addresses linked to a threat actor who was conducting multiple attacks on customers. During the analysis, we were able to reconstruct the Cyber Kill Chain and permanently block the threats to our customers.
Article link

Skills

Proficient Knowledge

Python
EDR (SentinelOne, Cortex XDR & Sangfor)
MacOSX
SIEM

Basic Knowledge

JavaScript
MISP
PHP & SQL
PaloAlto NGFW

Languages

🇮🇹 Italian - Native speaker

🇬🇧 English - Intermediate - B1/B2

🇬🇷 Greek - Intermediate - B1/B2

🇩🇪 German - Elementary / Communicative - A2

Education

2020-2022 - ITS: Industrial Cybersecurity Specialist

Post diploma course, structured in 1200 hours of classroom lessons and 800 hours of internship. During the first year I was able to study offensive techniques and during the second year I studied defense techniques in the field of cybersecurity. During this course the professors came from companies such as: Swascan, Schneider Eletric, Wärtsilä and Spritz - Researchers of the University of Padua.

2014-2020 - ITC Einaudi - Padua

Diploma in Company Information Systems
Final Grade of the diploma: 76/100
Main Subjects:

Computer science;
Law;
Business Administration;
Political Economy;
English.

Work Experience

06.2021 - 09.2021Carraro S.p.A.
Position: Industrial CyberSecurity Analyst

Tech stack: Nmap / Ghidra / HDA10 / Gophish / Windows Process Analyzer

Help Desk
Phishing campaign
SentinelOne installation
Process analysis with two antiviruses at the same time: SentinelOne and Symantec
Windows Process
Malware Analysis

11.2021 - 06.2022 Pietro Fiorentini S.p.A.
Position: Data Information Security Analyst

Tech stack: ProofPoint Security Education, ProofPoint Threatsim, Symantec Email Security

Security Awareness
Phishing campaign with custom landing page and email body
Spam filter management

06.2022 - 03.2023 Wintech S.p.A.
Position: Network Security Administrator

Tech stack: PaloAlto NGFW / Symantec EPP / Kayako / Sangfor XDR / Networking

NOC (Network Operation Control)
SIEM Management (Wazuh, Sumo Logic)
Starting an awareness cybersecurity program(Gophish)
Watchguard, Palo Alto and Sonicwall Firewalls configuration
Mikrotik configuration
Huawei/Comware/Procurve Switch configuration (Port, VLAN, Routing, etc...)
Avaya VOIP management (Avaya Manager, Status, Monitor)
Grandstream VOIP management
On site support (Domain migration, client support, network material installation)
Endpoint Protection Console Management (Symantec EPP)
Software selection (EPP, EDR, XDR)
Help Desk (Network and Client)
EDR management and testing(Sangfor Endpoint Secure)

03.2023 - Today Cyberlys - ACS Data Systems S.p.A.
Position: L1 SOC Engineer

Tech stack: SOC / Digital Forensics / Incident Response / Cyber Threat Intelligence /Python Scripting/ Threat Analysis

Security Operation Control 24/7
Management of MDR and MXDR solution consoles (PA Cortex and SentinelOne)
Script programming in Python, JS
Cyber Threat Intelligence (CTI)
Cyber Kill Chain
Incident Response
Management of SIEM Sumo Logic
Cybersecurity implementations on PaloAlto NGFW
Management of OPENCTI and MISP platforms
Phishing email analysis
Management, development, and maintenance of Chrome Add-Ons for IOC analysis
CyberSecurity Ticketing