ACHILLE DELLìS

Hi. My name is Achille, I work as a Cybersecurity Specialist in the SOC of Cyberlys a brand of ACS Data Systems in Trento. I love technology, nature and OSINT investigations.

Most important achievements and projects:

Mobile App Reverse Engineering (HYPE)

I worked in a group of 4 people as an Android Specialist, tasked with proxying messages between API and mobile device using Android Studio and BurpSuite, successfully exploiting CWE-312.
I was also the Project Manager and organized the work following the PDCA method.

PSE - PaloAlto Security Engineer - Cortex Professional

Knowledge of complete management of Cortex XDR, XSIAM and XSOAR environments

Cyberlys - Browser Add-On for IOC Enrichment

Development of an add-on in JS, HTML, and CSS for enriching IP addresses, FQDNs, ASNs, and SHAs to speed up SOC incident analysis, integrating services such as OTX Alienvault, VirusTotal, GreyNoise, Hunter.io, Shodan, IPinfo, and Abuse.ch

Threat Actor Identification - Phishing attack type

I analyzed and traced the IP addresses linked to a threat actor who was conducting multiple attacks on customers. During the analysis, we were able to reconstruct the Cyber Kill Chain and permanently block the threats to our customers.
Article link

Skills

Proficient Knowledge

  • Python
  • EDR (SentinelOne, Cortex XDR & Sangfor)
  • MacOSX
  • SIEM

Basic Knowledge

  • JavaScript
  • MISP
  • PHP & SQL
  • PaloAlto NGFW

Languages

๐Ÿ‡ฎ๐Ÿ‡น Italian - Native speaker

๐Ÿ‡ฌ๐Ÿ‡ง English - Intermediate - B1/B2

๐Ÿ‡ฌ๐Ÿ‡ท Greek - Intermediate - B1/B2

๐Ÿ‡ฉ๐Ÿ‡ช German - Elementary / Communicative - A2

Education

Post diploma course, structured in 1200 hours of classroom lessons and 800 hours of internship. During the first year I was able to study offensive techniques and during the second year I studied defense techniques in the field of cybersecurity. During this course the professors came from companies such as: Swascan, Schneider Eletric, Wärtsilä and Spritz - Researchers of the University of Padua.
Diploma in Company Information Systems
Final Grade of the diploma: 76/100
Main Subjects:
  • Computer science;
  • Law;
  • Business Administration;
  • Political Economy;
  • English.

Work Experience

06.2021 - 09.2021Carraro S.p.A.
Position: Industrial CyberSecurity Analyst

Tech stack: Nmap / Ghidra / HDA10 / Gophish / Windows Process Analyzer

  • Help Desk
  • Phishing campaign
  • SentinelOne installation
  • Process analysis with two antiviruses at the same time: SentinelOne and Symantec
  • Windows Process
  • Malware Analysis
11.2021 - 06.2022 Pietro Fiorentini S.p.A.
Position: Data Information Security Analyst

Tech stack: ProofPoint Security Education, ProofPoint Threatsim, Symantec Email Security

  • Security Awareness
  • Phishing campaign with custom landing page and email body
  • Spam filter management
06.2022 - 03.2023 Wintech S.p.A.
Position: Network Security Administrator

Tech stack: PaloAlto NGFW / Symantec EPP / Kayako / Sangfor XDR / Networking

  • NOC (Network Operation Control)
  • SIEM Management (Wazuh, Sumo Logic)
  • Starting an awareness cybersecurity program(Gophish)
  • Watchguard, Palo Alto and Sonicwall Firewalls configuration
  • Mikrotik configuration
  • Huawei/Comware/Procurve Switch configuration (Port, VLAN, Routing, etc...)
  • Avaya VOIP management (Avaya Manager, Status, Monitor)
  • Grandstream VOIP management
  • On site support (Domain migration, client support, network material installation)
  • Endpoint Protection Console Management (Symantec EPP)
  • Software selection (EPP, EDR, XDR)
  • Help Desk (Network and Client)
  • EDR management and testing(Sangfor Endpoint Secure)
03.2023 - Today Cyberlys - ACS Data Systems S.p.A.
Position: L1 SOC Engineer

Tech stack: SOC / Digital Forensics / Incident Response / Cyber Threat Intelligence /Python Scripting/ Threat Analysis

  • Security Operation Control 24/7
  • Management of MDR and MXDR solution consoles (PA Cortex and SentinelOne)
  • Script programming in Python, JS
  • Cyber Threat Intelligence (CTI)
  • Cyber Kill Chain
  • Incident Response
  • Management of SIEM Sumo Logic
  • Cybersecurity implementations on PaloAlto NGFW
  • Management of OPENCTI and MISP platforms
  • Phishing email analysis
  • Management, development, and maintenance of Chrome Add-Ons for IOC analysis
  • CyberSecurity Ticketing