Antwerp, Flemish Region, Belgium
Cybersecurity professional with hands-on experience across application security, penetration testing, enterprise identity, endpoint security and vulnerability management. I combine offensive security knowledge with practical enterprise IT operations and client-focused remediation support.
Supporting enterprise IT operations with a security-first approach across identity, endpoint, and network infrastructure. • Identity & Access Management: Administer Azure AD and on-prem Active Directory — security group provisioning, conditional access policies, privileged account reviews, and role-based access control enforcement across the organization. • Endpoint Security: Manage device compliance and hardening through Microsoft Intune — deploying MDM/MAM configurations, compliance policies, OS patching cadence, and conditional device enrollment to reduce endpoint attack surface. • Incident Management: Handle incidents, problems, and service requests through ServiceNow, coordinating response and documentation in line with ITIL practices across Windows and macOS environments. • Network & Infrastructure: Maintain core network infrastructure (switches, routers, VPN, DNS/DHCP), troubleshooting connectivity and access issues across hybrid environments. • Vendor & Cross-team Collaboration: Partner with internal teams and external vendors on infrastructure improvements, contributing to availability, performance, and overall security posture. • Documentation & Knowledge Sharing: Document procedures, recurring incidents, and resolution patterns to support continuous improvement of IT and security processes.
Designed and delivered offensive and defensive cybersecurity curricula as both bootcamp instructor and Udemy course creator. • Offensive Security Curriculum: Authored and recorded comprehensive red-team courses — Full Ethical Hacking, Web Application Penetration Testing, Metasploit Framework, and Burp Suite Professional — covering reconnaissance, enumeration, exploitation, and post-exploitation workflows. • Defensive Security Curriculum: Developed blue-team content spanning FortiGate Administration, CompTIA Security+ preparation, Qualys EDR, and Qualys CSAM — covering firewall management, endpoint detection, and vulnerability management programs. • Bootcamp Instruction: Taught networking fundamentals (switching, routing, VLANs, DHCP, DNS, subnetting, infrastructure security), Offensive Security, and Cryptology across an 8-month intensive cybersecurity bootcamp. • Curriculum Design: Built structured lesson plans, hands-on labs, and assessment exercises aligned with industry standards and real-world attack techniques. • Mentorship: Provided 1:1 career guidance, technical support, and personalized feedback to students transitioning into cybersecurity and IT roles. • Content Maintenance: Continuously updated course material to reflect evolving threat landscape, tooling, and defensive best practices.
Delivered end-to-end penetration testing engagements for clients across logistics, construction, beverage production, and insurance sectors — covering scoping, execution, reporting, and remediation support. • Web Application & API Pentesting: Tested authentication and authorization flows, business logic, input validation, and endpoint-level security across REST APIs and web platforms. Identified issues including broken access controls, IDOR, injection vectors, session management flaws, and SSRF. • Network Pentesting (On-Prem & Cloud): Assessed internal and external network security, identifying misconfigurations, insecure architectures, exposed services, and privilege escalation vectors across hybrid environments. • Active Directory Assessments: Executed domain-level pentests covering Kerberoasting, AS-REP roasting, delegation abuse, lateral movement, and password policy weaknesses — mapping attack paths with BloodHound and leveraging Responder for credential capture. • Red-Team Style Engagements: Simulated realistic attacker behavior to evaluate detection gaps and organizational resilience — initial access, persistence, and internal pivoting scenarios. • Reporting & Client Collaboration: Delivered technical reports with prioritized findings, reproducible PoCs, and concrete remediation steps. Worked directly with client IT and security teams to support fixes and retest remediation. • Methodology & Research: Continuously researched emerging vulnerabilities, CVEs, and techniques to keep engagements aligned with the current threat landscape.