“I started out as an all-round ‘generalist’ where I’ve gained many years of experience working for small business by configuration, migrating and troubleshooting Windows environments, private-cloud infrastructure and everything that comes with it like networking, storage and hypervisors.
But since the end of 2017 my focus has primarily shifted towards Microsoft Azure and as of late specifically Azure Security and other Microsoft Security products like Microsoft Sentinel.
Besides helping with architectural design choices, I also find it important to be able to build the solutions as well. So, I’m no stranger to ARM templates, PowerShell, Git and Azure DevOps Pipelines.
Lately I’ve been focussing mainly on implementing Microsoft Sentinel and improving Security Operation Centers by helping with the development of new detections and ingesting log sources. But also applying processes for automatic enrichments and investigations. So, KQL and Azure Logic Apps became two of my new best friends!
I like to share the challenges I encounter and my solutions in my articles on Medium (koosg.medium.com) and in session on events. This led to Microsoft awarding me MVP in the Security category in 2023.
#Microsoft #Security #MVP #Azure #Sentinel #DevOps #ARM #KQL #PowerShell #Logstash”
https://koosg.medium.com
Sessions
Secure Logstash connections to Microsoft Sentinel with ‘Rot8r’