IT Security Analyst

Incident Response

Digital Forensics

Sebastian Heise

Aloha! I'm a Security Analyst at Bechtle Cyber Defense Center, where I've been contributing since 2022. My multifaceted role encompasses SOC analysis, incident management and response, digital forensics, and research, making me an integral part of our cybersecurity efforts.

Social Media Contact

Resolved Incidents

100+

Days in DFIR

Days

* Last edited: 11/2023

What I Do

Incident Manager

As an Incident Manager, I oversee the complete incident response process in organizations. My role involves managing incidents, prioritizing based on severity, coordinating communication among teams and stakeholders, escalating high-severity incidents, and conducting post-incident reviews for continuous improvement. Essentially, my job ensures efficient incident handling to minimize their impact on our operations.

Digital Forensics

As a Digital Forensics Analyst, I investigate cyber incidents by analyzing digital evidence from devices and networks. My tasks include identifying, preserving, extracting, and documenting digital data, using specialized tools to retrieve even manipulated or deleted information. I maintain the integrity of evidence for legal use, collaborate with professionals like law enforcement, and aim to uncover the details of digital security incidents to assist in their prevention.

Cyber Threat Intelligence

As a Security Analyst, I believe that Cyber Threat Intelligence and Research are crucial elements of proactive defense. By gathering and analyzing information about potential threats and threat actors, we can better anticipate, prepare for, and respond to attacks. In my role, I actively engage in this intelligence gathering and research to understand the current threat landscape and bolster our cybersecurity measures accordingly.

Incident Responder

As an Incident Responder, I identify, assess, and mitigate cybersecurity threats in organizations. My key duties involve detecting security incidents, containing the threat by isolating affected systems, and eliminating the root cause. After handling the incident, I help to restore the systems to normal operation and conduct a review to improve future responses.

SOC Analyst

As an SOC Analyst, I monitor and safeguard our customer's cybersecurity. I detect potential threats, respond to security incidents, conduct proactive threat hunting, and maintain security tools and procedures. I also provide regular security status updates to stakeholders.

Clients

Resume

IT-Security | Digital Forensics | Incident Response

Experience

2022 - Current

Bechtle

IT Security Analyst

At the Bechtle Cyber Defense Center, my role spans across Incident Response, Digital Forensics (DFIR), Security Operation Center (SOC) duties, and Security Consulting. I actively detect, analyze, and mitigate cybersecurity threats, ensuring an efficient incident resolution process. My DFIR work involves investigating cyber incidents, analyzing digital evidence, and helping to prevent future threats.
As part of the SOC, I monitor our digital infrastructure for potential threats, maintaining our security systems and procedures.
In my security consulting capacity, I provide valuable insights into security risks and assist in formulating robust defense strategies.

2019 - 2022

Bechtle

Training as IT Specialist in System Integration

As an IT Specialist, one plans, configures, and networks modern IT systems or software. This can be accomplished within one's own company or at client locations. Additional responsibilities include troubleshooting system disruptions and providing user training.

2018 - 2019

RFC GmbH

IT Administrator

2017 - 2018

RFC GmbH

IT Intern / Working Student

Education

2019-2022

Bechtle

Training as IT Specialist in System Integration

2015-2018

TU Chemnitz

Study of Applied Computer Science

2012-2015

Fachabitur

Tech Skills

Windows Forensics (Client/Server)

80%

Linux Forensics (Client/Server)

65%

Firewall

40%

IoT (Work in Progress)

20%

Coding Skills

Bash

85%

Python

65%

PowerShell

60%

Go

45%

Languages

Deutsch

100%

Englisch

85%

Knowledges

IT-Security
Digital Forensics
IoT
Webserver
Windows Forensics
Linux Forensics
nginx
Hosting
Git
Cloudflare
Time Management
Webapplication Firewall
Communication

Certificates & Trainings

Certificates

Certified Threat Hunter

Credly

June 2022

Cybereason

Trainings

C# Programmierung Basiswissen

June 2020

Bechtle

Cisco Routing & Switching Fundamentals

August 2021

Bechtle

Certified Technical Specialist

September 2021

Cybereason

VMware Carbon Black EDR Administrator

August 2022

VMware Carbon Black

VMware Carbon Black EDR Advanced Analyst

October 2022

VMware Carbon Black

SOC Analyst Course

Accredible

September 2022

CQURE Academy

System Forensics and Incident Handling

Accredible

October 2022

CQURE Academy

IT Security Analyst

Incident Response

Digital Forensics

Sebastian Heise

Resolved Incidents

Days in DFIR

What I Do

Incident Manager

Digital Forensics

Cyber Threat Intelligence

Incident Responder

SOC Analyst

Clients

Resume

IT-Security | Digital Forensics | Incident Response

Experience

2022 - Current

IT Security Analyst

2019 - 2022

Training as IT Specialist in System Integration

2018 - 2019

IT Administrator

2017 - 2018

IT Intern / Working Student

Education

2019-2022

Training as IT Specialist in System Integration

2015-2018

Study of Applied Computer Science

2012-2015

Fachabitur

Tech Skills

Windows Forensics (Client/Server)

Linux Forensics (Client/Server)

Firewall

IoT (Work in Progress)

Coding Skills

Bash

Python

PowerShell

Go

Languages

Deutsch

Englisch

Knowledges

Certificates & Trainings

Certificates

Certified Threat Hunter

Trainings

C# Programmierung Basiswissen

Cisco Routing & Switching Fundamentals

Certified Technical Specialist

VMware Carbon Black EDR Administrator

VMware Carbon Black EDR Advanced Analyst

SOC Analyst Course

System Forensics and Incident Handling

Contact

Get in Touch

DE, Chemnitz

0371 23557356

[email protected]