Marcel Malet Abuli

CEO

Barcelona, Spain17 yrs experience

Most Likely To SwitchHighly Stable

Key Highlights

Over 15 years of experience in Cyber Security.
Expert in Security Architecture and Threat Detection.
Led multiple security programs in SaaS environments.

Stackforce AI infers this person is a Cyber Security expert specializing in SaaS and Cloud Security solutions.

Contact

Skills

Core Skills

Cyber Security ManagementSecurity ArchitectureSecurity OperationsApplication SecurityThreat Detection EngineeringThreat DetectionData Loss PreventionIt Security ManagementCyber Security ResearchSecurity Consulting

Other Skills

Microsoft AzureAWSSplunkIncident ResponseVulnerability ManagementSIEMThreat ModelingMITRE ATT&CKTerraformGitHubDLP-CASBAzureCloud SecurityPythonBash Scripting

About

Cyber Security Engineer with more than 15 years of experience. Currently, I am Cyber Security Manager at Lodgify (a +350 employee SaaS company), integrated in its Platform Team. I am an engineer with a strong experience architecting and implementing security solutions in complex and distributed environment, especially security monitoring and threat detection solutions. Also with experience on Incident Response and Pentesting (mainly securing Cloud and web applications). Main areas of expertise: • Security Architecture (for cyber security threat detection). • Cloud Security: Microsoft Azure, AWS services. • SIEM: Splunk Cloud & Enterprise Security, Sumo Logic. • Web and Public Cloud Security Monitoring & Alerting.

Experience

17 yrs

Total Experience

2 yrs 5 mos

Average Tenure

3 yrs 3 mos

Current Experience

Lodgify

Cyber Security Manager

Feb 2023 – Present · 3 yrs 3 mos · Barcelona, Cataluña, España · Hybrid

Leading Lodgify Cyber Security (remote) team. Involved in projects such as:
▪ Cyber Security roadmap definition.
▪ Developing a Security Operations program (Threat Detection/SIEM, Incident Response
procedures, Threat Intel, Endpoint Security).
▪ Developing an Application Security program. (Threat Modeling, SAST/DAST,
Vulnerability Management, Bug Bounty platform).
▪ Led the rollout of security tools and processes.
▪ Working with Product Management team to design security features for SaaS product (e.g 2FA).
▪ Participation in the replacement of a VPN solution with a Zero Trust Network Access system.
▪ Security Incident Response Management.
▪ Development of company security policies and procedures.
▪ Collaboration with cross-functional teams, (Product, Customer Success, Development, Privacy/Legal)
▪ Budget definition & hiring.

Microsoft AzureAWSSplunkThreat DetectionIncident ResponseSecurity Architecture+2

Zendesk

Threat Detection Engineer

Jan 2022 – Feb 2023 · 1 yr 1 mo · Barcelona, Cataluña, España · Remote

Member of Threat Detection Operations Team. Team responsible for Threat Intelligence & Detection. Involved in tasks such as:
▪ Lead threat coverage assessments (with MITRE ATT&CK® Navigator and DeTT&CT).
▪ Lead SIEM tools assessments (Requirements, PoCs...).
▪ Detection technologies review.
▪ Coordination with Red team to define new detections based Breach and Attack Simulations.
▪ Detection as Code (Terraform & GitHub).
▪ Tasks to evaluate/improve current CSOC architecture.
▪ Participation in DLP-CASB Project (Solutions tests...).
▪ Support to Incident Response tasks.
Also Knowledge/Experience about:
▪ Agile/DevOps organization and culture.
▪ UEBA: Exabeam.
▪ DataDog.

Threat DetectionSIEMMITRE ATT&CKTerraformGitHubDLP-CASB+1

Nestlé

Cyber Security Specialist

Dec 2016 – Dec 2021 · 5 yrs · Barcelona y alrededores, España

Security Operations Engineer, member of Nestlé Security Monitoring & Alerting team, involved in tasks and projects to support cyber security threat detection, such as:
▪ Leading the design and deployment of a Threat Detection Platform with Splunk and Azure services. (Event Hubs, Data Lake Store) for different Nestlé brands, Nestlé divisions, etc...
▪ Splunk architecture and implementation tasks. (Applying DevOps methodologies, using Azure DevOps, Repos and Pipelines).
▪ Splunk content development: Use Cases for threat detection, focused on public clouds (Azure, AWS) and Web threats.
▪ Data ingestion architecture and management (Syslog, Splunk Forwarder, Azure Event Hubs, AWS Kinesis, Azure Monitor, Cribl LogStream).
▪ Cloud security monitoring strategy definition for public Clouds (AWS) and for Nestlé digital assets (e-commerce sites).
▪ Developing proof of concepts to improve current SOC architecture.
▪ Threat hunting activities over stored logs.
Also knowledge about:
▪ Ability to code basic tasks in Python and Bash scripting.
▪ Amazon Web Services: CloudTrail, GuardDuty, CloudWatch, Kinesis, S3 buckets.
▪ Microsoft Azure: Event Hubs, Azure Container Instance.
▪ ELK stack: Elasticsearch, Logstash, Kibana, Filebeat.
▪ MITRE ATT&CK Framework.
▪ OWASP.

SplunkAzureThreat DetectionCloud SecurityPythonBash Scripting+1

Barcelona supercomputing center

IT Security Officer

Mar 2014 – Nov 2016 · 2 yrs 8 mos · Barcelona y alrededores, España

Member of BSC Operations department. Responsible for defining and applying the IT security policies at BSC:
▪ Development and implementation of security policies and procedures.
▪ Cloud Computing security (Internal advisory)
▪ Represent BSC as Information Security Officer in international projects.
▪ Monitor, audit, and solve security issues in all BSC IT Services.
▪ Design and development internal projects related to IT Security:
▪ ▪ IAM & Single Sign-On management.
▪ ▪ Log Management & SIEM with Open Source tools (OSSEC + ELK stack + Kafka + Storm).
▪ ▪ Automation of certain security functions (vuln. management, change management, etc.).
▪ ▪ Desgin and deployment of a Package & System Inventory based on Open Source solution.
▪ ▪ Internal Pentesting (Mainly Web)(White box).
▪ ▪ Newtwork Security: FortiGate-FortiAnalyzer & Palo Alto management.
▪ ▪ Vulnerability Management
▪ ▪ Administration of a Public Key Infrastructure (RA Operator).

IT Security PoliciesCloud SecurityIAMLog ManagementPentestingIT Security Management

Barcelona digital technology centre

IT Security Researcher

Sep 2010 – Mar 2014 · 3 yrs 6 mos · Barcelona y alrededores, España

Investigating new ways of protecting financial assets against cyber attacks, along with new methods of providing prevention and mitigation against those attacks.
Investigating in security and privacy in highly distributed environments, attending security problems from an ecosystem where there is a collaboration among high number of distributed elements.
Projects focused on:
▪ Security and Privacy in Cloud Computing environments (Identity as a Service).
▪ Design of authentication and authorization mechanisms.
▪ eBanking security (Design new solutions focused on preventing code injections).
▪ Risk assessment.
▪ Mobile device security (Android).
▪ Data Privacy.

Cyber SecurityRisk AssessmentData PrivacyCyber Security Research

Blueliv

IT Security Consultant/Pentester

Apr 2009 – Feb 2010 · 10 mos · Barcelona y alrededores, España

Involved in security audit projects in large banking and insurance institutions:
▪ Pentesting (black box)
▪ Web security audits.
▪ WIFI Penetration tests.
▪ Physical security audits.
▪ IT Infrastructure audits.
▪ Research and Development on new security tools.

PentestingWeb Security AuditsIT Infrastructure AuditsSecurity Consulting