honor_lockedshields

Locked Shields 24

Deputy Team Leader

*Ministry of National Defense

honor_defcon

DEFCON CTF 32

FINALIST

*Team ColdFusion

honor_bestofthebest

Next-generation security
leader training program

BoB 5th BEST 10

honor_25

CyberNet23, BOTS ...

Awards Win


Threat Hunting

Cyber Forensic

AI

Cyber Attack Emulation

Security Operation

Research

Product Manage

UI/UX Design

Algorithm

Threat Hunting

Cyber Forensic

AI

Cyber Attack Emulation

Security Operation

Research

Product Manage

UI/UX Design

Algorithm

Threat Hunting

Cyber Forensic

AI

Cyber Attack Emulation

Security Operation

Research

Product Manage

UI/UX Design

Algorithm

Don't wait,
find solutions myself.

I have been working as an cyber security expert for 7 years .
Worked on a number of issues across Blue Team missions and security research.
Identified 3 undetected malware and internal vulnerabilities in one year as a founding member of the threat hunting team (9 total)
Proposed and implemented development plans for national-level security breach investigations and security control improvements
Configured APT group cyber attack automation for reinforcement learning research

For the user experience,
change it efficiently.

80% of information security incidents are caused by human error, not by the advanced technical skills of hackers or malware.
Reduced false positives and improved visibility to achieve zero missed responses in security operations
Boosted threat hunting efficiency by 5x with click-driven dashboards and automation
Cut big data search time from 25.3 seconds to 1.3 seconds using data models and preprocessing

Prioritizing the essence over technology, getting things done.

Share visions and goals with communities based on a business mindset.
I've planned and led initiatives in various fields, including cyber training, consulting, hackathons, and marketing, achieving excellent results.
Deputy Team Leader for the MND in NATO CCDCOE's 'Locked Shields 2024,
'the world's largest international cyber defense exercise
Top 10 in the 5th Best of the Best program for nurturing next-generation security leaders
Winner of hackathons and idea/planning contests

Work Experience

Now
logo_add
Agency for Defense Development
Cyber Center
Information Security Researcher
•  Analyzed and implemented nation-state-level cyberattack processes, including APT29, FIN7, etc
•  Developed automated response modules for Windows clients based on the MITRE ATT&CK
•  Reduced time by over 4x compared to traditional manual attacks through the automation of APT cyberattack emulation using Caldera
2023.07
logo_mnd
Republic of Korea Defense Communication Command
Ministry of National Defense Direct Cyber Operations Center
Cyber Threat Hunting Leader
•  Developed policies and managed dashboards using Splunk and IBM Qradar as a starting member
•  Developed and optimized queries for efficient hunting of over 200 million daily log events
•  Created drill-down dashboards without query language for improved UX
•  Reduced analysis time by 5x with automated report generation during idle hours
•  Proposed improvements based on annual cyber incident statistical analysis
•  Identified and analyzed over 9 cases of data breaches, viruses, and military web service vulnerabilities
•  Represented the military in international cyber exercises


Incident Response and Analysis Officer
•  Analyses of security incidents, including techniques of document-based malware and beacon malware (Cobalt Strike)
•  Led seminars and applied CTI-based trends in malware and vulnerabilities
•  Responded to simulated attacks through quarterly cyber drills
•  Participated in joint competitions and problem-solving to enhance team members' forensic skills
2021.12
logo_mnd
Republic of Korea Defense Communication Command
Ministry of National Defense Direct Cyber Operations Center
Security Operations Center Team Leader
• Improved false positives in SIEM by 95% for over 10,000 daily events
•  Achieved zero missed responses by implementing critical log highlighting and statistical filtering in existing solutions
• Operated multiple security solutions including ESM, UTM, IPS, WAF, NAC, and email security
2020.06
logo_add
Agency for Defense Development
Cyber Center
Information Security Researcher
•  Diversified seed scheduling algorithms while improving fuzzing techniques, achieving up to 230% increased coverage compared to previous methods
•  Awarded the Excellent Presentation Paper Award by the Korean Institute of Information Scientists and Engineers
•  Acquired 7 CVEs and 1 intellectual property patent
2018.06

Other Experience

Locked Shields 23/24

Under the auspices of NATO CCDCOE(Cooperative Cyber Defence Centre of Excellence), participated in the world's largest and most complex cyber defense exercise, competing with 40 countries globally. Represented the military in joint training with various government, financial, and energy institutions.

2023.03~2023.04. / 2024.04~2024.05.

RESULT

•  '24 The only team in the world to identify all custom malware

•  '24 Overall ranking: 11th → 8th (detailed rankings not disclosed)

•  '23 Identified and blocked over 40 Red Team attacks, including web shells, ransomware, and reverse shells

•  '23 Technical ranking: 13th → 7th

POSITION

•  '24 Deputy Team Leader (Ministry of National Defense, Republic of Korea)

•  '23 Threat Hunting Team Leader

TASKS

•  Managed training and coordinated with cybersecurity institutions

•  Established and optimized security systems (Zeek, Suricata, Sysmon) and integrated with Splunk

•  Designed threat hunting policies, and built dashboards and apps for service managers

•  Optimized search speed using data models (average search time 25.3s→1.3s)

CyberNet 2023

Participated in an international live cyber offense and defense exercise hosted by the Netherlands Cyber Command, competing with 10 countries including Germany, the UK, and Japan.

2023.04~2023.05.

RESULT

•  Winner (1st place)

POSITION

Republic of Korea Blue Team

TASKS

•  Performed real-time service vulnerability analysis and patching

•  Developed an AI-based automated vulnerability reporting program

•  Developed a program to conceal attack techniques using noise

BEST of the BEST 5th

A program organized by KITRI(Korea Information Technology Research Institute) to nurture South Korea's top next-generation security leaders.

2016.07~2017.03.

RESULT

•  Selected as one of the top talents (BEST 10)

•  Discovered 17 vulnerabilities in commercial security solutions

•  Presented at KISA(Korea Information Security Agency)'s Q1 2017 Cyber Security Incident Seminar

POSITION

Security Consulting

TASKS

•  Designed security architecture, provided governance consulting, performed system/web hacking, and managed information security certification

•  Proposed vulnerability attack scenarios via security solutions

•  Planned projects and analyzed vulnerabilities in commercial security solutions

Honors

security
2024 WhiteHat Contest
2024/11/20
3rd
security
Codegate : GLOBAL AI IDEA LAB CONTEST
2024/08/30
3rd
security
CTF(Catch the Flag) records
2024/08/10
-
security
Locked Shields 2024 - NATO CCDCOE
2024/04/23
Deputy Team Leader, MND
security
Cyber Talpiot Hackathon 2023
b
2023/12/10
Grand Prize
security
Cyber Security AI & Big Data Challenge 2023
b
2023/11/22
Grand Prize
security
Commendation for Excellence in Cyber Operations
b
2023/06/30
Minister of National Defense Award
security
CyberNet 2023
b
2023/05/18
Winner
security
Locked Shields 2023 - NATO CCDCOE
2024/05/04
MND Representative
security
MITRE CVE ID registration
2020/09/03
7 Cases
security
Korea Software General Conference 2019ㅤ
2019/12/18
Excellent Presentation Paper
security
5th Best of the Best
2017/03/31
BEST10
security
Wins Security Solution Bug Bounty Certification
2016/12/15
1st
security
4th WhiteHat Contest Technical Policy Competition
2016/11/01
Grand Prize
algorithm
29th Korea Olympiad in Informatics (KOI) National Competition
2012/09/21
Silver Prize
algorithm
28th Korea Olympiad in Informatics (KOI) National Competition
2011/08/24
Bronze Prize
algorithm
5th National Programming Competition
2011/07/22
Silver Prize
algorithm
KOISTUDY-IamCoder Competition
2012/04/07
1ST
marketing
DuPont Safety Innovation Idea Contest 2015ㅤ
2015/12/16
Grand Prize
marketing
Hana Bank - "Create Your Own Hana Members" Idea Contest
2017/06/09
Final
marketing
Amorepacific Brand Challenge 2015ㅤ
2015/05/22
Final
Education

Korea University
School of CyberSecurity

•  Ongoing research

2019.09 -

Master

Korea University
Department of Cyber Defense

•  Completed courses in system/web hacking, cryptography, international law, reverse engineering, compilers, security engineering, databases, etc.

2014.03-2018.02.

Bachelor

Gyeonggi Science High School for the Gifted

•  Captain of the 29th class of the Information Science Club ‘Semtel’

•  Member of the algorithm academic club ‘I am Coder’

2011.03-2014.02.

Graduate

Certificate

CPPG

(Certified Privacy Protection General)

Korea Chief Privacy Officers Forum

2024.04.

G24-041-01-00097

Engineer Information Processing

Ministry of Science and ICT

2018.12.

HRD-20210314151719-31891