Locked Shields 24

‍Deputy Team Leader

*Ministry of National Defense

DEFCON CTF 32

FINALIST

*Team ColdFusion

Next-generation security
leader training program

BoB 5th BEST 10

CyberNet23, BOTS ...

Awards Win

Download My CV

Threat Hunting

✦

Cyber Forensic

✦

Cyber Attack Emulation

✦

Security Operation

✦

Research

✦

Product Manage

✦

UI/UX Design

✦

Algorithm

✦

Threat Hunting

✦

Cyber Forensic

✦

Cyber Attack Emulation

✦

Security Operation

✦

Research

✦

Product Manage

✦

UI/UX Design

✦

Algorithm

✦

Threat Hunting

✦

Cyber Forensic

✦

Cyber Attack Emulation

✦

Security Operation

✦

Research

✦

Product Manage

✦

UI/UX Design

✦

Algorithm

✦

Don't wait,
find solutions myself.

I have been working as an cyber security expert for 7 years .

Worked on a number of issues across Blue Team missions and security research.

Identified 3 undetected malware and internal vulnerabilities in one year as a founding member of the threat hunting team (9 total)

Proposed and implemented development plans for national-level security breach investigations and security control improvements

Configured APT group cyber attack automation for reinforcement learning research

For the user experience,
change it efficiently.

80% of information security incidents are caused by human error, not by the advanced technical skills of hackers or malware.

Reduced false positives and improved visibility to achieve zero missed responses in security operations

Boosted threat hunting efficiency by 5x with click-driven dashboards and automation

Cut big data search time from 25.3 seconds to 1.3 seconds using data models and preprocessing

Prioritizing the essence over technology, getting things done.

Share visions and goals with communities based on a business mindset.

I've planned and led initiatives in various fields, including cyber training, consulting, hackathons, and marketing, achieving excellent results.

Deputy Team Leader for the MND in NATO CCDCOE's 'Locked Shields 2024,
'the world's largest international cyber defense exercise

Top 10 in the 5th Best of the Best program for nurturing next-generation security leaders

Winner of hackathons and idea/planning contests

Work Experience

Now

Agency for Defense Development

Cyber Center

Information Security Researcher

• Conducting research projects related to AI in cybersecurity

2023.07

Republic of Korea Defense Communication Command

Ministry of National Defense Direct Cyber Operations Center

Cyber Threat Hunting Leader

• Developed policies and managed dashboards using Splunk and IBM Qradar as a starting member

• Developed and optimized queries for efficient hunting of over 200 million daily log events

• Created drill-down dashboards without query language for improved UX

• Reduced analysis time by 5x with automated report generation during idle hours

• Proposed improvements based on annual cyber incident statistical analysis

• Identified and analyzed over 9 cases of data breaches, viruses, and military web service vulnerabilities

• Represented the military in international cyber exercises

Incident Response and Analysis Officer

• Analyses of security incidents, including techniques of document-based malware and beacon malware (Cobalt Strike)

• Led seminars and applied CTI-based trends in malware and vulnerabilities

• Responded to simulated attacks through quarterly cyber drills

• Participated in joint competitions and problem-solving to enhance team members' forensic skills

2021.12

Republic of Korea Defense Communication Command

Ministry of National Defense Direct Cyber Operations Center

Security Operations Center Team Leader

• Improved false positives in SIEM by 95% for over 10,000 daily events

• Achieved zero missed responses by implementing critical log highlighting and statistical filtering in existing solutions

• Operated multiple security solutions including ESM, UTM, IPS, WAF, NAC, and email security

2020.06

Agency for Defense Development

Cyber Center

Information Security Researcher

• Diversified seed scheduling algorithms while improving fuzzing techniques, achieving up to 230% increased coverage compared to previous methods

• Awarded the Excellent Presentation Paper Award by the Korean Institute of Information Scientists and Engineers

• Acquired 7 CVEs and 1 intellectual property patent

2018.06

Other Experience

Locked Shields 23/24

Under the auspices of NATO CCDCOE(Cooperative Cyber Defence Centre of Excellence), participated in the world's largest and most complex cyber defense exercise, competing with 40 countries globally. Represented the military in joint training with various government, financial, and energy institutions.

2023.03~2023.04. / 2024.04~2024.05.

RESULT

• '24 The only team in the world to identify all custom malware

• '24 Overall ranking: 11th → 8th (detailed rankings not disclosed)

• '23 Identified and blocked over 40 Red Team attacks, including web shells, ransomware, and reverse shells

• '23 Technical ranking: 13th → 7th

POSITION

• '24 Deputy Team Leader (Ministry of National Defense, Republic of Korea)

• '23 Threat Hunting Team Leader

TASKS

• Managed training and coordinated with cybersecurity institutions

• Established and optimized security systems (Zeek, Suricata, Sysmon) and integrated with Splunk

• Designed threat hunting policies, and built dashboards and apps for service managers

• Optimized search speed using data models (average search time 25.3s→1.3s)

CyberNet 2023

Participated in an international live cyber offense and defense exercise hosted by the Netherlands Cyber Command, competing with 10 countries including Germany, the UK, and Japan.

2023.04~2023.05.

RESULT

• Winner (1st place)

POSITION

Republic of Korea Blue Team

TASKS

• Performed real-time service vulnerability analysis and patching

• Developed an AI-based automated vulnerability reporting program

• Developed a program to conceal attack techniques using noise

BEST of the BEST 5th

A program organized by KITRI(Korea Information Technology Research Institute) to nurture South Korea's top next-generation security leaders.

2016.07~2017.03.

RESULT

• Selected as one of the top talents (BEST 10)

• Discovered 17 vulnerabilities in commercial security solutions

• Presented at KISA(Korea Information Security Agency)'s Q1 2017 Cyber Security Incident Seminar

POSITION

Security Consulting

TASKS

• Designed security architecture, provided governance consulting, performed system/web hacking, and managed information security certification

• Proposed vulnerability attack scenarios via security solutions

• Planned projects and analyzed vulnerabilities in commercial security solutions

Honors

Education

Korea University
School of CyberSecurity

• Ongoing research

2019.09 -

Master

Korea University
Department of Cyber Defense

• Completed courses in system/web hacking, cryptography, international law, reverse engineering, compilers, security engineering, databases, etc.

2014.03-2018.02.

Bachelor

Gyeonggi Science High School for the Gifted

• Captain of the 29th class of the Information Science Club ‘Semtel’

• Member of the algorithm academic club ‘I am Coder’

2011.03-2014.02.

Graduate

Certificate

CPPG

(Certified Privacy Protection General)

Korea Chief Privacy Officers Forum

2024.04.

G24-041-01-00097

Engineer Information Processing

Ministry of Science and ICT

2018.12.

HRD-20210314151719-31891

Articles

SmilEar - 청각장애인을 위한 AI 언어학습 서비스 (Prompt-er Day Seoul 2023)

September 16, 2023

✦

Records

SmilEar - 청각장애인을 위한 AI 언어학습 서비스 (Prompt-er Day Seoul 2023)

July 1, 2017

✦

Life

에버랜드 어트랙션 캐스트 - 환상의 나라로

March 2, 2019

✦

Records

블리자드 연말파티에 초청받은 오버워치 클랜 운영기 #1

June 15, 2019

✦

Records

블리자드 연말파티에 초청받은 오버워치 클랜 운영기 #2

January 28, 2018

✦

Life

필근투어 - 한 여행에 테마파크 9개 정복을 #1

February 1, 2018

✦

Life

AbsolRoot

Don't wait,
find solutions myself.

For the user experience,
change it efficiently.

Prioritizing the essence over technology, getting things done.

Work Experience

Other Experience

Locked Shields 23/24

CyberNet 2023

BEST of the BEST 5th