Resume
Kevin Wilck
Cyber Security Analyst
Skills & Technologies
EDR / XDR
SentinelOne
CrowdStrike
HarfangLab EDR
Microsoft Defender / XDR
Sophos EDR / XDR / MDR
Cisco Secure Endpoint & XDR
SIEM
Microsoft Sentinel
Logsign
Wazuh
OpenSearch & Kibana
Network, OT & Email
Nozomi
Darktrace
Sophos Firewall v20 / v21
Extreme Networks
Proofpoint
Hornet Security
SOC Analyst Skills
SIEM Administration
Use Case Development
Threat Detection
Incident Response
Vulnerability Management
Threat Intelligence
Wireshark
tcpdump
VirusTotal
Hybrid Analysis
Abuse.ch Feeds
MITRE ATT&CK
NIST CSF
NIST SP 800-61
Platforms & Automation
ServiceNow
Python
CI/CD
Docker
Kubernetes
Experience
Cyber Security Analyst
01/2026 to Present
aDvens, Munich
- Monitoring, analysis and triage of security events and alerts
- Security threat assessment and reporting
- Detection and incident response as Certified HarfangLab Expert (Harfang One)
SentinelOne
CrowdStrike
HarfangLab EDR
Microsoft Sentinel
Microsoft Defender
Nozomi
Darktrace
Proofpoint
OpenSearch & Kibana
ServiceNow
Cyber Security Analyst & System Engineer
08/2024 to 01/2026
Systema Datentechnik GmbH, Potsdam
- Endpoint and perimeter security operations across the Sophos and Cisco stack
Sophos EDR / XDR / MDR
Sophos Firewall v20.0 & v21.0
Sophos Central Endpoint
Cisco Secure Endpoint & XDR
Logsign SIEM
Wazuh
Hornet Security
ServiceNow
System Engineer: Workplace & Educator
08/2023 to 08/2024
Systema Datentechnik GmbH, Potsdam
- Workshops and training delivery
- Active Directory management
- Sophos Firewall administration
- Patch management
Active Directory
Sophos Firewall
ServiceNow
System Engineer (Freelancer)
10/2022 to 09/2024
ToLe Software Solutions, Torgau
- Design, setup and operation of infrastructure
- Containerization and orchestration
- Implementation of monitoring, logging and alerting solutions
- Development of automated deployment of microservices
Docker
Kubernetes
CI/CD
Python
Einsatzführungs-Unteroffizier
01/2012 to 08/2023
German Federal Ministry of Defence, Holzdorf/Schönewalde
- Incident Response & Handling
- Incident Reporting
- Radar technology
IT-Administrator
06/2011 to 12/2011
Fa. Estrichbau Wilck, Eldena
- Network management and system maintenance to enhance the performance and security of IT infrastructure
Certifications
2026
HarfangOne Expert
HarfangLab
Detection and Incident Response
2025
Sophos Certified Endpoint Protection Engineer
Sophos
Endpoint protection: reporting and monitoring of endpoints, deployment & administration, security management
2024
CompTIA PenTest+ (TryHackMe)
TryHackMe
Learning path aligned to CompTIA PenTest+ objectives
2024
Sophos Certified Firewall Engineer
Sophos
Firewall capabilities, configuration, protection, VPN, authentication, logs & reporting
2024
AdA-Ausbilderschein (AEVO)
IHK Potsdam
Certified trainer qualification (Ausbildung der Ausbilder)
2023
Extreme Certified Associate, Extreme Switching
Extreme Networks
Universal switching, licensing, API, L2 & L3 switching, virtual routers, stacking, QoS, CLI
2023
Extreme Certified Associate, ExtremeCloud IQ Site Engine
Extreme Networks
Managed vs unmanaged, SNMP, scripting, automation, policy manager, analytics, NAC
Education
2023
IBM DevOps and Software Engineering
Scrum, CI/CD, Python, TDD, Docker, Cloud Computing, Kubernetes
2008 to 2011
Retail Management Assistant
Training with IHK final examination
2008
Intermediate School
Secondary School Diploma