Alexander ‘Xander’ Luedtke

An accredited, security focused System Administrator and Cyber Security Analyst with experience in endpoint and cloud security, malware analysis and PaaS compliance.

Experience

Cyber Security Analyst, Shineatek Corp. - Vegreville Alberta Dec 2021 – Present

  • Investigated active threats through SentinelOne DeepVisibility, ELK Stack SIEM artifacts and developed automation from those alerts.
  • Tasked with designing a security stack for clients covering CIS IG1 Controls.
    • ZTNA, SASE, SIEM, EDR, Change Alerting, Log Management, NGFW, etc.
  • Created documentation and templates for scaling services to clients.
  • Developed incident response plans for clients and the MSP itself.
  • Assisted in migrating PSA and documentation web applications to Docker.
  • Developed SOAR playbooks using Azure Sentinel and ELK stack.
  • Created a self-hosted SIEM using an ELK stack and Docker Swarm.
  • Performed administrative tasks such as pricing for new clients’ tools and security stack.

System Administrator, Keeran Networks - Edmonton Alberta Apr 2019 – Oct 2021

  • Lead engineer in charge of containing, mitigating, remediating and restoring businesses after security incidents.
  • Implemented templates for best practices in cloud environments & migrations.
  • Utilized various security tools to perform authenticated and unauthenticated security scans on all clients.
  • Developed disaster recovery & continuity operation plans.
  • Migrated over 100 servers backups across 25 clients to a ZFS (Linux) snapshot based backup appliances.
  • Maintained & patched/upgraded legacy UNIX infrastructure.
  • Utilized as the highest escalation point in the service team of 8.
  • Deployed 5 Azure On-Premise Migrations, Logic/Flow App, MFA & Networking Projects.
  • Created custom powershell modules deployed across 1500 workstations & servers.
  • Rebuilt the company’s Remote Monitoring & Management alerting suite from scratch providing metrics, remediation and alerting for all Windows & UNIX servers.
  • Maintained Linux cPanel servers utilizing DataDog providing email, automation, orchestration scaling, websites, FTPS servers.
  • Tasked with Internal IT for all employees at the MSP covering Azure Active Directory, Azure Autopilot, endpoint hardening & user security.

Help Desk Analyst, Keeran Networks - Edmonton Alberta May 2018 – Apr 2019

  • Completed Help Desk tickets with a 98% customer satisfaction, while prioritizing submitted high severity requests.

Projects

Home Service & Security Lab

I have been hosting my own security and services lab for over 10 years. I utilize a cheap VPS (<$10) (Downsized from Kubernetes cluster) that acts as my all-in one proxy and docker container. Maintained through terraform, ansible and docker-compose.

Education

Northern Alberta Institude of Technology, Computer Network Administration (4.0) Sept 2016 – Apr 2017

Certifications

Amazon Web Services Certified Cloud Practitioner (CLF-C01) June 2022 - Credential ID: AWS02409865

CompTIA Security+ (SY0-601) November 2021 - Credential ID: F4CEY2WFXHQ4Q632

CyberArk Certified Trustee September 2021

Skills / Tools

  • Vulnerability Assessment: Nessus, Wireshark, Nmap, OpenVAS (Greenbone)
  • Endpoint Security: Wazuh, SentinelOne, Huntress, Cisco Umbrella, Todyl Zero Trust
  • SIEM/SOAR: Todyl, ELK, Wazuh, Microsoft Sentinel, Siemplify
  • Programming / Scripting: Python, Bash, Powershell, Ruby, Rails
  • Cloud Architecture: Azure Infrastructure, Azure Automation, Amazon Web Services, Terraform, Kubernetes, Docker Swarm, Hyperconverged Nutanix
  • Offensive Security: Malware Analysis, Metasploit, Kali Linux, Nmap, Wifi Exploitation, Ghidra
  • Networking: Fortinet, Meraki, Ubiquiti, Ruckus, pfSense
  • Compliance: PHIPA/HIPAA, Disaster Recovery Documentation, PCI DSS