My name is Angel Alonso-Parrizas and I am a security researcher since 2005. During my professional career I have worked in different security roles across different countries, for private corporations, Government and Universities. Among all the differente positions in the private sector, I have worked at major telecommunication companies (fortune 500) like Verizon and France Telecom and in major financial companies. In the public sector, I have worked as a Security Engineer for the regional Goverment of Valencia - Spain, as a collaborator teacher at Escola Tecnica Superior de Enginyeria at University of Valencia and Escuela Politecnica Superior of Elche at University of Elche.

I hold a Bachelor’s and master’s degree in Computer Science, a Bachelor’s degree in Telematic Engineering (Telecommunication Engineering) from Escuela Tecnica Superior de Ingenieria at University of Valencia, a Master in Security and Forensic from Dublin City University, and several professional security certifications, including SANS GSE GIAC Security Expert, GCIH, GCIA, GREM, GMOB, GPPA, GCFA, GSNA, GSEC, GCTI, ISC2 CISSP, ISACA CISM & CISA. SANS Profile)

During my career, I have worked as security analyst / engineer, intrusion analyst and incident responder, forensic and malware analyst (including mobile). Currently I work as Threat Intelligence lead in a major Swiss financial company.

Papers, slides, presentations, publications

SANS papers published by me

• Analysis of a Multi Architecture Linux Rootkit (GREM - Reverse Engineering Malware) [June 2019] paper
• Forensic Analysis On Android: A Practical Case (GMOB - GIAC Mobile Security) [October 2015]. paper
• Monitoring Network Traffic for Android Devices (GCIA - GIAC Intrusion Analyst) [January 2013]. paper
• Securely Deploying Android Device (GCIH - GIAC Incident Handling) [October 2011]. paper

SANS Gold Advisor papers

I am a SANS gold Advisor for the SANS institute. https://www.giac.org/certifications/gold. These are the papers I’ve mentored so far:

• Intrusion Detection Through Relationship Analysis [October 2016]. Author: Patrick Neise’s. paper
• Neutrino Exploit Kit Analysis and Threat Indicators [April 2016]. Author: Luis Rocha. paper
• Learning from the Dridex Malware - Adopting an Effective Strategy [October 2015]. Author: Lionel Teo Jia. paper
• Enhancing Intrusion Analysis through Data Visualization [Feburary 2015]. Author: Wylie Shanks. paper
• Home-Field Advantage Using Indicators of Compromise to Hunt Down the Advanced Persistent Threat [September 2014]. Author: Matthew Toussain. paper
• Intrusion Analysis Using Windows PowerShell [May 2014]. Author: Michael Week. paper
• An Early Malware Detection, Correlation, and Incident Response System with Case Studies [January 2014]. Author: Yaser Mansour paper

Master Thesis’ papers and presentations

• Thesis for the Master in Security and Forensic at Dublin City University with title “Securely Deploying Android Devices” paper [ October 2011]
• Thesis for my MSc / BSc in Computer Science “An architecture purpose for Intrusion Detecion System with correlation” presentation and paper [ september 2005]
• Director for Ignacio Cantos’ bachelor degree thesis about security protocols and the integration with digital certificates in the local government at Valencian region. paper [May 2008]

Presentations and slides

• ISSA Ireland Chapter presentation: Securely Deploying Android Devices (ISSA Chapter Ireland) [ March2011] - slides
• Dublin City University - “hacking the systemcall in the Linux kernel to implement Rootkits and Honeypot”. Presentation aimed to postgraduate students of Security and Forensic in Dublin City University. presentation [December 2009]
• ISACA Valencia Chapter: Conference about Web Auditory in “I Ciclo de Conferencias ISACA-CV Rafael Bernal” (Auditory, Security and IT Governance) presentation [November 2007]
• Presentation about Correlation and Intrusion Detection Systems presentation [July 2007]
• Presentation about ‘forensic analysis’ part1 & part 2 [January 2005]
• Presentation about ‘forensic analysis’ at Linux Party 2005 slides [March 2005]
• Presentation about ‘Cable Modems Security (how to hack it!) !’) to the students of fifth course of Computer Engineering at the High Technical School of Engineering in the University of Valencia. doc and slides [November 2004]
• Presentation about configuring Peripherals in Linux environments in Linux’ at Party third edition in the University of Valencia [March 2003] presentation(Spanish)
• Presentation about ‘Security in LAN (ARP Spoofing and other Layer 2 attacks)’ to the students of the fourth course of Computer Engineering at the High Technical School of Engineering in the University of Valencia ((PDF) paper & presentation [November 2003] (Spanish)

Blog posts and magazines articles

• Pago mediante huellas dactilares [ August 2013]
• Analisis del modulo de Meterpreter para Android [ June 2013]
• Behaviroal Android Malware Analysis with REMnux and MobiSec [ April 2013]
• Analisis dinamico de malware para Android con REMnux y MobiSec [ April 2013]
• Monitorizacion del trafico en dispositivos Android [ February 2013]
• Securizando Android para un uso corporativo [ October 2011]
• Article in SIC magazine about the Security Project at ACCV (PKI GVA) from 2006 to 2008 article
• Article about Security and the future of electronic signatures and Digital Certificates . article [Decembre 2007]
• Publication in the magazine Hakin9 about Defense in depth and correlation article [November 2007]
• Article about defense in depth and OSSIM article [Januar 2007]

Old Documents / Handbooks

• ModSecurity for Apache
• PIX (Cisco PIX Firewall)
• Iptables
• LIRC with Avermedia

Contact me

Feel free to contact me by email ot Twitter. As a general rule I only accept linkedin requests from people I know.