Svetlozar Simeonov

Cyber Security professional | Systems and Network Administrator

Education

2016 - 2018

University of Bradford

MSc Cyber Security

Bradford, United Kingdom
2013 - 2016

University of Bradford

Computer Science for Games (with System and Network Administration)

Bradford, United Kingdom
2009 - 2013

Saint Paisiy Hilendarskiy High School

Informations and Communications Technology

Plovdiv, Bulgaria
2008 - 2009

Tzar Simeon Veliki High School

Informatics and Mathematics

Plovdiv, Bulgaria

Experience

2018 - present

Systems and Network Administrator

Contracted Full-Time Employment

Undisclosed
2014 - 2018

IT Administrator

Contracted Part-Time Employment

Bradford and Airedale Citizens Advice
2016-2018

Systems Engineer

Contracted Part-Time Employment

Bradford Law Centre
2016 - 2017

Infrastructure Engineer

Voluntary work through my University placement year

Bradford District City Council

Skills

Frontend

  • HTML
  • CSS
  • Python (WebAssembly)
  • Some JavaScript

Backend

  • Python (Flask,uWSGI,Twisted,WebPy)
  • PHP
  • Java
  • Some Ruby and Go

UNIX Administration

  • Debian, Ubuntu, CentOS, Arch
  • POSIX Shells
  • Samba Active Directory
  • Firewalls (iptables, ufw, pf)
  • Roaming Profiles
  • Policy Management
  • Printing Services (Web/Socket Based)
  • Package Administration, caching
  • System/Kernel optimizations
  • Backup Management and Monitoring
  • Performace and Usage Monitoring
  • VPN Management (Meshing, Peer-based, Centralized)
  • Build environment setup and maintenance

  • Expand

Windows Administration

  • Active Directory
  • PowerShell
  • Windows Instrument Sets (WMI, CIM, cPS, ADK)
  • MSSQL (SSMS & T-SQL)
  • NT Shell
  • IIS
  • Windows Server Update Services
  • Windows Deployment Services
  • Mail Servers (Distributed, Exchange, Cloud)
  • Printing subsystem (Single spooler or Web based)
  • Chocolatey (Creation, Internalization, Administration)
  • Firewall HAM (Heuristics, Administration and Monitoring)

  • Expand

Networking

  • 3rd Party Router Firmware (PfSense, DD-WRT, OpenWRT)
  • Traffic Management (Snort, Zeek)
  • Monitoring (PRTG, Zabbix, Nagios)
  • CVE mitigations (Nessus, EtherApe, WireShark, tcpdump)

Automation

  • Ansible
  • TeamCity
  • GitLab CI
  • Jenkins

Spoken languages

  • Bulgarian - native
  • English - fluent
  • Russian - Proficient
  • German - Proficient

Interests

  • Digital Archiving
  • FOSS Software (Licensing)
  • Media editing and montages (Video, Audio, Image)
  • Self-Hosted Services

Projects

Professional

  • • Created a SBC controlled bluetooth "zone" at my workplace, as a test system, automating signing in and out of work by detecting bluetooth MAC presence
  • • Created firewall/snort rules to prevent DDoS and bruteforce attacks
  • • Mitigated data leaks with one of our partner companies
  • • Maintaned an Active Directory structure, consisting of multiple OU's and well over 500 people
  • • Established a big Wireless Mesh Network, consisting of more than 20 AP's, which featured an access portal sign in system
  • • Implemented PCI-DSS and ISO27001 compliance
  • • Wrote various automation scripts to help with things from OCR text analysis to automatic internal password resetting
  • • Isolated external software threats by implementing a chocolatey server for conventional software and a monitored sandbox environment for additional ones
  • • Created custom VPN solutions for use in Banks, with law enforcement and others
  • • Optimized various software to run on low spec machines
  • • Wrote internal Web database frontends for interacting with obsolete Access 2003 databases
  • • Created an internal mobile application to help with case tracking and communication
  • • Made a NodeJS based tool to interact with company API's
  • • Managed a small team of 5 people to carry on infrastructure tasks



127.0.0.1

  • • Self-hosted SDR Web application using RTL-SDR and cheap hardware off Ebay for OTA data gathering, such as ADS-B, WCOM, AM/FM, Weather data and Voice channels
  • • Python tool to compare templated CVE's to a web host for automatic vulnerability detection and mitigation tips
  • • Self-hosted Service Stack, in order to be less dependent on third parties. (Web Services, Mail Server, Cloud Storage, Blog, Analytics, Service Monitor, GitLab, Jenkins, Wiki, URL Manager, Radio Station, Paste Service)
  • • Single PXE Boot environment for UNIX, Windows and Apple systems
  • • Plugin contributions to the MediaWiki project
  • • Plugin contributions to the Foobar2000 project
  • • ZoneMinder derived security system, consisting of remote IP and USB cameras
  • • Bash/PowerShell scripts to automate tasks
  • • Load-balanced SNMP walker on my VPN to report information
  • • Tinc-based Mesh VPN access between my remote servers for bandwidth control and security
  • • Internal Debian repository with authored packages (in CI)
  • • Volunarily maintaining some community websites
  • Blog, where I write about my discoveries
  • • Hand-modified PCI backplane and PSU of a HP ProLiant DL380 G5 to fit a recent GPU

About me

I am very keen on issues like digital preservation, online anonymity, privacy and Open Source licenses.

Outside of technology, I enjoy discussing Politics, History, Economics, Philospohy, Ecology and Armaments.

I don't really do sports anymore (used to be a cyclist and basketball player), but I still enjoy the forests and mountains, which I frequently visit

I used to produce electronic music and still do some projects. I am a huge audiophile.