Kris Oosthoek

PhD Candidate Cyber Threat Intelligence

Delft University of Technology

Biography

Kris Oosthoek is CTI lead at a government agency in The Netherlands. He is a part-time PhD candidate with the Cyber Threat Intelligence Lab at Delft University of Technology. His research focuses on the extraction of CTI from host and network artifacts. Kris has worked in various technical positions based from the US, UK and Afghanistan. He holds an MSc from Erasmus University and several commercial cyber security certifications such as CISSP, GICSP, GCTI, GXPN, GRID.

Interests

Cyber Security
Threat Intelligence
Penetration Testing

Education

PhD in Cyber Threat Intelligence, 2018
Delft University of Technology
MSc in Strategic Management, 2012
Erasmus University Rotterdam
BSc in Informatics, 2010
Rotterdam University of Applied Sciences

Experience

PhD Candidate

Delft University of Technology

Sep 2018 – Present Delft

Research into cyber threat intelligence from network and host artifacts at the Delft Cyber Threat Intelligence Lab with Christian Doerr.

Senior SOC Cyber Threat Intelligence Analyst

Dutch National Government

Jan 2015 – Present The Netherlands

Responsibilities include:

Threat Intelligence
Security Operations
TIP Management

Accomplishments

GIAC Cyber Threat Intelligence (GCTI)

GIAC May 2018

Cyber Threat Intelligence practitioner certification from SANS. Covers the basics of CTI (fundamentals of strategic, operational, tactical analysis).

See certificate

GIAC Advanced Penetration Testing and Exploit Development (GXPN)

GIAC Aug 2017

Advanced penetration testing and exploiting certification from SANS. Covers cryptography exploitation, escaping restricted environments and advanced stack overflows for Windows and Linux.

See certificate

GIAC Response and Industrial Defense (GRID)

GIAC Jul 2017

Industrial cyber security and threat intelligence certification from SANS. Focuses on forensics, incident response and malware in industrial control environments. Also covers threat analysis for ICS-oriented threats.

See certificate

GIAC Global Industrial Cyber Security Professional (GICSP)

GIAC Jul 2015

Foundational industrial cyber security certification from SANS around architecture of industrial control systems.

See certificate

Certified Information Systems Security Professional

ISC2 May 2015

Managerial certification; bare cyber security fundamentals.

Recent Publications

Quickly discover relevant content by filtering publications.

SoK: ATT&CK Techniques and Trends in Windows Malware

In an ever-changing landscape of adversary tactics, techniques and procedures (TTPs), malware remains the tool of choice for attackers …

Kris Oosthoek, Christian Doerr

PDF

Kris Oosthoek

PhD Candidate Cyber Threat Intelligence

Delft University of Technology

Biography

Interests

Education

Experience

PhD Candidate

Delft University of Technology

Senior SOC Cyber Threat Intelligence Analyst

Dutch National Government

Accomplishments

GIAC Cyber Threat Intelligence (GCTI)

GIAC Advanced Penetration Testing and Exploit Development (GXPN)

GIAC Response and Industrial Defense (GRID)

GIAC Global Industrial Cyber Security Professional (GICSP)

Certified Information Systems Security Professional

Recent Posts

ATT&CK Techniques and Trends in Windows Malware

Paper accepted

Recent & Upcoming Talks

Flashback with ATT&CK

Flashback with ATT&CK

SoK: ATT&CK Techniques and Trends in Windows Malware

Flashback with ATT&CK

Recent Publications

SoK: ATT&CK Techniques and Trends in Windows Malware

Contact

Kris Oosthoek

PhD Candidate Cyber Threat Intelligence

Biography

Interests

Education

Experience

PhD Candidate

Senior SOC Cyber Threat Intelligence Analyst

Accomplish­ments

GIAC Cyber Threat Intelligence (GCTI)

GIAC Advanced Penetration Testing and Exploit Development (GXPN)

GIAC Response and Industrial Defense (GRID)

GIAC Global Industrial Cyber Security Professional (GICSP)

Certified Information Systems Security Professional

Recent Posts

Recent & Upcoming Talks

Recent Publications

Contact

Accomplishments