[ PROFILE INITIALIZED · Bulgaria · Cybersecurity ]

Anton Marinov

> Cyber Defense Specialist_

Defending digital infrastructure at Amusnet. Former Senior SOC Analyst with 4+ years at Nexo and a stack of 12 industry certifications in forensics, threat intelligence, and offensive security.

terminal — anton@cyber-defense ~
Welcome. Type help to see available commands.
anton@cyber:~$
try: help · whoami · ls skills/ · cat contact.txt · clear
// get in touch // linkedin
0 years in cybersecurity
0 industry certifications
0 open source projects
0 YARA detection rules
01 // about

Who I Am

I'm a Cyber Defense Specialist at Amusnet, bringing 4+ years of SOC experience from Nexo — one of Europe's largest crypto platforms. My work spans threat detection, incident response, digital forensics, and threat intelligence.

What makes my path unusual: I spent 13 years in aviation operations at Swissport before pivoting fully into cybersecurity. That background gave me something textbooks can't — composure under pressure, precise communication, and the instinct to track down things that go missing.

Since entering the field in 2022, I've earned 12 certifications across forensics, threat intelligence, cloud security, penetration testing, and OSINT — staying sharp in a field that never stops moving.

Current role
Cyber Defense Specialist
Company
Amusnet · Full-time
Location
Sofia, Bulgaria
Certifications
12 active / industry-recognized
Status
● Building & learning
02 // skills

Capabilities

// SOC & Incident Response

Threat DetectionIncident ResponseAlert Triage SIEMSOC PlaybooksLog AnalysisSecurity Audits

// Intelligence & Forensics

Digital Forensics (CHFI)Cyber Threat IntelligenceOSINT Recorded FutureAttack Surface AnalysisCTI Reporting

// Offensive Knowledge

Web App AssessmentNetwork Penetration Testing Vulnerability AssessmentOffSec MethodologyAttack Simulation

// Cloud & Emerging Tech

Cloud Computing SecurityBlockchain Security Crypto InfrastructureCloud IAMDHS Frameworks
03 // projects

Open Source Work

// DETECTION
YARA Rules Collection
25 detection rules across 5 threat categories — malware, ransomware, RATs, phishing docs, and web shells. Includes a Python CLI scanner.
YARAPythonMalwareDetection
// THREAT INTEL
TI Report: iGaming Threat Landscape
In-depth threat actor analysis for iGaming/casino software vendors. Covers Scattered Spider, Lazarus Group, Qilin, and RansomHub with MITRE ATT&CK mapping.
CTIAPTMITRESigma
// LAB GUIDE
SOC Home Lab Guide
Complete step-by-step guide to building a personal detection lab with Elastic Stack and Splunk. Includes attack simulations and detection rule development.
SplunkElasticSysmonBlue Team
04 // experience

Career Timeline

Jun 2025 — Present
Cyber Defense Specialist
// Amusnet · Full-time · Sofia, Bulgaria
Joined Amusnet's security team with a focus on proactive cyber defense, threat detection and incident response. Bringing 4+ years of SOC experience and a broad certification portfolio to a new challenge in the gaming and entertainment technology sector.
Cyber DefenseThreat DetectionIncident ResponseDigital Forensics
Mar 2025 — May 2025
Senior Security Operations Center Analyst
// Nexo · Full-time · Sofia, Bulgaria
Leading threat detection and incident response operations for one of Europe's largest crypto lending platforms. Escalated from SOC Analyst after three years of consistent performance. Responsible for advanced triage, threat hunting, and mentoring junior analysts.
Threat HuntingIncident ResponseSIEMDigital ForensicsCTI
Apr 2022 — Mar 2025 · 3 yrs
SOC Analyst
// Nexo · Full-time · Sofia, Bulgaria
Monitored, detected and responded to security events across Nexo's infrastructure. Built and refined detection rules, participated in security audits, and developed expertise in threat intelligence and cloud security — earning 12 industry certifications during this period.
Security AuditsAlert TriageCloud SecurityOSINT
Feb 2008 — Mar 2021 · 13 yrs
Lost & Found Specialist
// Swissport Bulgaria · Aviation Operations
Managed worldwide lost luggage tracking via specialized international software. Coordinated transport logistics, communicated directly with passengers, and processed documentation — building a decade-long foundation in high-pressure operations and precise record management.
OperationsDocumentationCustomer Relations
05 // certifications

Licenses & Certs

EC-Council
Computer Hacking Forensic Investigator (CHFI)
Issued Nov 2024 · ID: ECC6045213798
EC-COUNCIL
U.S. Dept. of Homeland Security
Cloud Computing Security
Issued Oct 2024
DHS
Recorded Future
Intelligence Fundamentals
Issued Jul 2024
RECORDED FUTURE
EC-Council
Cybersecurity for Blockchain from Ground Up
Issued Mar 2024
EC-COUNCIL
EC-Council
Applied Attack Surface Analysis & Reduction
Issued Jan 2024
EC-COUNCIL
EC-Council
Digital Forensics Essentials (DFE)
Issued Jan 2024
EC-COUNCIL
EC-Council
Certified Threat Intelligence Analyst (CTIA)
Issued Dec 2023 · Expires Dec 2026
EC-COUNCIL
EC-Council
Advanced Open Source Intelligence & Privacy
Issued Dec 2023
EC-COUNCIL
OffSec
Network Penetration Testing Essentials
Issued Apr 2023 · ID: 72366453
OFFSEC
ISC2
(ISC)² Candidate
Issued Mar 2023
ISC²
OffSec
Web Application Assessment Essentials
Issued Mar 2023 · ID: 69037400
OFFSEC
OffSec
Security Operations Center — SOC-100
Issued Feb 2023 · ID: 68216688
OFFSEC
06 // contact

Get In Touch

Email
a.s.marinov@gmail.com
in
LinkedIn
anton-marinov-44875b6a
</>
GitHub
github.com/AntonSMarinov
📍
Location
Sofia, Bulgaria

Looking for a Cyber Defense Specialist or want to discuss threat intelligence, incident response, or digital forensics?

// send a message