Hi, my name is
Yusuf Talha ARABACI.
I'm a security engineer specializing in Digital Sovereignty, Cloud-Native Security, and building next-generation SOC architectures. Currently focused on open-source enterprise solutions.
About Me
I am a Cyber Security Engineer combining offensive foundations, enterprise SOC experience, and a strategic focus on digital sovereignty and cloud-native security. My professional approach bridges the gap between Tier-1 enterprise defense and the future of sovereign, open-source architectures.
Current Academic Focus (MSc): Researching "Data Sovereignty & Open Source Enterprise Architectures" to design cloud-independent infrastructures that mitigate CLOUD Act risks and vendor lock-in. My goal is to engineer GDPR-compliant, Ubuntu-based alternatives to proprietary cloud ecosystems using tools like Wazuh, OpenTofu, and Ansible.
My technical expertise spans Cloud-Native Security (Hardening K8s, DockerVuln), Next-Gen SOC (Splunk, ELK, Vectra AI), and Endpoint Protection (CrowdStrike, SentinelOne, Cortex XDR). I also focus on Data Privacy (DLP) and Network Defense (Zero-Trust architectures).
Offensive Security & Research: OWASP chapter leader, USOM (TR-CERT) Penetration Testing training, APIGOAT creator, and active Red Teaming drills.
Career Objective: Relocating to Tallinn, Estonia (Q1 2026) to contribute to Europe’s most advanced digital society. Open to roles in Cloud-Native Security, Next-Gen SOC, Digital Sovereignty, and Open-Source Architecture.
Where I've Worked
Cyber Security Engineer @ Arma Bilisim
Oct 2025 - Present
- •Focusing on SIEM architecture and XDR integration.
- •Conducting advanced threat hunting operations.
- •Designing secure network infrastructures.
SOC Analyst @ Garanti BBVA Technology
Nov 2024 - Oct 2025
- •Analyzed security alarms and investigated potential threats using Splunk and EDR tools.
- •Developed new alarm scenarios to detect emerging threats.
- •Collaborated with L2/L3 teams for incident response.
MDR Analyst @ ADEO Cyber Security
Sep 2023 - Jul 2024
- •Performed detailed event analysis using SIEM/EDR/XDR.
- •Developed detection rules mapped to MITRE ATT&CK framework.
- •Provided network security analysis for Turksat Bilisim.
Technical Arsenal & Architecture
Sovereign Defense
Architecting cost-effective, data-sovereign defense stacks.
Wazuh
Unified SIEM & XDR
Elastic Security
Log Analysis & Big Data
OpenVAS
Vulnerability Scanning
Enterprise Operations
Managing Tier-1 security suites in corporate environments.
SentinelOne
Autonomous AI EDR
CrowdStrike
Falcon Endpoint Protection
Splunk
Enterprise SIEM & Analytics
Cloud-Native & Ops
Securing modern infrastructure and pipelines.
Kubernetes
Container Orchestration
Docker
Container Security
Python/Bash
Automation & Scripting