Lai Quan Thien

Cybersecurity Engineer

Information Security Student
University of Information Technology, VNU-HCM

Entry-level Cybersecurity Engineer experienced in SIEM/SOAR/XDR deployment, applied cryptography, and threat detection. Skilled in building security monitoring environments, automating response workflows with AI, and developing secure data applications.

View Projects Contact Me

Core Expertise & Specializations

SOC & SIEM/SOAR/XDR

  • Elastic Stack & Security Onion
  • DFIR-IRIS, MISP & IntelOwl Integration
  • Security Incident Triage & Response
  • Alert Rules & Detection Engineering
  • Wazuh & Centralized Log Management

Applied Cryptography

  • Mathematical Cryptography (CP-ABE)
  • Symmetric & Asymmetric Encryption (AES-GCM)
  • CryptoPP, OpenSSL, Charm-Crypto
  • Secure Data Processing & Storage
  • Zero-Trust & Attribute-Based Access Control (ABAC)

AI in Security & Automation

  • LLM Integration for Semantic Alert Analysis
  • Automated Log Classification
  • Security Workflow Orchestration via n8n
  • Python Security Automation Scripts
  • Automated Incident Response Playbooks

Network Security & IDS/IPS

  • Suricata IDS/IPS Configuration
  • Zeek Network Security Monitoring
  • pfSense Firewall Management
  • Network Forensics & Packet Analysis
  • Custom Rule Development

Programming & Cloud Architecture

  • Python, C/C++, Bash Scripting
  • Django Backend & API Development
  • AWS (EC2, S3, RDS) & Firebase
  • Docker Containerization
  • Redis Caching & Supabase Integration

Frameworks & Infrastructure

  • ISO 27001, ISO 27002 Standards
  • MITRE ATT&CK Framework Mapping
  • Linux System Administration & Hardening
  • Offensive Security (Metasploit, Kali Tools)
  • VMware & KVM Virtualization

Featured Projects

Bachelor’s Thesis

An Intelligent SOC Ecosystem
for Monitoring, Detection, and Response to Cyber Attacks

Research and implementation of an Intelligent SOC Ecosystem integrating SIEM, SOAR, and a proposed SmartXDR model. The system aggregates multi-layer telemetry from Wazuh, Suricata, Zeek, and pfSense. By leveraging AI for semantic alert analysis, it effectively reduces false positives and orchestrates automated response playbooks. The architecture was validated against MITRE ATT&CK scenarios (Brute-force, SQLi, Malware) to demonstrate optimized MTTD/MTTR metrics.

Elastic Stack SmartXDR Wazuh Suricata & Zeek DFIR-IRIS n8n
View Details

SIEM Central
Management System

Centralized Security Information and Event Management

Deployed a Security Information and Event Management (SIEM) solution leveraging the Elastic Stack (ELK) to collect, process, analyze, and visualize cybersecurity events within a simulated environment. The project focused on monitoring logs from Windows and Linux systems, along with security devices like Suricata and pfSense, to detect, investigate, and respond to threats.

Elastic Stack Suricata pfSense Nginx Security Monitoring
View Details

Cloud Policy Crypto Access

An enterprise-grade secure file storage system featuring Hybrid CP-ABE and zero-trust multi-layer access control.

A comprehensive enterprise-grade file storage system implementing Hybrid Ciphertext-Policy Attribute-Based Encryption (CP-ABE) integrated with Supabase, providing highly secure file management, multi-layer Attribute-Based Access Control (ABAC), and high-performance caching.

Django C++ AES-GCM Hybrid CP-ABE ABAC Supabase Redis Docker
View Details

Security Onion IDS Project

Commercial-Grade Network Intrusion Detection/Network Security Monitoring System

Comprehensive network security monitoring solution using Security Onion platform. Implemented full-spectrum threat detection with Suricata IDS, Zeek network analysis, and Elasticsearch SIEM integration for real-time security monitoring.

Security Onion Suricata IDS Zeek Elasticsearch Network Monitoring Threat Hunting
View Details

CloudDB Crypto-Access

Database Confidentiality and Access Control in Cloud-native DBMS

Advanced database protection system combining AES-GCM-256 encryption with CP-ABE (Ciphertext-Policy Attribute-Based Encryption) for fine-grained access control. Features ABAC authentication and secure data management in Amazon RDS MySQL.

Python PyQt6 AES-GCM CP-ABE MySQL ABAC
View Details

Hybrid CP-ABE Library

Advanced Encryption for Data Protection

A hybrid encryption library combining Ciphertext-Policy Attribute-Based Encryption (CP-ABE) with AES-GCM to enable fine-grained access control and secure data confidentiality. This library supports ABAC (Attribute-Based Access Control) authentication and facilitates robust encryption/decryption workflows for secure data sharing and management across distributed systems.

C/C++ CP-ABE AES-GCM CryptoPP
View Details

Academic Achievements & Recognition

3

Academic Very Good

Certificate of Commendation for Very Good performance (2022-2025)

12+

Open Source Projects

Security tools and research implementations

2

Youth Leadership

Outstanding contributions to Youth Union activities

2

Ho Chi Minh Teaching

Outstanding Youth Exemplifying Ho Chi Minh's Teachings (2023-2024)

Detailed Achievements

Certificate of Commendation as Information Security Student
For Very Good academic performance and extracurricular involvement during 2022–2023, 2023–2024, and 2024–2025 academic years
Certificate of Commendation for Youth Union Contributions
Outstanding contributions to Youth Union and Youth Movement activities at University of Information Technology – Term 2022–2024
Outstanding Youth Exemplifying Ho Chi Minh's Teachings
Received recognition in 2023 and 2024 for exemplary leadership and community service

Contact Information

Lai Quan Thien
Lai Quan Thien
Cybersecurity Engineer

Get In Touch

Always open to discussing SOC opportunities, security research collaborations, or sharing knowledge about cybersecurity and information security.

Email: thienlai159@gmail.com
Phone: +84 941 841 870
GitHub: github.com/WanThinnn
University: University of Information Technology (UIT) - VNU-HCM
Location: Ho Chi Minh City, Vietnam
Specialization: SIEM/SOC, Cryptography, Cybersecurity
CV Download: Click to Download My CV

Professional Focus

SOC Specialist
Elastic Stack, DFIR-IRIS, Wazuh, Suricata, Zeek, n8n, AI in Cybersecurity
Security Research
12+ Open Source Security Projects & Applied Cryptography
Academic Very Good
Information Security Student at UIT - VNU-HCM
Future Goals
SOC Engineer Fresher & Security Certifications