Principal Digital Forensic Investigator

Jakob Trusz

In his role as Principal Digital Forensic Investigator at the Truesec CSIRT, Jakob Trusz spearheads both Linux forensics, research, infrastructure, and development. He also has a leading role in network forensics and has vast experience conducting forensics on Windows systems. The Truesec CSIRT conducts a variety of investigations, both relating to internal threats such as insiders and external threats such as those coming from Nation State actors, ransomware gangs, and opportunists. Using the knowledge gained through the investigation the Truesec CSIRT is able to confidently identify the initial access vector, ensure threat actor kick-out, restore the environment to a production state, and increase the targets resilience against future attacks. Prior to joining the CSIRT Jakob specialized in offensive security with a very wide toolbox ranging from: red teams, source code audits, and mainframe penetration tests on the technical side to threat modeling workshops and CISO consultancy roles on the management side.