Home / Curriculum vitae – Lars Niklasson

Curriculum vitae – Lars Niklasson

Qi Security AB
Lars Niklasson
Lötgatan 4
172 74 Sundbyberg
Sweden

+46 (0)708 70 00 86
lars.niklasson@qisecurity.se
www.qisecurity.se

Summary

I am meticulous and responsible with over 25 years of experience as a consultant.
Over the years I have acquired both broad and deep knowledge on several cyber security, management and monitoring products and areas.
I have helped build and maintain good, stable monitoring and security implementation at many of Sweden’s largest municipalities, health case, county councils, government agencies and companies.
Examples of technical assignment are installation, configuration, integration and troubleshooting, leading workshops, and presentations. It can involve deploying HWs, VMs on-prem or in Cloud, installing OS and applications, building scripts in python or other languages etc. Designing, installation, configuration of different cyber security and monitoring suites.
I am also regularly taking part in all pre-sales stages of the business process like architect, design, pre-sale, demos, Proof of Concepts etc.
I consult and advice customers with installation/configuration, education, workshop, documentation, troubleshooting and so on.
Over the years I have been invited to hold several speeches at HPE and Micro Focus Universe. I have also been part in several Technical Advisor board and Customer Advisor board regarding Micro Focus NNMi and the ArcSight suite.

Examples of consultancy assignments

• Perl programmering – Automatically export node status / event from NNM as well as conversion of status / event to HTML and WAP pages. – Dotcom
• Participates in the Development Program HP OpenView NNM v8
• Design, installation, configuration of NNM MPLS VPN SPI i SUN Cluster v3.2 – Banverket
• Design, installation, configuration OVOW redundancy TDC
• Migration NNM 7.x to NNMi 8.x TDC
• Upgrading OVOW 7.5 to OMW 8.1 TDC and Landstinget Mellansverige
• Design, installation, configuration OMW redundancy Landstinget Mellansverige
• Monitoring projects NNM, CW, OMW, HPSIM Landstinget Mellansverige
• Monitoring projects NNM, OMW NLL, Banverket
• Monitoring projects NNMi, CW, OMW, HPSIM TDC
• Ongoing Monitoring projects OMW Kommun Mellansverige
• Upgrade NNMi ProMedia
• Upgrade NNMi Skellefteå Kraft
• Upgrade till NNMi 9.02 SR, TDC
• Implementing NNMi Appl Failover – SR
• Holding course on NNMi 9.x – Trafikverket
• Upgrade to NNMi 9.21 – TDC
• Upgrade an workshop of LMS 4.2.2 – Region Mellansverige
• Speech/Presentation at HP Discover 2011 Vienna – HP NNMi/iSPIs
• Holding SNMP course – HMS Industrial Networks
• Implement op5 Monitor in Sverige and Norge – TDC
• Upgrading till NNMi 9.22 TDC
• Speech/Presentation at HP Discover 2012 Frankfurt – HP NNM/SPI
• Migration to Cisco Prime Infrastructure – TDC, Runsven, VGR, Billerud
• Migration to Cisco Prime Infrastructure – Kommun Södra Sverige
• Design, installation and configuration ArcSight Logger, Express, ESM – TDC
• Design, installation and configuration ArcSight Logger, ESM – St Erik Kom
• ArcSight Logger PoC – Trafikverket
• ArcSight Logger PoC – ÖLL
• Design, installation, migration and configuration NNMi 10 – Trafikverket
• Design, installation and configuration ArcSight Logger – Landstinget Mellansverige
• Design, installation, migration och configuration NNMi 10 – TDC
• Design, installation and configuration NNMi 10 – St Erik Kom (TDC)
• Design, installation and configuration NNMi 10 – Volvo IT (TDC)
• Speech/Presentation at Micro Focus Universe Monaco –NNMi/SPI
• Design, installation and configuration ArcSight ADP – TDC
• Design, installation and configuration ArcSight Logger – Region Mellansverige
• Design, installation and configuration ArcSight Logger – Kommun Mellansverige
• Design, installation and configuration ArcSight Logger – Volvo IT/HCL
• Design, installation and configuration ArcSight ESM – Tele SOC
• Design, installation and configuration ArcSight ESM – Tele2 Internal
• Installation and tuning of ArcSight Smart Connectors and Flex – many customer sites
• Upgrading of several ArcSight ADP – many customers
• Upgrading of several ArcSight ESM – Tele2 SOC and Internal instance
• Design, installation and configuration Elastic Stack – Tele2 SOC
• Configuration Rapid7 insightVM – Tele2 SOC
• Design, installation and configuration ArcSight ADP – Tele2 Internal
• Design, installation and configuration ArcSight ADP – Tele2 SOC
• Long term Operation support of ArcSight environment – Tele2 SOC
• Long term Operation support of ArcSight environment – St Erik Kommunikation
• Long term Operation support of ArcSight environment – Tele2 Internal
• Long term Operation support of ArcSight environment – Region Mellansverige
• ArcSight Technical Lead – Ericsson
• ArcSight Architect – Ericsson
• ArcSight Flex Connector and ESM Content Developer – Ericsson
• Palo Alto Networks Cortex XSOAR architect – Ericsson
• Palo Alto Networks Cortex XSOAR developer – Ericsson
• ArcSight Subject-matter Expert (SME) – Svensk myndighet

Competence areas

Cyber Security

  • ArcSight Logger – Level 5
  • ArcSight ArcSight Management Center – Level 5
  • ArcSight Smart Connectors – Level 5
  • ArcSight Flex Connectors – Level 5
  • ArcSight Enterprise Security Manager (ESM) – Level 5
  • ArcSight Fusion – Level 3
  • ArcSight SOAR/Response – Level 3
  • ArcSight Recon/Search – Level 2
  • ArcSight Transformation Hub – Level 4
  • Palo Alto Networks Cortex XSOAR – Level 4
  • Anomali/CIF/MISP (Threat Int) – Level 2
  • ElasticStack (alias ELK) – Level 2
  • Microsoft Sentinel – Level 3
  • AWS SecurityHub – Level 2
  • AWS GuardDuty – Level 2
  • CrowdStrike Falcon – Level 2
  • Nessus – Level 2
  • Rapid7 insightVM – Level 1
  • CheckPoint – Level 1

Network Management and monitoring

  • Network Node Manager (NNMi alias OpenView) – Level 5
  • NNMi iSPI Perf for Metrics / QA / Traffic – Level 5
  • NNMi iSPI IP Telephony – Level 2
  • Op5 Monitor – Level 1
  • Observium – Level 1
  • PacketShaper – Level 1

System Management and monitoring

  • HP Operations Manager for Windows – Level 2
  • HP Systems Insight Manager – Level 2

Cloud

  • Azure – Level 2
  • AWS – Level 2
  • GCP – Level 1

Operation system

  • RedHat/CentOS Linux – Level 4
  • Windows – Level 3
  • Ubuntu – Level 2

Networking

  • SNMP (v1/v2c/v3) – Level 5
  • Cisco IP SLA, Netflow/AVC/NBAR – Level 1
  • Cisco PI, LMS – Level 1
  • Cisco Routing/Switching – Level 1
  • Cisco Secure ACS – Level 1
  • BIND/DNS – Level 1
  • IPv6 – Level 1

Programming/scripting

  • Python – Level 3
  • Bash – Level 3
  • VBScript/Powershell – Level 2
  • Postman – Level 2
  • REST-API – Level 2
  • Perl – Level 1

Virtualization

  • VMWare – Level 3
  • Kubernetes/Docker – Level 2

Frameworks

  • MITRE ATT&CK Framework – Level 2
  • Center for Internet Security (CIS) – Critical Security Controls – Level 2
  • Center for Internet Security (CIS) – Benchmarks – Level 1

Others areas

  • Technical project leader – Level 2
  • ITIL – Level 2

Certifications

  • Microsoft Certified Systems Engineer (MCSE) 2000
  • Cisco Certified Network Associate (CCNA) 2000
  • Cisco Certified Design Associate (CCDA) 2000
  • Building Cisco Multilayer Switching Networks (BCMSN) 2000
  • Building Scalable Cisco Networks (BSCN) 2001
  • Building Cisco Remote Access Networks (BCRAN) 2001
  • Cisco Internetworking Troubleshooting (CIT) 2001
  • Cisco Certified Network Professional (CCNP) 2001
  • HP OpenView Network Node Manager I & II 2002
  • CiscoWorks2000 – Network Management Exam for Field Engineers 2002
  • HP OpenView Operations for Windows 2003
  • Sun Certified System Administrator for Solaris 9, Part I 2003
  • Accredited Integration Specialist – HP OpenView Systems and Servers 2004
  • Accredited Integration Specialist – HP OpenView Network Services 2004
  • Recertification CCNP 2004
  • Foundation Certificate in IT Service Management (ITIL) 2006
  • HP OpenView Systems and Servers v7 – ASE 2006
  • HP OpenView Network Services Management – ASE 2006
  • Configuring BGP on Cisco Routers (BGP) 2007
  • Recertification CCNP 2007
  • Red Hat Certified Technician (RHCT) 2008
  • Recertification CCNP 2010
  • Blue Coat Certified PacketShaper Professional (BCPSP) 2012
  • Recertification CCNP 2013
  • HP Technical Certified I – ArcSight 2013
  • TDC Excellent program – Senior Specialist 2014
  • HP ATP – ArcSight Security V1 – 2015
  • HPE ArcSight Logger+ 6.x Admin and Operations – ASE – 2016
  • HPE ArcSight ESM 6.x Advanced Analyst – ASE – 2017
  • Check Point CCSA R80 – 2018
  • CompTIA Security+ Certification – 2021
  • Technical Bootcamp: ArcSight Recon – Threat Hunting – 2023
  • CompTIA Cybersecurity Analyst (CySA+) Certification – 2024

Education and courses

  • Building Cisco Multilayer Switching Networks (BCMSN)
  • Design Cisco Networks (DCN)
  • Extreme Networks – Getting Started with Extreme
  • Extreme Networks – Lighting up the Enterprise
  • Building Scalable Cisco Networks (BSCN)
  • Cisco Internetworking Troubleshooting (CIT)
  • HP OpenView Network Node Manager I & II
  • HP OpenView Operations for Windows
  • HP OpenView Performance Insight
  • Solaris(TM) 9 OE systemadministration
  • Perl programmering
  • SNMP Advanced
  • HP OpenView Operations for Windows II
  • Implementing Cisco MPLS
  • Configuring BGP on Cisco Routers
  • HP OpenView Network Node Manager II
  • Red Hat Linux System Administration
  • HP Network Node Manager i-series 8.x Software
  • op5 Monitor Basic and Advanced Training Course
  • HP Network Node Manager i-series 9.x Software Advanced
  • HP Network Node Manager i-series 9.x iSPI
  • Utbildning/Workshop IPv6 (3 dagar)
  • Cisco Implementing Cisco IP Switched Networks (SWITCH)
  • Python 3 Programming Essentials
  • HP ArcSight Workshop
  • HP ArcSight Express, Logger, Smart Connector
  • HP ArcSight ESM 6.5 Administrator and Analyst – ATP
  • Cisco Implementing Cisco IP Switched Networks (SWITCH)
  • The Complete Ethical Hacking Course: Beginner to Advanced
  • ArcSight Logger+ 6.0 Administration and Operations – ASE
  • The Complete Cyber Security Course : Network Security!
  • The Complete Cyber Security Course : Hackers Exposed!
  • Professional Penetration Testing – LabCenter 2016
  • Cisco DevNet Express (Python, JSON, REST-API, DNA, APIC-EM) London
  • SDN – APIC-EM Training
  • HPE ArcSight ESM 6.x Advanced Analyst – ASE
  • Check Point CCSA R80
  • Cisco Firepower Threat Defense grundkurs
  • Cisco Stealthwatch 6.10 Deployment
  • Cisco Stealthwatch 6.10 v1.2
  • Elasticsearch Engineer I
  • Elasticsearch 6 and Elastic Stack – In Depth and Hands On!
  • CompTIA Security+ Certification; SY0-501. The Total Course
  • CompTIA Security+ (SY0-501) – CBT Nuggets
  • Elasticsearch Engineer II
  • CompTIA Security+ (SY0-501) Bootcamp
  • Microsoft AZ-500 Certification: Azure Security Technologies
  • CrowdStrike Universe: FHT 100, 101, 104, 120, 121, 130, 140, 150
  • Palo Alto Networks Cortex XSOAR
  • SSL/TLS Operations
  • Nessus Scanner: Network Scanning from Beginning to Advanced
  • Docker and Kubernetes: The Practical Guide
  • Implementing the NIST Cybersecurity Framework (CSF)
  • Data Processing with Logstash (and Filebeat)
  • Elasticsearch 8 and Elastic Stack: In Depth and hands on)
  • Apache Kafka Series – Kafka Cluster Setup and Administration
  • The Complete Python Bootcamp From Zero to Hero
  • MITRE ATT&CK Framework Essentials
  • Introduction to the CIS Controls
  • CompTIA CySA+ (CS0-003) Complete Course
  • Implementing the NIST Cybersecurity Framework (CSF)
  • Implementing the NIST Risk Management Framework (RMF)

Events

  • HP Software Universe 2002 – Lissabon
  • HP Software Universe – Hamburg
  • HP Software Universe – Madrid
  • HP Software Forum – Denver
  • HP Software Universe – Nice
  • HPE Protect in Washington DC
  • HPE Protect in Washington DC
  • Micro Focus Protect in Washington DC
  • Micro Focus Universe in Monaco
  • Micro Focus Universe in Monaco – Presenting
  • Micro Focus Universe 2019

Competence classification

Level 1
Knowledge – Has education in the field
Experience – has worked as a consultant in the field but not recently
Management – takes responsibility for subarea
Independence – Independently perform defined tasks

Level 2
Knowledge – Has education in the field
Experience – 1-2 years as a consultant in the field, has participated in or performed a number of similar assignments.
Management – takes responsibility for subarea, can lead a smaller group
Independence – Independently perform defined tasks

Level 3
Knowledge – High competence in the field
Experience – 3-6 years as a consultant in the field, is a model for other consultants at a lower level. Have been at level 2 for at least 1 years
Management – takes responsibility for subarea, can lead a smaller group
Independence – can work independently

Level 4
Knowledge – High level of generalist competence, or very high level of competence in the field
Experience – has participated in major assignments in the field and carried out assignments with very high quality. The level is usually reached at the earliest after 7-10 years as a consultant in the field. Have been at level 3 for at least 1 years
Management – takes responsibility for managing a larger group Independence – very big

Level 5
Knowledge – Top rankings within the current area, perceived as expert in the market
Experience – (like 4) but has been at level 4 for at least 1 years
Management – has great habits and experience to work in senior management
Independence – very big