About the author:

Rukhsar Khan

Rukhsar Khan, founder and former CEO and CTO of AIRNET, discovered his affinity for Information Technology and Information Security more than two decades ago – a true passion that has never left him. While at AIRNET, Rukhsar was primarily in charge of running a Network Forensic System at the German Police of the district Northrine Westphalia, one of AIRNET’s key accounts of that time. He was also a Computer Network and Cyber Security instructor as well as a renowned author in the field of Computer Network Technology in German language.

In his special relationship with IBM, Rukhsar's current role in the Security Expert Labs business unit is Innovative Business Development & Consulting in Threat Management. He helps customers in improving their SOC maturity level by introducing proactive Threat Hunting methodology. This includes product agnostic consulting as well as IBM product-specific consulting and implementation in QRadar Security Information & Event Management (SIEM) and Resilient Security Orchestration, Automation and Response (SOAR).

Before this, Rukhsar spent some time working with the IBM X-Force IRIS Incident Response team. He was the European functional lead of a proactive forensic Threat Hunting service called ATA – Active Threat Assessment.

Prior to this, Rukhsar spent multiple years in partnership with Hexis Cybersolutions, a former KEYW subsidiary. He supported them with his small commercial and technical AIRNET team in establishing their EMEA business in the SIEM and Endpoint Detection and Response (EDR) fields.

Rukhsar served the German Police of the district Northrine Westphalia as a consulting instructor or instructing consultant in the Computer Network and Information Security fields for more than a decade. He also served the German Military “Deutsche Bundeswehr” for about seven years as a Computer Network and Information Security instructor in the Competence Center IT initiative. He used to train technical officers of medium and higher grades who were responsible for the network and security operations in areas of crisis.

Prior to this, Rukhsar was a Certified Cisco Systems Instructor teaching classes around Computer Networks, Routing, Switching, MPLS and VPN technology as well as Firewalls and IDP/IDS systems.

In the 90’s, which were Rukhsar’s early professional years, he used to be a Professional Services and Support Engineer for LAN and WAN technology including Ethernet, Token Ring, FDDI and ATM.

Rukhsar is currently holding a GIAC Certified Forensic Analyst Gold-Level certification under #12275. His paper is about Threat Hunting and Incident Response in a post-compromised environment.

Rukhsar lives in Germany, near Frankfurt am Main, where he was born in 1975. Fifteen years ago he founded a patchwork family together with his wife. Altogether, Rukhsar and his wife have five children. Four of them are already "adult". The youngest is a teenager. If not at work, Rukhsar loves to do sports with the elder girls and boys. More precisely his challenge is to keep up with them. He also adores to hike with his wife in the mountains and explore new landscapes around the world.

Contact us:

Rukhsar Khan

Tel: +49 (0)6187 20 78 848