Rukhsar Khan, founder and former CEO and CTO of AIRNET, discovered his affinity for Information Technology and Information Security more than two decades ago – a true passion that has never left him. While at AIRNET, Rukhsar was primarily in charge of running a Network Forensic System at the German Police of the district Northrine Westphalia, one of AIRNET’s key accounts of that time. He was also a Computer Network and Cyber Security instructor as well as a renowned author in the field of Computer Network Technology in German language.
In his special relationship with IBM, Rukhsar is currently working with the X-Force IRIS Incident Response team. He’s the European lead of a proactive Threat Hunting and forensic service called ATA – Active Threat Assessment.
In addition to this, Rukhsar is educating IBM Business Partners and Clients in how to shift from individual Incident Response use cases to a holistic approach. He’s further teaching what a robust and actionable Cyber Threat Intelligence is and how to apply it in order to stay focused during an investigation as well as streamline forensic analysis and drastically reduce Incident Response time.
Prior to this, Rukhsar spent multiple years in partnership with Hexis Cybersolutions, a former KEYW subsidiary. He supported them with his small commercial and technical team in establishing their EMEA business in the Security Information & Event Management (SIEM) and Endpoint Detection and Response (EDR) fields.
Rukhsar served the German Police of the district Northrine Westphalia as a consulting instructor or instructing consultant in the Computer Network and Information Security fields for more than a decade. He also served the German Military “Deutsche Bundeswehr” for more than five years as a Computer Network and Information Security instructor in the Competence Center IT initiative. He used to train technical officers of medium and higher grades who were responsible for the network and security operations in areas of crisis.
Prior to this, Rukhsar was a Certified Cisco Systems Instructor teaching classes around Computer Networks, Routing, Switching, MPLS and VPN technology as well as Firewalls and IDP/IDS systems.
In the 90’s, which were Rukhsar’s early professional years, he used to be a Professional Services and Support Engineer for LAN and WAN technology including Ethernet, Token Ring, FDDI and ATM.
Rukhsar is currently holding a GIAC Certified Forensic Analyst Gold-Level certification under #12275. His paper is about Threat Hunting and Incident Response in a post-compromised environment.