Gabriel Haab

Associate Director - Red Team Operations

Cybersecurity professional with over 5 years of experience with a solid background in incident response, digital forensics, threat hunting, and offensive security. I’ve led complex investigations, mitigated advanced cyber threats, and driven initiatives to proactively identify and mitigate enterprise vulnerabilities across international locations and teams. With both bachelor’s and master’s degrees in cybersecurity, combined with certifications like CISSP and OSCP, I bring a perfect balance of technical expertise and strategic thinking to any organization.

● contact@gabrielhaab.com ● LinkedIn Profile ● Check out my blog!

Professional Experience

UBS - Union Bank of Switzerland

UBS is a global financial services firm specializing in wealth management, investment banking, and asset management, renowned for its client-centric approach and innovative solutions.

Associate Director - Red Team Operations

January 2025 – Present

Work with stakeholders and management to develop red team scenarios consistent with real-world cyber threats
Work collaboratively with blue teams and other security monitoring functions
Execute controlled red team exercises by emulating the tactics, techniques, and procedures of cyber threat actors
Liaise with key stakeholders during testing
Develop and submitting detailed reports of findings, analysis, and recommendations
Take part in operational briefings and presentations to technical teams, non-technical stakeholders, and senior management
Provide technical expertise to the bank in general

Microchip Technology Inc. (3 years and 8 months)

Microchip Technology is a leading provider of microcontroller, analog, and flash-IP solutions, enabling innovation across diverse industries with reliable and high-performance semiconductor products.

Senior Security Analyst

June 2023 – January 2025

- - - - Led incident response for multiple security incidents, ensuring minimal downtime, and coordinating with multiple teams, without compromising security.
      - Developed automation scripts, reducing manual security processes, allowing more focus on proactive threat hunting and improving team efficiency.
      - Created and led a Red Team, performing advanced threat simulations that uncovered critical vulnerabilities and strengthened the organization’s defenses.
      - Administered and optimized Splunk, ensuring comprehensive log ingestion, correlation, and tuning of detections to enhance real-time threat visibility.
      - Conducted static and dynamic malware analysis, and reverse-engineering files to extract IoCs, improving threat detection and response.
      - Led the CSIRT team in analyzing bug bounty reports, evaluating criticality and exploitability, and coordinating with developers, which increased high-priority remediation.
      - Developed internal training programs for analysts, reducing onboarding time and providing learning through recorded video tutorials and step-by-step procedures.

Security Analyst II

May 2022 – June 2023

Security Analyst I

June 2021 – May 2022

MegaplanIT Holdings LLC. (10 months)

MegaplanIT is a cybersecurity firm specializing in security testing and compliance and managing security solutions to protect data and systems.

Security Analyst II - Incident Response Specialist

Jan 2021 – May 2021

Triage of hundreds of alerts generated by several security solutions for different clients.
Threat hunting of potential threats for each client, depending on the business.
Handle vulnerability reports and notify users of critical/high vulnerabilities.
Be the subject matter expert for all EDR solutions.
Develop scripts in Python to automate ticket/alert review and raw log analysis.

Security Analyst I

Aug 2020 – Dec 2020

Professional Certifications

Certified Information Systems Security Professional (CISSP)

Offensive Security Certified Professional (OSCP)
Offensive Security Wireless Professional (OSWP)
Computer Hacking Forensics Investigator (CHFI)
Certified Ethical Hacker (CEH) Practical
CompTIA Pentest+
CompTIA CySA+
CompTIA Security+

Crowdstrike Administrator (CCFA)
Crowdstrike Responder (CCFR)
Crowdstrike Hunter (CCFH)
Cylance Security Professional (CSP)

Education

Masters of Science in Cybersecurity and Information Assurance

Western Governors University ● Fall 2021 - Spring 2022

The Master of Science in Cybersecurity and Information Assurance degree program is closely aligned with the National Initiative for Cybersecurity Education (NICE) and was designed with input from cybersecurity experts and leading IT employers to meet the most recent US Department of Homeland Security (DHS) and National Security Agency (NSA) guidelines. This program is also aligned with all CISSP security domains.

Bachelor of Applied Science in Cyber Operations/Cyber Engineering

University of Arizona ● Fall 2019 - Spring 2021

The Engineering Track is a deeply technical, interdisciplinary, security-focused Computer Science program. The Engineering Track meets the National Security Agency (NSA) Center of Academic Excellence in Cyber Operations (CAE-CO) academic requirements.