I am senior data scientist at DCSO, the German Cyber Security Organization, where our team drives innovation in threat detection and analysis through applied research on machine learning for security.

I received my PhD from the Technical University of Braunschweig in 2019, where I worked with Konrad Rieck at the Institute of System Security. Previous to this, and after graduating in Telecommunication Engineering at the Carlos III University of Madrid, I was an associate researcher at the Machine Learning Group of Klaus-Robert Müller at the Technical University of Berlin.

In 2015 I joined the Symantec Center for Advanced Machine Learning in Mountain View as a research intern, where I worked on deep learning methods for classification of code graph representations to infer behavioral patterns in malicious code.

Currently, I am interested in machine learning methods for high dimensional structured data to analyse and reverse engineer malware code and build behavioral models that enable the early identification of targeted attacks.

Peer Review

Data Mining and Knowledge Discovery (DAMI)
Neural Computing and Applications (NCAA)
Transactions on Information Forensics & Security (TIFS)
Transactions on Dependable and Secure Computing (TDSC)
Computers & Security (COSE)
International Journal of Information Security (IJIS)
Information Security Journal: A Global Perspective (ISJ)
Information Security Technical Report (ISTR)
Journal of Information Security and Applications (JISA)
Security and Communication Networks (SCN)
Applied Sciences - Computing and Artificial Intelligence (APPLSCI)
IET Information Security (IET-IS)
Pervasive and Mobile Computing (PMC)
Future Generation Computer Systems (FGCS)
Sensors (SENSC9)
Entropy (ENTRFG)
Computer & Informatics (CAI)
Arabian Journal for Science and Engineering (AJSE)
The SciTech Journal (SciTech)
Computing (COMP)

External Reviewer
ACM Conference on Computer and Communications Security (CCS) [2015]
Annual Computer Security Applications Conference (ACSAC) [2015, 2017]
International Symposium on Research in Attacks, Intrusions and Defenses (RAID) [2015, 2016]
Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA) [2014, 2016]
ACM Workshop on Artificial Intelligence and Security (AISEC) [2014, 2016]
Internacional Conference on Availability, Reliability and Security (ARES) [2013, 2014]
Symposium on Electronic Crime Research (eCRIME) [2014]
International Symposium on Engineering Secure Software and Systems (ESSOS) [2014]
IT-Sicherheitskonferenz (Sicherheit) [2014]
IFIP Information Security Conference & Privacy Conference (IFIP SEC) [2015, 2016]
International Conference on Soft Computing Models in Industrial and Environmental Applications (SOCO) [2014]
IEEE European Symposium on Security and Privacy 2018 (EuroS&P) [2016]
ACM ASIA Conference on Computer and Communications Security (ASIACCS) [2017, 2018]
IEEE International Conference on Distributed Computing Systems (ICDCS) [2018]

PC Memberships
Jornadas Nacionales de Ciberseguridad (JNIC) [2018]
International Workshop on FORmal methods for Security Engineering (ForSE) [2017, 2016]


Society of Spanish Researchers in Germany (CERFA/SFBD)

The Honeynet Project
Norway Chapter Lead

Security Without Borders


Technical University of Braunschweig
Deep Learning for Malware Analysis - Machine Learning for Computer Security [SS17, SS18]
Seminar Malware Analysis and Detection [WS15, WS16, WS17]
MSc in Computer Science

University of Göttingen
Smartphone Security - Computer and Network Security [WS14, WS15]
MSc in Applied Computer Science


Generating Stateful Black Box Fuzzers For Network Protocol Implementations - Christian Bruns [MS/2016]
Explicit Feature Spaces for Learning with Graphs - Benjamin Plock [BS/2015]

Code Projects
Protocol and adversary identification in Go - Google Summer of Code 2017
Droitbot - Google Summer of Code 2015
HpfeedsHoneyGraph - Google Summer of Code 2013


German Prize for IT-Security 2016 (2nd Place)