STATUS: OPEN TO NEW ROLES

Elena María del Río

Secure systems engineer working across GNSS/Galileo operations and offensive security — from satellite service provision to penetration testing.
Location
40.4168°N, 3.7038°W
Current role
Secure Systems Eng.
Certs
eJPT · Security+
01About

I'm a secure systems engineer currently working on the EU's Galileo and GOVSATCOM programmes at Isdefe, and completing a Master's in Cybersecurity. Day to day that means satellite service operations; off the clock, it means pulling signals apart to see how they break.

02Projects

Independent and academic work — the things I can point to instead of a classified job description.

Master's thesis (TFM)

LLM-assisted pentesting for IoT & RF

Fine-tuned a BERT-based language model to automate security audits over radio-frequency traffic (Sub-GHz, NFC), aiming to flag likely vulnerabilities the way a human auditor would triage them.

  • Captured analogue/digital RF traces with a Flipper Zero
  • Built the training pipeline in Python, tuning hard/soft labels to handle uncertain predictions
  • Validated the approach against real weaknesses: default MIFARE Classic keys, insecure frequencies, missing encryption
PythonBERT / Hugging FaceFlipper ZeroRF security
github.com/Elenadr/entrenamientoLLM_iot ↗
Bachelor's thesis (TFG)

My Vectorscope — Android

A native Android app that simulates a professional broadcast vectorscope, giving colourists a way to check colour balance directly from a phone.

  • Derived the matrix transforms to map RGB into YIQ colour space
  • Optimised bitmap resizing on lightweight threads for smooth, real-time rendering
  • Cross-validated output against MATLAB and Adobe After Effects for accuracy
Java / Android StudioMATLABCanvas / XML UI
github.com/Elenadr/MyVectorscope ↗
Red Team project

Reverse-engineering a polymorphic encoder

A low-level teardown of Shikata Ga Nai, the polymorphic XOR encoder used to disguise shellcode from signature-based detection.

  • Disassembled and traced execution step-by-step with GDB
  • Read register and FPU state to understand each decoding round
  • Documented how the encoder mutates its own bytes to evade static analysis
GDBx86 AssemblyEvasion techniques
Blue Team project

Perimeter security architecture & BCP

Designed a hardened network architecture for a corporate environment, paired with a Business Continuity Plan built to ISO standards.

  • Configured Sophos firewalls: access rules, VPN tunnels, IDS/IPS
  • Hardened Active Directory via GPOs and segmented DMZ / LAN zones
  • Wrote the continuity plan covering recovery objectives and failover procedures
Sophos FirewallActive DirectoryISO BCP
Hobby project

Arduino lab notebook

A documented wiki of small electronics builds from learning Arduino in my spare time — the low-level, hands-on counterpart to the software side of my work.

  • Digital dice, binary clock and RGB lamp — sensor input, timing and PWM colour control
  • Servo motor control and a proximity-sensor + buzzer + LED alert circuit
  • A themed holiday build combining several of the above into one light-and-sound project
Arduino / C++SensorsCircuit design
github.com/Elenadr/MyArduinoProjects/wiki ↗
More write-ups and lab work live on github.com/Elenadr ↗
03Certifications

Formal credentials backing up the project work above.

2025-12

eJPT — Junior Penetration Tester

INE Security
  • Assessment methodologies
  • Web application penetration testing
  • Host & network penetration testing / auditing
View credential ↗
2024-04

CompTIA Security+

CompTIA
  • Fundamentals of information security & threats
  • Security assessments & risk analysis
  • Identity, access & incident management
More info ↗
04Skills
Security & GNSS
GalileoGNSSPRS GOVSATCOMVulnerability Assessment
Offensive security
Web App PentestingHost & Network Pentesting AuditingAssessment Methodologies
Engineering
Systems EngineeringTest Automation Decision Support Systems
Languages
Spanish (native)English (B2)
05Education
2024-04 → 2025-05 · VALENCIA, ES

Master's in Cybersecurity

Universidad Internacional de Valencia · EQF 7

Methodologies and tools for cybersecurity audits and penetration testing, with systematic vulnerability detection and analysis.

2016-09 → 2022-06 · MADRID, ES

B.Eng. Audiovisual & Multimedia Systems Engineering

Universidad Rey Juan Carlos · EQF 6
2022-09 → 2023-05 · MADRID, ES

Cybersecurity from Scratch

Club Hacking Madrid