Securing the Digital Frontier.
Hello! I'm Caleb Grossnickle, a dedicated Cybersecurity Analyst based in Iowa. Currently operating as a Cybersecurity Analyst II at StoneX, I specialize in threat hunting, incident response, and securing complex network environments using modern XDR and SIEM solutions.
Beyond the screen, I’m passionate about serving my community and exploring new ways to work with technology. I volunteer at my local church as a production coordinator for Cornerstone Recovery, a role that has sparked a fun side-journey into learning audio engineering. When I'm unplugged from the homelab, you can usually find me hitting the local disc golf courses, cheering loud for the Iowa State Cyclones, or kicking back with a great piña colada.
I invite you to explore my career timeline, check out my community involvement, or reach out securely.
Core Competencies
A strategic overview of the methodologies and technologies I leverage to secure infrastructure, automate triage, and hunt threats.
Strategic Concepts
AI Security Analyst Tuning
Developing and refining AI-driven security models to automate alert triage, reduce false positives, and accelerate complex threat detection.
Incident Response
End-to-end management of security incidents, from initial triage and sandboxing to containment, ransomware remediation, and tabletop exercises.
Security Engineering
Designing robust security architectures, writing optimized KQL queries, and integrating disparate systems like XDR and SIEM for unified visibility.
Technical Domains
Leveraging advanced EDR solutions to conduct deep-dive behavioral analysis, hunt for persistent threats, and rapidly isolate compromised hosts across the enterprise. I utilize advanced query languages to baseline normal activity and detect anomalies before they escalate.
Field Notes
Thoughts, homelab experiments, and updates straight from my terminal.
Career & Certifications
Cybersecurity Analyst 2
StoneX | Sep 2024 – Present
- Investigate and respond to enterprise-wide security incidents by correlating telemetry across advanced EDR, SIEM, SOAR, email security gateways, and threat intelligence platforms.
- Develop and optimize complex data queries to baseline environment activity, automate anomaly detection, and drive proactive threat hunting campaigns.
- Participate in and coordinate tabletop exercises to continually assess, stress-test, and refine incident response playbooks.
- Refine and train Ai security analyst to support opporations and reduce alert fatigue.
- Developed standard operating procedures for analysts to follow.
Cybersecurity Analyst
Combined Systems Tech | Oct 2022 – Sep 2024
- Deployed 1,300+ Sentinel One XDR agents to external customers, leading the effort to migrate endpoints from legacy AV.
- Managed 3rd party SIEM solutions and handled incident response operations for customers.
- Remediated a major ransomware incident, getting the client fully operational within 3 days.
- Implemented NIST risk management framework to better secure customer environments.
- Wrote standard operating procedures for all alerts.
EDR Support Analyst
State of Iowa OCIO | May 2022 – Oct 2022
- Deployed EDR tool (CrowdStrike Falcon) to customer staff across the state.
- Established communication plans and maintained relationships with all 99 counties.
- Spoke at the Iowa State Association of Counties regarding EDR implementation and security posture.
- Maintained strong relationships with representatives from all 99 Iowa counties, fostering open communication and addressing their unique cybersecurity requirements.
- Established a communication plan for EDR deployment, ensuring clear and effective communication with counties and agencies throughout the implementation process.
- Collaborated with technical teams to troubleshoot and resolve any issues during the configuration and operation of EDR solutions.
Cybersecurity Intern
State of Iowa OCIO | Dec 2020 – May 2022
- Assisted in the massive modernization project for the state's EDR platform.
- Helped develop and structure an Information Sharing and Analysis Center (ISAC).
- Deployed and debugged state security devices while assisting in revising the incident response program.
StoneX
- Investigate and respond to enterprise-wide security incidents by correlating telemetry across advanced EDR, SIEM, SOAR, email security gateways, and threat intelligence platforms.
- Develop and optimize complex data queries to baseline environment activity, automate anomaly detection, and drive proactive threat hunting campaigns.
- Participate in and coordinate tabletop exercises to continually assess, stress-test, and refine incident response playbooks.
- Refine and train Ai security analyst to support opporations and reduce alert fatigue.
- Developed standard operating procedures for analysts to follow.
Combined Systems Technology
- Deployed 1,300+ Sentinel One XDR agents to external customers, leading the effort to migrate endpoints from legacy AV.
- Managed 3rd party SIEM solutions and handled incident response operations for customers.
- Remediated a major ransomware incident, getting the client fully operational within 3 days.
- Implemented NIST risk management framework to better secure customer environments.
- Wrote standard operating procedures for all alerts.
Office of the Chief Information Officer
- Deployed EDR tool (CrowdStrike Falcon) to customer staff across the state.
- Established communication plans and maintained relationships with all 99 counties.
- Spoke at the Iowa State Association of Counties regarding EDR implementation and security posture.
- Maintained strong relationships with representatives from all 99 Iowa counties, fostering open communication and addressing their unique cybersecurity requirements.
- Established a communication plan for EDR deployment, ensuring clear and effective communication with counties and agencies throughout the implementation process.
- Collaborated with technical teams to troubleshoot and resolve any issues during the configuration and operation of EDR solutions.
Office of the Chief Information Officer (Intern)
- Assisted in the massive modernization project for the state's EDR platform.
- Helped develop and structure an Information Sharing and Analysis Center (ISAC).
- Deployed and debugged state security devices while assisting in revising the incident response program.
Community & Serving
Dedicated to giving back through technical production and ministry coordination.
Cornerstone Recovery
Production Team Coordinator | Oct 2022 – Present
- Serve as the production team coordinator.
- Mix live music for services.
- Coordinate and schedule the worship team for services.
Cornerstone Church of Ames
Production Team Technician | Aug 2022 – Present
- Serve as production team technician for city and campus ministries.
- Assist in remediating organizational security incidents.
Get In Touch
Whether you have a security inquiry, a networking opportunity, or just want to connect, feel free to reach out.