Ruben Groenewoud is a Senior Security Research Engineer at Elastic with four years of hands-on experience in Linux behavior analysis, ML-driven detection engineering, malware reverse engineering, and signature development. He brings practical red-team and SOC experience from roles including Reservist Cyber Officer and penetration tester, giving him a pragmatic attack-to-detection perspective. Ruben’s background spans cloud and network engineering through internships and early-career roles, enabling him to connect low-level system behavior with enterprise detection needs. Based in Limburg, Netherlands, he combines a Master’s in Information Management and Business Intelligence with a curiosity for translating research into production-ready detection rules and models. Notably, he advances Linux-focused detection techniques at Elastic while maintaining an active GitHub presence under Aegrah, signaling ongoing experimentation and tooling work beyond his day job.
4 years of coding experience
6 years of employment as a software developer
Master's degree Information Management and Business Intelligence, Master's degree Information Management and Business Intelligence at Maastricht University School of Business and Economics
Bachelor's degree Network Engineering, Bachelor's degree Network Engineering at Zuyd University of Applied Sciences
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Ruben Groenewoud - Senior Security Research Engineer at Elastic