
Syed Ibrahim Khalil
Cybersecurity & Privacy Engineer
Data Protection | Security Research
I work on security and privacy problems where real-world data, infrastructure, and users intersect. My focus is building systems that protect sensitive data while enabling meaningful analysis. With experience spanning applied cybersecurity in operational environments and research-driven privacy engineering, I seamlessly bridge the gap between analysis, implementation, and system-level design.
Featured Work
-

Privacy-SATD Miner: Detecting Privacy Technical Debt (Prototype)
As part of my ongoing research into privacy engineering, I am currently developing a prototype pipeline called the Privacy-SATD Miner. Note: This is an active work-in-progress prototype and is not yet finished. Privacy as Code Self-Admitted Technical Debt (SATD) occurs when developers leave comments indicating suboptimal implementation or “hacks” in the codebase. My project adapts…
-

Advancing Urban Mobility Privacy Engineering and Spatial Analytics
🏆 Best Work-in-Progress (WIP) Paper Award – IEEE PerCom 2026 From July to December 2025, I worked as a Data and Privacy Engineer (Wissenschaftlicher Mitarbeiter) at the Chair of Mobile Systems at the University of Bamberg. My work focused on the BMBF-funded Explanym project, which tackles a fundamental issue in smart city infrastructure: how to…
-

Master’s Thesis: Evaluating Privacy-Utility Trade-offs in Differentially Private Mobility Data Analysis
I am thrilled to share the culmination of my Master’s studies in International Software Systems Science at the University of Bamberg, where I achieved a 1.0 (Excellent) grade for my thesis: Evaluating Privacy-Utility Trade-offs in Differentially Private Mobility Data Analysis. The Privacy Crisis in Mobility Data Mobility data—such as GPS trajectories and cellular traces—is essential…
-

Protecting Privacy in Crowd Monitoring: My Work on Attack Models
I’m excited to share some insights into a recent research project I’ve been involved in, focusing on privacy-aware crowd monitoring. Our work, titled “Privacy-aware Publication of Wi-Fi Sensor Data for Crowd Monitoring and Tourism Analytics,” was recently presented at the ACM SIGSPATIAL International Workshop on Geo-Privacy and Data Utility for Smart Societies (GeoPrivacy ’23). You…
-

Active Defense and Cyber Deception
Another great course from John Strand, this time on Active Defense and Cyber Deception. Like SOC Core Skills, this was a 4-day intensive hands-on even…
-

Threat Hunting Summit
Just finished up the Antisyphon Threat Hunting Summit. The main focus here was getting away from relying on alerts and actually looking for anomalies in network traffic. Learned a ton about using RITA and AC-Hunter to parse Zeek logs. The sessions covered how to spot beaconing behavior from malware, identifying long connections that might be…
Recent Posts
- Active Defense and Cyber DeceptionAnother great course from John Strand, this time on Active Defense and Cyber Deception. Like SOC Core Skills, this was a 4-day intensive hands-on even…
- Threat Hunting SummitJust finished up the Antisyphon Threat Hunting Summit. The main focus here was getting away from relying on alerts and actually looking for anomalies in network traffic. Learned a ton about using RITA and AC-Hunter to parse Zeek logs. The sessions covered how to spot beaconing behavior from malware, identifying long connections that might be… Read more: Threat Hunting Summit
- Privacy-SATD Miner: Detecting Privacy Technical Debt (Prototype)As part of my ongoing research into privacy engineering, I am currently developing a prototype pipeline called the Privacy-SATD Miner. Note: This is an active work-in-progress prototype and is not yet finished. Privacy as Code Self-Admitted Technical Debt (SATD) occurs when developers leave comments indicating suboptimal implementation or “hacks” in the codebase. My project adapts… Read more: Privacy-SATD Miner: Detecting Privacy Technical Debt (Prototype)
- Turn Ideas into Code with GitHub CopilotCompleted Carrie Roberts’ training on GitHub Copilot. I wanted to see how to actually integrate this into my daily workflow without just copy-pasting bad code. Learned how to use Copilot Chat for troubleshooting and generating unit tests, as well as the best ways to structure prompts to get secure, usable code. We also covered the… Read more: Turn Ideas into Code with GitHub Copilot
- SOC Detection Engineering Crash CourseTook Hayden Covington’s Workshop on SOC Detection Engineering. This was all about treating your detection rules like software. We learned how to…




