Manuel Leos Rivas

Cloud Infrastructure Architect, AWS

Manuel earned a bachelor’s degree in Business Administration and Computer Systems Engineering at the Universidad Autonoma de Nuevo Leon in Mexico and a Master of Sciences in Information Security Engineering with focus on Incident Response at the SANS Technology Institute. He holds around 40 cybersecurity-related certifications.

He started working full-time in the information security field in early 2000. Since 2012, Manuel has worked as a security expert, including supporting over a thousand WAFs to protect a variety of web applications. Starting in 2016, Manuel committed part of his personal time to improve the OWASP ModSecurity Core Rule Set, becoming an active rule developer. Since then he has contributed numerous new rules, fixed false positives and false negatives and assisted with many other improvements.

Content from Manuel Leos Rivas

Web Server Protection
Learning Path
Web Server Protection

Web Server Protection

The Web Server Protection learning path helps you to understand the different activities and processes to implement and monitor the security of a web server or web application. You will learn the basic concepts and tools to design, evaluate and monitor your web server.

Introduction to the Web
Course
Introduction to the Web

Introduction to the Web

Get an introduction to the web, how it works and the basic protocols required to use it.

Infrastructure Components
Course
Infrastructure Components

Infrastructure Components

This serves as an introduction to some of the most common infrastructure components and how are they used for providing web server services.

Preparation – Design Considerations
Course
Preparation – Design Considerations

Preparation – Design Considerations

Learn the basic considerations and implementation of diverse controls for web server platform design.

Preparation – Hardening
Course
Preparation – Hardening

Preparation – Hardening

Learn what hardening is and identify the different components that require hardening.

Logs
Course
Logs

Logs

Explore some of the common log formats and how to customize the web server configuration.

Command Line
Course
Command Line

Command Line

Learn the purpose of some of the basic command-line tools and how to use them.

Web Application Firewalls
Course
Web Application Firewalls

Web Application Firewalls

Learn about the different types of WAF configurations, as well as the OWASP CRS and its capabilities.

Monitoring
Course
Monitoring

Monitoring

In this course, you'll explore the different elements involved in planning the monitoring of a web server, as well as what to look for on the logs and alarms.

Active Defense
Course
Active Defense

Active Defense

Understand how to deploy active defense mechanisms that would allow the web server to prevent or delay attacks.

Exceptional learning experiences powered by LX Labs cyber expertise

Infosec Skills courses and labs are powered by LX Labs — our elite team of cyber SMEs, learning specialists and community of top-ranked security instructors, published authors and sought-after industry leaders. We rigorously vet all Infosec Skills training resources to guarantee they meet certification and compliance requirements and align with recognized guidelines like the NICE Cybersecurity Workforce Framework.