Dr. Marc Ph. Stoecklin is a Research Scientist and the Manager of the Security Services (GSAL) team in the Security Research department at the IBM T.J. Watson Center in Yorktown Heights, NY and the IBM Research – Zurich in Rüschlikon, Switzerland. He leads a team working on Cyber Security Analytics with a particular focus on advanced threat detection, big data analytics, network and device security, as well as security data visualization.
Marc holds a PhD (Dr. ès sc.) degree in Computer, communication and Information sciences and a MSc degree in Communication Systems with specialization in "Information and Communication Security" both from École Polytechnique Fédérale de Lausanne (EPFL). In his PhD thesis, he developed novel unsupervised methods to detect and diagnose behavior-based anomalies on the network flow level.
In 2006, Marc joined IBM Research as a member of the AURORA project. In this project, he contributed to the design and development of a flow-based traffic monitoring system, which has been commercialized by IBM Tivoli. In parallel, he developed several behavior-based anomaly detection components for AURORA traffic monitoring system. In 2011, Marc joined the Global Security Analysis Lab (GSAL) at the IBM T.J. Watson Research Center in Hawthorne, NY where he participated in the development of the IBM Cyber Security Analytics and Intelligence research platform. In 2012, Marc became a Research Staff Member of the Cloud and Security Group in the Industry & Cloud Solutions department at IBM Research – Zurich.
His research interests include network and mobile security analytics, big data analytics and minig, traffic monitoring, web technologies, and data visualization.