Resume

Technical Associate Threat Intelligence

Location:

Austin, TX

Posted:

October 27, 2023

Contact this candidate

Resume:

ABDALLA

SOLIMAN

ad0nt2@r.postjobfree.com

947-***-****

https://www.credly.com/users/abdalla-soliman/badges

SKILLS

Splunk, QRADAR, Tenable Nessus, OpenVAS, Qualys, Cyber Threat intelligence/threat hunting, DLP, encryption, email security, HIDS/NIDS,Symantec EDR, RSA Security Console, DUO admin console, Pulse Secure, Windows Server: Active Directory

Fundamentals of Linux, basics of JAVA,

VPN, VLAN, ACL, DMZ

DHCP, NAT, TCP/IP, POS, SSL, VOIP, Ethernet, WAN, LAN, Windows Server

security protocols (e.g., TLS, SSH, ect.)

X.509 digital certificate standard and Public Key Infrastructure management

symmetric and asymmetric cryptographic algorithms (e.g., AES, RSA, ECC)

EDUCATION

University of The Cumberlands

Williamsburg, KY• 05/2022

Master of Science: DIGITAL FORENSICS And CYBERSECURITY

GPA: 3.98

Oakland Community College

2020

ASSOCIATE DEGREE: COMPUTER INFORMATION-SYSTEMS/CYBERSECURITY

GPA: 3.6, Magna Cum Laude

Dean's List Fall 2018

Dean's List Fall 2019

Dean's List Winter 2019

Bachelor of Science: MATHEMATICS

CERTIFICATIONS

CompTIA CYSA+ (In Progress)

Comptia Security+ Certified

AWS Cloud Practitioner

AWS Solutions Architect (In Progress)

Microsoft Azure Fundamentals Certified

Microsoft Technical Associate Security Fundamentals Certified

Microsoft Technical Associate Networking Fundamentals Certified

Microsoft Technical Associate Operating Systems Fundamentals Certified

Microsoft Technical Associate Windows Server Fundamentals Certified

Microsoft Technical Associate Cloud Fundamentals Certified

PROFESSIONAL SUMMARY

Motivated IT and Cybersecurity professional, with over 5 years of experience in Cybersecurity; monitoring and system surveillance for suspicious events using IPS, SIEM, and Vulnerability Scanners.

WORK HISTORY

TrendMicro – Cybersecurity Engineer

Remote • 11/2022 – Current

Implementing, troubleshooting, and maintaining Trend Micro TippingPoint and Cloud One Security in on premise environments such as VMWare and cloud environments such as AWS and Azure

Integrating TippingPoint and Cloud One Security with Splunk

Validating false positives and escalating valid hits to the Digital Vaccines Labs to create filter coverage.

Assisting customers to enable/disable the appropriate filters with the appropriate action sets (permit/deny/rate limit) depending on their attack vectors and security posture goals.

Dynatrace – Security Analyst

Remote• 11/2021 - 08/2022

Examine and respond to reported security incidents and phishing attempts, determining the root cause, and escalating as needed.

Manage and track remediation activities discovered through vulnerability management and scanning tools. Ensure vulnerability management policy is followed.

Become subject matter expert (SME) and make recommendations for improvements in security monitoring and compliance tools such as SIEM, Scanning Tools, Firewalls, Microsoft E5 Security Suite, etc.

Develop and deploy pragmatic solutions, practices, and procedures to ensure Dynatrace meets internal and customer security requirements.

Provide operational efficiency within the security team by providing and analyzing key metrics, performance indicators and threat assessments in accordance with security policies and procedures.

Uncover, categorize, track and close security loopholes to maintain a secure environment.

Maintain and validate security evidence repository with required documentation for compliance with security policies and audit requests.

Generate dashboard and scorecards to articulate the current security posture and threat level.

Reduce time to complete customer security RFIs while improving accuracy and quality of responses.

Obtain 100% compliance with IT security awareness policy both annually and for new hire training within the specified training windows.

Maintain SOC2 Type 2 attestation on an annual basis, pursue and facilitate additional certifications as required by business (FedRAMP, ISO 27002:2013, etc.).

Review Dynatrace vendor’s security posture to ensure they meet Dynatrace requirements.

Work with third-party security vendor, ensure they have high quality responses and review all RFI responses for accuracy. Ensure security controls and question bank are updated and accurate.

SOC Analyst /Global NTT

Remote • 04/2019 - 11/2021

>Actively monitor security threats and risks, provide in-depth incident analysis, evaluate security incidents, and will provide proactive threat research.

>Monitor network traffic for security events and perform triage analysis to identify security incidents.

>Respond to computer security incidents by collecting, analyzing, preserving digital evidence and ensure that incidents are recorded and tracked in accordance with SOC requirements.

>Work closely with the other teams to assess risk and provide recommendations for improving our security posture.

>The ability to take lead on incident research when appropriate and be able to mentor junior analysts.

>Managing cases with enterprise SIEM systems like Splunk, logrhythm, and QRadar.

>Leverage the datalake and SIEM for everyday tasks like alarm triage, customer data inquires, and lock outs.

>Managing company devices in Altiris and Intune Company Portal and wiping device for terminated employees.

>Maintaining endpoints security via symantec endpoint protection.

>Analyzing vulnerability scanning reports from tenable nessus, validating that the vulnerability exists on host/server, escalating the case to the operating system team to patch the system, and running the scan again to confirm the vulnerability does not exist.

>Grant, troubleshoot, and revoke employees MFA via DUO admin console, Microsoft authenticator, RSA and Okta

ACCOMPLISHMENTS

CompTIA Security+: 5VCRM4XEXHVE163J

ISC2 Certified in Cybersecurity

MTA: Windows Server Admin Fundamentals: d3wq-XVYA

MTA: Windows Operating System Fundamentals: uXG7-XLcB

MTA: Networking Fundamentals: wChsT-4SCU

MTA: Security Fundamentals: UycA-s2cx

MTA: Cloud Fundamentals: ewS6-4TPa

MTA: introduction to programming using python