ABDALLA
SOLIMAN
ad0nt2@r.postjobfree.com
https://www.credly.com/users/abdalla-soliman/badges
SKILLS
Splunk, QRADAR, Tenable Nessus, OpenVAS, Qualys, Cyber Threat intelligence/threat hunting, DLP, encryption, email security, HIDS/NIDS,Symantec EDR, RSA Security Console, DUO admin console, Pulse Secure, Windows Server: Active Directory
Fundamentals of Linux, basics of JAVA,
VPN, VLAN, ACL, DMZ
DHCP, NAT, TCP/IP, POS, SSL, VOIP, Ethernet, WAN, LAN, Windows Server
security protocols (e.g., TLS, SSH, ect.)
X.509 digital certificate standard and Public Key Infrastructure management
symmetric and asymmetric cryptographic algorithms (e.g., AES, RSA, ECC)
EDUCATION
University of The Cumberlands
Williamsburg, KY• 05/2022
Master of Science: DIGITAL FORENSICS And CYBERSECURITY
GPA: 3.98
Oakland Community College
2020
ASSOCIATE DEGREE: COMPUTER INFORMATION-SYSTEMS/CYBERSECURITY
GPA: 3.6, Magna Cum Laude
Dean's List Fall 2018
Dean's List Fall 2019
Dean's List Winter 2019
Bachelor of Science: MATHEMATICS
CERTIFICATIONS
CompTIA CYSA+ (In Progress)
Comptia Security+ Certified
AWS Cloud Practitioner
AWS Solutions Architect (In Progress)
Microsoft Azure Fundamentals Certified
Microsoft Technical Associate Security Fundamentals Certified
Microsoft Technical Associate Networking Fundamentals Certified
Microsoft Technical Associate Operating Systems Fundamentals Certified
Microsoft Technical Associate Windows Server Fundamentals Certified
Microsoft Technical Associate Cloud Fundamentals Certified
PROFESSIONAL SUMMARY
Motivated IT and Cybersecurity professional, with over 5 years of experience in Cybersecurity; monitoring and system surveillance for suspicious events using IPS, SIEM, and Vulnerability Scanners.
WORK HISTORY
TrendMicro – Cybersecurity Engineer
Remote • 11/2022 – Current
Implementing, troubleshooting, and maintaining Trend Micro TippingPoint and Cloud One Security in on premise environments such as VMWare and cloud environments such as AWS and Azure
Integrating TippingPoint and Cloud One Security with Splunk
Validating false positives and escalating valid hits to the Digital Vaccines Labs to create filter coverage.
Assisting customers to enable/disable the appropriate filters with the appropriate action sets (permit/deny/rate limit) depending on their attack vectors and security posture goals.
Dynatrace – Security Analyst
Remote• 11/2021 - 08/2022
Examine and respond to reported security incidents and phishing attempts, determining the root cause, and escalating as needed.
Manage and track remediation activities discovered through vulnerability management and scanning tools. Ensure vulnerability management policy is followed.
Become subject matter expert (SME) and make recommendations for improvements in security monitoring and compliance tools such as SIEM, Scanning Tools, Firewalls, Microsoft E5 Security Suite, etc.
Develop and deploy pragmatic solutions, practices, and procedures to ensure Dynatrace meets internal and customer security requirements.
Provide operational efficiency within the security team by providing and analyzing key metrics, performance indicators and threat assessments in accordance with security policies and procedures.
Uncover, categorize, track and close security loopholes to maintain a secure environment.
Maintain and validate security evidence repository with required documentation for compliance with security policies and audit requests.
Generate dashboard and scorecards to articulate the current security posture and threat level.
Reduce time to complete customer security RFIs while improving accuracy and quality of responses.
Obtain 100% compliance with IT security awareness policy both annually and for new hire training within the specified training windows.
Maintain SOC2 Type 2 attestation on an annual basis, pursue and facilitate additional certifications as required by business (FedRAMP, ISO 27002:2013, etc.).
Review Dynatrace vendor’s security posture to ensure they meet Dynatrace requirements.
Work with third-party security vendor, ensure they have high quality responses and review all RFI responses for accuracy. Ensure security controls and question bank are updated and accurate.
SOC Analyst /Global NTT
Remote • 04/2019 - 11/2021
>Actively monitor security threats and risks, provide in-depth incident analysis, evaluate security incidents, and will provide proactive threat research.
>Monitor network traffic for security events and perform triage analysis to identify security incidents.
>Respond to computer security incidents by collecting, analyzing, preserving digital evidence and ensure that incidents are recorded and tracked in accordance with SOC requirements.
>Work closely with the other teams to assess risk and provide recommendations for improving our security posture.
>The ability to take lead on incident research when appropriate and be able to mentor junior analysts.
>Managing cases with enterprise SIEM systems like Splunk, logrhythm, and QRadar.
>Leverage the datalake and SIEM for everyday tasks like alarm triage, customer data inquires, and lock outs.
>Managing company devices in Altiris and Intune Company Portal and wiping device for terminated employees.
>Maintaining endpoints security via symantec endpoint protection.
>Analyzing vulnerability scanning reports from tenable nessus, validating that the vulnerability exists on host/server, escalating the case to the operating system team to patch the system, and running the scan again to confirm the vulnerability does not exist.
>Grant, troubleshoot, and revoke employees MFA via DUO admin console, Microsoft authenticator, RSA and Okta
ACCOMPLISHMENTS
CompTIA Security+: 5VCRM4XEXHVE163J
ISC2 Certified in Cybersecurity
MTA: Windows Server Admin Fundamentals: d3wq-XVYA
MTA: Windows Operating System Fundamentals: uXG7-XLcB
MTA: Networking Fundamentals: wChsT-4SCU
MTA: Security Fundamentals: UycA-s2cx
MTA: Cloud Fundamentals: ewS6-4TPa
MTA: introduction to programming using python
CompTIA Security+: 5VCRM4XEXHVE163J
CERTIFICATIONS
MTA: Windows Server Admin Fundamentals: d3wq-XVYA
MTA: Windows Operating System Fundamentals: uXG7-XLcB
MTA: Networking Fundamentals: wChsT-4SCU
MTA: Security Fundamentals: UycA-s2cx
MTA: Cloud Fundamentals: ewS6-4TPa
MTA: introduction to programming using python
.