`Nourah Alkhateeb
Cybersecurity Engineer -SIEM
Riyadh, SA
Email: ad0ulu@r.postjobfree.com Mobil: 056******* SIEM resident engineer at confidential. Part of SOC with good experience in security tools and IAM. I have good background in Networking, Windows, and Linux systems, forensics for windows . I have background in different areas including Network, GRC.
Experience
Security Matterz, Jan 2021-Present
Resident engineer:
Administration:
• Create and test custom rules and custom reports as needed.
• Provide evidences to close audit finding
• Daily administrative tasks.
• Provide proactive “threat hunting” to detect incidents that helps to write new correlation rules. Engineering:
• Perform formal Health Check and formal Architectural Review.
• Implementing, managing, monitoring, Troubleshooting, and upgrading SIEM servers.
• Configure log sources to read and parse the logs. Management:
• Assist with designing and documenting work processes within the SOC.
• leads the security operations team and reports to SOC manager.
• Co-ordination with stakeholders, build and maintain positive working relationships with them
• Perform other duties as assigned.
Incident Response:
• Develop policies and a playbook for handling incidents when they arise.
• Make a deep investigation of the ticket including forensics if needed and take the required actions.
• Follow-Up with other departments to close the tickets and guarantee that they take the required actions. SOC Analyst:
for 6 Security Operation Center projects and work in the following:
• Real time monitoring, detection, analysis and response for security events.
• Participate in incident handling and recommend mitigation activities.
• Daily administrative tasks.
• Technologies: LogRhythm, AlienVault, RSA.
Trainee:
We were work as part of SOC team.We take multiple cybersecurity foundational certifications. We take training in the following SIEM technologies: RSA - LogRhythm- AlienVault Education
King Saud University, July 2014 – May 2019
Bachelor's in information technology – network and security. 2021 Jan -
Present
2020 May -
2021 Jan
2019 Dec -
2020 May
Skills
Personal Technical Programming
− Creative Problem Solver
− Responsible
− Leadership
− Quick Learner
− Multi-Tasking
− Time management
− Critical thinking
− Excellent communication skills
− Team Management
− Stress management
− Hard working and innovative
− Logical Thinker
− Adaptability
− Collaboration
SIEM:
LogRhythm - AlienVault –
RSA.
Security tools:
John the ripper -Hash Suite -
Cain and Able
Forensics tools:
ProDiscover Basic - Winhex -
Forensic TollaKit - AccessData
Registry viewer - FTK Imager -
Autopsy
Network tools:
Wireshark - Cisco packet
tracer
Prototype:
Justinmind - Creately
Microsoft office:
Word - Excel - PowerPoint.
Softwares:
Xcode – Android Studio –
jGRASP – Visual Studio –
NetBeans – Eclipse
Languages:
Swift - Java – Python –
JAVASCRIPT – HTML - basic
SQL - PHP
Certifications and Courses
• Security + certificate (CompTIA).
• Network Pro certificate (TestOut).
• Linux + course (CompTIA).
• Tool Basis Technology certificate (Autopsy).
• Splunk 7.x Fundamentals certificate.
• NDG Linux Essentials certificate.
• AlgoSec: Fundamentals Technical certificates.
• Forcepoint Partner: Fundamentals Technical certificates. Projects
Software Projects:
I worked in five software applications and tow database projects and one WEB application. Information Security Projects:
• Password cracking
• Software signature
• Cryptography
• Asset identification, classification and categorization
• Identification of threats and vulnerabilities
• Risk assessment
• Image and analysis data in phone
Activities
• Digital mind club
• Participation in the 14th Smart Mobile Application Contest in Khalifa university
• Participation in Cyber Saber Hackathon 2019
References
Available upon request.