Security Information
Resume:
Ahmed Kilany
Bellevue, WA
*****.*.******@*****.***
Summary
15+ years of experience within Cybersecurity and Network Security, along with experience in AWS, azure, networking, firewalls, and pen testing. Cybersecurity Engineering experience managing the deployment of servers/networks security, conducting systems hardening using NGFW, IPS/IDS and endpoint protection. Excellent communication and eager to join a team to contribute best practices for security. Skills
● Cloud Security:Azure and AWS security (IAM, WAF, Shield, App proxy, Inspector, Cloudwatch etc).
● Endpoint Protection:Symantec, Kaspersky, Bitdefender, SELinux, jamf
● IPS/IDS:IBM IPS/IDS, NIPS AND HIPS, CrowdStrike.
● Pen testing:Tenable/Nessus, Burp suite, Metasploit, Kalii, OWASP, and Fuzzing.
● SIEM:Arbor (DDoS Mitigation - Advanced Threats and APT), Splunk, Kibana, QRadar
● Proxy Systems:Symantec Blue Coat Secure Web Gateway, Charles, Zscaler
● Firewall/UTM:Palo Alto, Fortigate, Sophos, pfSense, iptables, Demisto/XSOAR.
● Email Security:IBM - Proventia Network Mail Security System.
● Digital Forensic and Mobile Forensic:Nuix, FTK, Santoku.
● Scripting:Bash shell, C#.net, python, C/C++
● OS:Ubuntu, Kali, BlackArch, and Windows Server 2016 Experience
Jun 2020- Present (Part-time)
Skedgealert - Tacoma, WA
CyberSecurity Consultant
● Ensured integrity, confidentiality and availability of a cloud environment
● Utilizing AWS Security features and ensure CIA Triad (Confidentiality, Integrity, and Availability)
● Building and configuring Web Application Firewall (WAF)
● Web Penetration testing OWASP, Network Pen testing and endpoints pentesting.
● Performed risk and vulnerability assessments and provided results and recommendations.
● Hardening Network, and EC2 instances,
● Performed risk analyses to identify appropriate security countermeasures.
● Recommend and implement improvements in security systems and procedures. Oct 2020- Dec 2020
iStreamPlanet - Seattle, WA
Senior Cloud Security Engineer
● Providing consultation and technical services on many aspects of information security. (Azure, AWS)
● Validate and verify system security requirements definitions and analyze system security designs.
● Review security programs and policies and monitor compliance across systems.
● Recommend improvements in security systems and procedures. 2
Apr 2020 - Sep 2020
Peace Health - Vancouver, WA
Sr. Security Analyst
● Invested CrowdStrike detections and phishing emails and malware reverse engineering.
● Created playbooks in XSOAR to automate web proxy, crowdstrike, Endpoint Protection ext..
● Investigated Incidents using SIEM.
● Monitored use of data files and regulated access to protect secure information.
● Conducted security audits to identify vulnerabilities.
● Endpoint protection and System hardening.
Nov 2019- Mar 2020
Microsoft, Redmond, WA
Security Technologist – Microsoft Security Risk Detection
● Microsoft Azure .
● Reviewing and hardening firewall rules and azure hardening
● Penetration testing.
● Threat Modeling.
● Help Microsoft clients by doing Web Vulnerabilities Scanning, OWASP TOP 10
● Researching and using Fuzzing to find zero-day vulnerabilities. Jul 2018 - Nov 2019
Saint Martin's University, Lacey, WA
Instructor, Microsoft Software And System Academy program I’m teaching the following classes:-
● Microsoft Azure and AWS, Security Group, Containers, and Scale Sets.
● Microsoft Windows server 2016 - Exam 70-740
● Linux+/LPIC-1 Certificate: ( Bash script, Packages, Configuring Firmware, and Core Hardware, Managing File Ownership, Botting Linux, Lxc, Lxd, and Regular Expressions)
● C#.net, SDLC, and OWASP.
May 2014 - Aug 2018
Locii Solutions, Nicosia, Cyprus - Europe (Remote) CyberSecurity Consultant
● Implemented vulnerability assessment plan and patch management for all internal systems
● Implemented enterprise threat modeling
● Detected suspicious behavior and apply remediation
● Implemented, managed, and maintained the following systems and tools:
Next-Generation Firewall (NGFW)
Host-based IPS/IDS, and Network-based IPS/IDS.
Endpoint Security and Protection.
Vulnerability assessment and penetration testing tools ( examples, Nessus, Nmap, Kali Linux) 3
Nov 2017- Feb 2018
Microsoft, Redmond, WA
Security SDET
● Tested applications
● Analyzed test results.
● Reconfigured test plans
● Tested PC Configuration, Performance memory, and stability. apply remediation Sep 2017 - Jun 2019
Bellevue College, Bellevue, WA
Instructor, Institute for Business and Information Technology I taught the bachelor’s degree of Cybersecurity and the following CIS and CS classes:
● System Hardening (Hardening endpoints to reduce the attacks via iptables, UFW, Kernel Parameters, TCP Wrappers, locking down users, ACL, two factor authentications with SSH, protect sensitive files, vulnerability scanning, and endpoint protections for Windows/Linux)
● Network Security Monitoring (Monitoring various network protocols, analyze traffic, Respond to network attacks, Nessus, Penetration Testing, pfSense Firewall, NAT, VPN attacks)
● Information Security Essentials for Application Development (concepts related to securing data, web application security, SDLC, AWASP)
● CompTIA Security+ Certification, Linux+ LPIC Certification
● Network+ Certification and CISCO Networking.
Sep 2017 - Dec 2017
Seattle University, Seattle, WA
Lecturer, Electrical and Computer Engineering.
I taught Session Initiation Protocol (SIP). (Covers Networking, RFC 3261, analyzing SIP, RTP, SDP, calls flow in a SIP network, building VOIP phone system, Sip proxy server and Back to Back User Agent. implement, support, and troubleshoot SIP. SIP Attacks and mitigating attacks in VOIP Environments) Jan 2016 - Jun 2017
Highline College, Des Moines, WA
Instructor, Computer Science and Computer Information Systems Department I Taught the bachelor’s degree of Cybersecurity and Forensics and the following CIS and CS classes:
● Penetration Testing, I, II and Mile2 Certificate (Network analysis, detect/defend against several attacks like layer 2, layer 3, VPN, SSL, DNS Hijacking, SIP Analysis, and IP Spoofing attacks, WAF)
● Penetration Testing II (Designing and Creating pen testing lab, Metasploit)
● Mobile Forensic (Santoku, Physical/Logical acquisition and analysis for Android and IOS)
● Networking CCNA (OSI Module, TCP/IP, DNS, HTTP, HTTPS, SIP, LAN, WAN)
● UNIX/Linux (Bash shell, Ubuntu, Kali, BlackArch), and Python (Problem solving, OOP)
● Network Scripting (Bash Script, Regex, PowerShell, iptables) 4
Feb 2014 - Dec 2015
ITVikings, Cairo, Egypt
Information Security Consultant
Installed, implemented and configured the following:
● Palo-alto, and Fortinet NGFW-UTM appliances
● Bluecoat appliances, and all Nuix Investigator forensic Labs.
● Symantec Security Solutions, MacAfee security systems, Websense Triton, Secunia, Sophos. Oct 2010 - Jun 2013
EgyptPost, Cairo, Egypt
CyberSecurity Consultant
● Secured the networks and +3000 workstations and +100 Servers. Installed, configured, analyzed, designed, maintained and repaired Cyber-Security appliances
● Maintained and repaired Cyber-Security appliances and assessed these types utilizing ARBOR DDOS SOLUTIONS, IDS IPS, email security gateway, Endpoint Security, and Symantec bluecoat proxy.
● Examined several computer forensic cases successfully. Feb 2009- Jun 2010
CionSystems, Redmond, WA
C#.net application Developer
● Internship at CionSystems Company. I worked as C#.net researcher on several solutions related to: - System management.
Feb 2002 - Jun 2013
Advanced Knack
C#.net application Developer
● Using C# I developed monitoring software that monitors Processes, Drivers, Services and exe files. In 2005 I developed an application whitelisting tool, one of my solutions is AK-Player which has some digital forensics capabilities. Please check the press release https://www.prweb.com/releases/free-mediaplayer-download/akplayer/prweb9822121.htm Education
Jul 2019 - (In-progress)
Saint Martin's University, Lacey, WA
Master of Science in Computer Science
Graduated-2010
Highline College, Des Moines, WA
Computer Forensics/Data Recovery, and Linux/Unix Administration Certificates Graduated 2006
5
Alexandria University, Egypt, WA
Bachelor of Arts in Accounting and Information Systems. Courses and Certificates
● Crowdstrike
● ISC2 CISSP 8th edition
● Palo Alto Networks authorize Cybersecurity Academy Instructor
● Certified Ethical Hacker (ECH) Version 9
● CompTIA Security+ (SY0-401) Network Security.
● OWASP Top 10 Web Application Security Risks (2013 and 2017).
● Mile2-Certified Penetration Testing Engineer CPTE.
● CCNA Cyber Ops SECOPS 210-255
● CCNA Cyber Ops SECFND 210-250
● CISCO CCNA.
● Networking+ N10-007
● Linux Essentials for Cybersecurity.
● Linux+ Powered by LPI Exam 1, and LPIC-1 Exam 2 - Linux Server Professional.
● Analyzing Machine Data with Splunk.
● MCSA 70-740: Installation, Storage, and Compute with Windows Server 2016.
● Symantec eDiscovery Platform Powered by Clearwell Certificates.
● Kaspersky Lab Certified Professional.
● Nuix Investigator, Nuix Sensitive Data Finder and Nuix Collector.
● Websense TRITON APX v8.0 Certificate – (Web Security, Email Security and DLP)
● Symantec Critical System Protection (CSP) and Symantec Embedded Security.
● Session Initiation Protocol (SIP).
● Information Security and Risk Management in Context (Online- University of Washington, USA)
● Metadata: Organizing and Discovering Information (Online- University Of North Carolina, USA)
● Virtualization (Highline Community College, WA, USA)
● ASP.NET, WCF Framework 4.5 and Microsoft C#.net
● Programmable Logic Controllers (PLC)
● Image and video processing (Online - Duke University, USA) Volunteer experience and Activity
● CyberSecurity club - Saint Martin's University, WA, 2019
● Presenter of CyberSecurity Lecture: MTA Exam – Bellevue College WA 2018
● Presenter of Science Seminar: Cyber Security Awareness – Highline College WA 2016
● Vulnerability Assessment and Consultation to some Companies – Cyprus, Europe 2015
● Cyber Security Consultant at Company in Nicosia – Cyprus, Europe 2014
● Speaker in Cyber Security workshop at Internet Governance Forum – Kuwait 2012 and Algeria 2013
● Volunteer at Food Lifeline Food Bank and at Wilderness Technology Alliance (WTA)
Contact this candidate