Highly skilled Tier 2 SOC Analyst with over two years of experience in both tiered and tierless Security Operations Center environments. Proficient in threat detection, incident investigation, and proactive hunting to enhance cyber defense maturity. Ahmed has a strong background in managing complex security platforms and supporting rigorous compliance audits like ISO 27001 and PCI DSS.
Core Technical Skills
- SIEM Platforms: Expert in managing and optimizing IBM QRadar, Splunk, Wazuh, and ELK to improve detection accuracy.
- EDR & Monitoring: Hands-on experience with Microsoft Defender for Endpoint (MDE), F-Secure, Elastic Defend, and Dark Web Monitoring.
- Threat Intelligence & Hunting: Skilled in using the MITRE ATT&CK framework, OSINT tools, and conducting hunts based on IOCs and behavioral patterns.
- Network Security: Proficient in IDS/IPS (Suricata, Zeek, Snort) and securing networks using Cisco ASA, Firepower, and FortiGate appliances.
- Log & Packet Analysis: Experienced in analyzing Firewalls, WAF, Proxies, phishing emails, and PCAPs.
- Automation & Scripting: Adept in Python, Bash, and PowerShell for workflow automation.
Education: Bachelor of Engineering in Electronics & Communications.
Cybersecurity Certifications
- CDSA: Certified Defensive Security Analyst (Hack The Box).
- eCTHPv2: Certified Threat Hunting Professional (INE).
- IBM: QRadar SIEM Foundation.
- Fortinet: Cybersecurity Fundamentals.
- Cisco: Network Security and CCNA (Switching, Routing, and Wireless Essentials).
- Professional Training: Completed learning paths in Python (Coursera) and Cybersecurity (Cisco and TryHackMe).
