Hamza Idris
Information Security Engineer at IT Security Training & Solutions - I(TS)²- Claim this Profile
Click to upgrade to our gold package
for the full feature experience.
Topline Score
Bio
0
/5.0 / Based on 0 ratingsFilter reviews by:
Experience
-
IT Security Training & Solutions - I(TS)²
-
Saudi Arabia
-
IT Services and IT Consulting
-
1 - 100 Employee
-
Information Security Engineer
-
Apr 2022 - Present
-
-
-
Rewterz
-
United Arab Emirates
-
Information Technology & Services
-
100 - 200 Employee
-
-
Oct 2019 - Mar 2022
As an Sr. Information Security Engineer, my role involve:*Administering multiple SIEM solutions like Qradar, Splunk and Elastic Stack.*Serving as a technical escalation resource for other analysts and provided mentoring for skill development across the team.*Create and develop SOC processes and procedures working with Tier 1 and 2 analysts, and other stakeholders.*Analyzing and identifying areas of improvement with existing processes, procedures and documentation.*Explain and demonstrate how to use SIEM and Enterprise Security products to both technical and relatively non-technical personnel.*Identify tool requirements to improve SOC capabilities and collaborated with leadership and Engineering to implement and operationalize.*Lead engineering team by prioritizing clients work requests, projects and service tasks.*Performing formal Health Checks on daily and weekly basis.*Support day to day event parsing and repairing of events that have missing or incorrect information, create log source extensions, and flow management. Show less
-
-
-
Oct 2018 - Oct 2019
As an Information Security Analyst, my role involved *Performing log analysis, event correlation and incident management.*Performing email forensics and analysis.*Analyzing attacker tactics and procedures (TTPs)*Researching,analyzing and understanding log sources utilized for the purpose of security monitoring.*Creation of custom rules/rule modifications and custom reports/report modifications as needed.*Configuring backups, verifying custom reports, managing log source groups, and validation of log sources with client.*Working with different security devices like Web application firewall (WAF), multi-vendor Firewalls, IPS,IDS,multi-vendor Anti-Malware products, Proxy and email gateways.*Developing custom parsers to parse devices, for devices not supported by SIEM.*Preparing weekly executive security reports to inform management on customer's traffic trends observed along with the potential threats/risks followed by recommendation of vulnerability management procedures & risk mitigation steps. Show less
-
-
-
Multinet Pakistan (Private) Limited
-
Pakistan
-
Telecommunications
-
500 - 600 Employee
-
-
Jan 2018 - Oct 2018
-
-
-
Oct 2017 - Dec 2017
-
-
-
Trillium Information Security Systems
-
Canada
-
Computer and Network Security
-
100 - 200 Employee
-
Information Security Trainee
-
Apr 2017 - Jul 2017
• Configuration of IBM QRADAR (SIEM) • Integration Of different Log Sources with QRADAR like windows, windows server, PFsense firewall, Ubutnu Server, Apache2 Server, Bind DNS. • Custom rule tuning. • Custom Searches. • Custom Parser Writing using DSM Editor. • Custom report generation. • Installation of ESXI Server and its configuration. • Installation of windows server 2012 R2 and creating AD and making different machines part of it. • Configuration of IBM QRADAR (SIEM) • Integration Of different Log Sources with QRADAR like windows, windows server, PFsense firewall, Ubutnu Server, Apache2 Server, Bind DNS. • Custom rule tuning. • Custom Searches. • Custom Parser Writing using DSM Editor. • Custom report generation. • Installation of ESXI Server and its configuration. • Installation of windows server 2012 R2 and creating AD and making different machines part of it.
-
-
-
Civil Aviation Authority
-
United Kingdom
-
Airlines and Aviation
-
700 & Above Employee
-
Intern
-
Jul 2016 - Jul 2016
To Gather information regarding the infrastructure and to understand the working of various equipment. Working of HF,VHF. To Gather information regarding the infrastructure and to understand the working of various equipment. Working of HF,VHF.
-
-
-
Pakistan International Airlines
-
Pakistan
-
Airlines and Aviation
-
700 & Above Employee
-
Intern
-
Jun 2016 - Jun 2016
Avionics Depeartment Avionics Depeartment
-
-
Education
-
Sir Syed University of Engineering and Technology
Bachelor's of science, Telecommunications Engineering -
Govt Superior Science College
HSC, Pre-Engineering -
caa model school no 1
Matricullation, Computer Science