Mohamed Salmaan

Experience

• 

  Bored Monk Cyber Security Company

  Aug 2021 - Jun 2022

  Security Analyst

  Performed VAPT assessments on diverse network environments, identifying vulnerabilities, and providing actionable recommendations.Conducted manual and automated penetration tests to simulate real-world cyberattacks.Collaborated with clients to assess their security needs and improve their security postures.Prepared comprehensive VAPT reports, including findings, risk assessments, and remediation strategies.Assisted in security awareness training for clients to enhance their cybersecurity knowledge Show less

• 

  Fujitsu

  Jun 2022 - Jul 2024

  Associate Technical Service Engineer

  Security Operations Center (SOC) Analyst Monitored network traffic and security events, detecting and responding to security incidents. Investigated and analyzed security alerts to minimize potential threats and vulnerabilities. Worked closely with incident response teams to ensure timely mitigation of security breaches. Contributed to the development and maintenance of SOC playbooks and standard operating procedures. Utilized SIEM tools to correlate and analyze security data for incident detection and response.Vulnerability Management specialists Provided regular vulnerability reports and dashboards to stakeholders. Stayed updated on emerging threats and trends through threat intelligence sources. Conducted comprehensive vulnerability assessments and penetration tests using tools such as Nessus, Qualys, Burp Suite, Netsparker, and Rapid 7. Managed the end-to-end Vulnerability Management program, prioritizing and mitigating vulnerabilities.Antivirus Administrator: Ensured regular antivirus updates and maintained up-to-date signature databases. Responded to and mitigated malware and virus incidents, minimizing potential damage. Implemented security policies and configurations to enhance antivirus protection. Collaborated with IT teams to analyze emerging threats and deploy necessary countermeasures. Managed antivirus solutions (F-Secure, Defender) to ensure the security of endpoints and servers. Collaborated with cross-functional teams to remediate identified vulnerabilitie Show less

• 

  FSS

  Jul 2024 - now

  SOC Analyst

  1. **Brand Abuse Monitoring**: Continuously monitor digital channels like websites, social media, and marketplaces to detect signs of brand abuse, impersonation, phishing, and other malicious activities. Utilise tools for web crawling and digital risk monitoring to identify unauthorised use of brand assets and coordinate with external parties to take down fraudulent content.2. **Threat Intelligence and Analysis**: Collect, analyse, and interpret threat intelligence from multiple sources to identify emerging threats, trends, and adversaries targeting the brand. Create and update threat profiles, develop detection rules, and provide actionable insights to stakeholders.3. **Incident Detection and Response**: Detect and respond to incidents involving brand abuse and information security threats. Perform triage, containment, mitigation, and root cause analysis of incidents. Collaborate with internal teams and external partners to manage incidents effectively and ensure swift resolution.4. **Collaboration and Communication**: Work closely with internal teams (legal, compliance, marketing) to address brand protection issues. Prepare detailed incident reports, threat briefs, and recommendations for mitigating future risks. Educate employees and customers through awareness programmes on threats like phishing and impersonation.5. **Continuous Improvement of SOC Operations**: Enhance monitoring tools, develop playbooks, and refine Standard Operating Procedures (SOPs) to improve threat detection and response. Leverage automation and machine learning for efficient threat detection and incident management. Conduct post-incident reviews and document lessons learned.6. **Compliance and Governance**: Ensure all activities comply with legal, regulatory, and internal security standards. Maintain accurate documentation and provide regular reports on brand abuse incidents, response effectiveness, and security posture improvements. Show less