Talk to sales Try for Free
Mohammad Alsyouf

Mohammad Alsyouf

Incident Response Intern

Followers of Mohammad Alsyouf4000 followers
location of Mohammad AlsyoufRiyadh, Saudi Arabia

Connect with Mohammad Alsyouf to Send Message

Connect

Connect with Mohammad Alsyouf to Send Message

Connect

  • Timeline

  • About me

    Sr. DFIR Specialist & SIEM Admin | GEIR | GDAT | GCIH | GCFA | GCFE

  • Education

    • University of Jordan

      2018 - 2022
      Bachelor's degree Computer and Information Systems

    • Cisco Networking Academy

      -
      Cisco Certified Network Associate

  • Experience

    • CyberTalents

      Jun 2021 - Aug 2021
      Incident Response Intern

      Trend Micro and Cyber Talents security scholarship (Incident Response Track) :•Digital Forensics and Incident Response •Reverse Engineering

    • Alpha Hub

      Aug 2021 - Dec 2021
      Cyber Security Engineer

    • Wizard Cyber

      Dec 2021 - Aug 2022
      Security Operations Center Analyst

      Manage, monitor and respond to alerts with the Wizard Cyber SOCDuties and Responsibilities- Logging, investigating and responding to SOC alerts on Microsoft Sentinel, Microsoft Defender, Cloud App Security- Testing and evaluating new programs- Modifying policies to fix errors, improve performance- Deploying software tools, processes and metrics- Continuous training and completion of Microsoft certifications- Writing and contributing to security reports- Consulting with IT staff to confirm or escalate incident and provide evidence of alert resolved Show less

    • NourNet

      Aug 2022 - now

      Duties & Responsibilities:• Lead investigate, coordinate, bring to resolution, and report on security incidents as they are escalated or identified.• Forensically analyze end-user systems and servers found to have possible indicators of compromise.• Analysis of artifacts collected during a security incident or forensic analysis.• Identify security incidents through Threat Hunting operations within a SIEM or other relevanttools.• Interface and communicate with server owners, system custodians, and IT contacts to pursuesecurity incident response activities, including accessing systems, collection of digital artifacts,containment, eradication, and remediation actions.• Provide consultation and assessment on perceived security threats.• Implement SIEM solutions (Splunk).• Create correlation rules & tune the alerts for less false positives using Splunk. . Recorded Future Administration, Onboarding, integration, and Investigation Show less

      • Sr. SOC Engineer - Digital Forensics and Incident Response

        Sept 2023 - now

      • SOC Engineer - Digital Forensics & Incident Response

        Aug 2022 - Sept 2023

  • Licenses & Certifications