Abdullah Basalamah

Experience

• 

  T2

  May 2021 - Jul 2021

  IT operation and infrastructure

  - Dealt with MySQL servers. - Used Nagios for monitoring servers’ performance (NOC).- Firewalls make some sample rules. - How to deal with Big Data using Cassandra and how to manipulate it.- Some normal daily IT operations.

• 

  Safe Decision Co. LLC

  Jun 2021 - Aug 2021

  Cyber Security Engineer

  - Used VMware vSphere to build Network with zones and configured the firewall for (LAN, DMZ & Server Farm). - Server farm consist of configured Active Directory Server to set the domain and ACLs.- SIEM/ELK Server to monitor all the Events coming from all the devices throw AD.- Nessus server to conduct vulnerability assessment.- Endpoint Security Server(Anti-Virus) for deploying anti-virus from central point to all devices throw AD.

• 

  كابسارك

  Sept 2021 - Mar 2022

  Cyber Security Specialist

  - Conducting periodical penetration testing on web applications.- Developing security assessment report.- Reviewing cybersecurity policies, procedures & processes.- SOC Engineering: Conducting threat hunting activities, using Azure Analytics Developing dashboards to Detect threats and compromise attempts at an early stage.- Conducting incident response for potentially compromised devices and doing forensics for further investigation using Axion Magnet/Loki.- Conducting threat intelligence throw Comparing TTPs with MITER ATT&CK- Developing 12 month program plan for security awareness Show less

• 

  Safe Decision Co. LLC

  Mar 2022 - Apr 2022

  Cyber Security business Development Officer
• 

  Technology Control Co.

  Apr 2022 - Oct 2023

  Cyber Security SOC Analyst

  - Conducted threat hunting using various security tools to identify potential threatsand vulnerabilities in the network.- Responded to security incidents 24/7 by analyzing and triaging alerts, investigating,and containing threats, and providing recommendations for remediation.- Managed and fine-tuned SIEM (Security Information and Event Management) rulesto detect and respond to potential threats and provided support to the L3 team ontheir own SIEM rule research.- Implemented Sigma rules to automate detection and response tocommon security threats.- Conducted knowledge transfer sessions for the team on existing SIEM rules andother security-related topics.- Collaborated with the L3 team to provide support and guidance for complex securityincidents and assisted with their research and development efforts. Show less

• 

  Bineyes

  Oct 2022 - now

  Cyber Security R&D

  - Conducted research on emerging threats and trends in the cybersecurity landscapeto inform the development of a threat intelligence tool meant for SAAS.- Built and maintained the architecture for the tool, including data collection,processing, and analysis for use in a SAAS model.- Worked with the team to determine the most effective algorithms and technologiesto use for analyzing threat data and generating insights for the SAAS model.- Provide training and guidance to other team members to ensure that they have theskills and knowledge required to develop and maintain the tool.- Provided guidance and expertise to other teams within the organization regardingemerging threats and how to mitigate them.- Work closely with cross-functional teams, including product management,engineering, and sales, to ensure that the tool meets the needs of all stakeholders and delivers value to customers. Show less

• 

  AZM Fintech عزم التقنية المالية

  Oct 2023 - Jan 2024

  Senior Cyber Security Specialist

  - Accomplished Senior Cyber Security Specialist with a focus on GRC, specializing in SAMA CSF and NCA ECC regulations.- Elevated SAMA CSF maturity from L2 to L3 for over 40 control areas, showcasing a commitment to excellence.- Implemented NCA ECC regulations, ensuring alignment with cybersecurity standards and regulatory requirements.- Successfully integrated threat intelligence to enhance overall cybersecurity strategies.- Led cross-functional collaboration to develop and implement effective security policies and procedures.- Conducted risk assessments and vulnerability analyses, identifying and mitigating potential security weaknesses.- Recognized as a subject matter expert, providing guidance on best practices, emerging threats, and regulatory changes.- Demonstrated proficiency in driving cybersecurity excellence and safeguarding critical organizational assets. Show less