Cybersecurity professional with hands-on SOC experience — monitoring networks, triaging threats, and protecting systems using Splunk SIEM. CySA+, Security+, and CSAP certified. Based in Kuwait, available immediately on a transferable Visa 18.
Built Splunk correlation rules using Event ID 4625 to detect login anomalies and brute force patterns. Generated automated alerts and structured incident reports for review by senior analysts.
Analyzed firewall logs and packet captures across TCP, DNS, HTTP, and ICMP protocols to surface suspicious IPs, port scanning activity, and anomalous sessions.
Executed a full incident response lifecycle: SIEM triage → IOC identification → MITRE ATT&CK mapping → escalation → formal incident report. Practiced complete SOC documentation workflows.
I'm actively seeking roles in Security Operations, Network & Revenue Assurance, or IT Systems Support in Kuwait. Available immediately on a transferable Visa 18.