Cybersecurity Student | SOC Analyst Trainee | DFIR Enthusiast
Building hands-on security operations experience through structured lab environments, professional incident investigations, and enterprise-grade vulnerability management workflows. Based in Doha, Qatar.
End-to-end SOC environment — Windows 11 endpoint telemetry ingested by Wazuh SIEM, with alert triage and case management via TheHive. Dual-NIC architecture, end-to-end validation, and MITRE ATT&CK detection mapping.
Complete vulnerability management lifecycle — authenticated scanning with Tenable, risk-prioritized remediation across 4 rounds, a scripted remediation library, independent verification by rescan, and transition to maintenance KPIs.
Professional SOC-style incident response reports investigating real-world attack scenarios. Full timelines, evidence correlation, KQL hunting queries, IOC extraction, and comprehensive MITRE ATT&CK mapping across 4 critical investigations.