Sajjad Pervez

Product Engineer

Oman20 yrs 3 mos experience

Most Likely To SwitchHighly Stable

Key Highlights

Expert in deploying and managing SIEM solutions.
Proven track record in vulnerability assessments and incident response.
Strong background in cybersecurity training and team leadership.

Stackforce AI infers this person is a Cybersecurity Specialist with extensive experience in SIEM deployment and incident response.

Contact

Skills

Core Skills

Security Information And Event Management (siem)Cyber Security

Other Skills

LogRhythmSecurity InformationEvent Management (SIEM)CrowdStrikeTrendMicroDefenderQRadarSplunkMS SentinelMicrosoft Copilot for SecurityKasperskyNmapDmitryWiresharkEthical Hacking

About

Capable and Reliable Informaiton and Cyber security Professional with demonstrated successful in multiple disciplines. Resourceful problem solver with verified ability to conceptualize solutions to difficult situations and employ practical, cost-effective computing and cyber security strategies. Technical Aptitudes IT MANAGEMENT: Cyber security process and policies, IT Asset Management, IT trainer, BI tools, XML Publisher CYBER SECURITIES: Splunk, QRadar, CyberArk, LogRhythm, Fortinet and Cyberoam Proxy Servers and Firewalls, Kaspersky Antivirus, Tomcat Web Server, IIS, IBM HTTP Server, FTP Servers. Nmap, WAF, Dmitry, Metasploit , SIEM, EDR DATABASES: MS SQL Server, Oracle 11i, 12c, MySQL, MS Access. OPERATING SYSTEMS: MS Window 2012/2016 / Window 7/10, Centos, Linux - parrotOS. NETWORKING: LAN, Active Directory-Based Networks, NAS, DHCP, WINS, DNS Servers etc, Configuring VPNs, static IP addressing, NATING, LAN Routing, Static/Public IPs, Wireless Networking, RIP, L2/L3 Switching, VLAN, VTP, DRP’s. SOFTWARE: Office 365, VMware ESXi, vSphere, CA ARC serve Backup, Acronis backup, RAID, VoIP Switch, VOS, cPanel, Spice works, VPN Soft Ether

Experience

20 yrs 3 mos

Total Experience

4 yrs

Average Tenure

4 yrs 4 mos

Current Experience

Diyar united company

Cyber Security Specialist

Jan 2022 – Present · 4 yrs 4 mos · Kuwait City Metropolitan Area

Active participant of SOC team to detect and investigate incidents and response to MSSP clients.
Working closely with playbooks to provide, incident automation description and recommendations.
Responsible of investigating the events and alarms for listed MSSP clients (Oil and Gas, Banking, Insurance, Hospital, Government and Semi Government, Telecom) by drilling down the event logs and correlating them to understand severity of threats as in PCAPs, ports, host, users, internal or external threats for cyber hunting intimidations and threats against each investigation.
Deployed SIEM (LogRhythm, QRadar, Splunk, MS Sentinel), EDR (CrowdStrike, TrendMicro, Defender) solutions, integration with SOAR as per the requirement of organization with proper and documented infrastructure with pre-requirement including network, application, and databases.
Escalating and responding alarms to client at L2/3 with detail description including attack patterns, UBA, and follow-up, educate manageable team at L1 based on shift to gather root cause analysis.
Follow the workflow for SOC and train the cybersecurity team to keep monitor during BH and OBH.
Applying use cases (UC) and alerts definitions as per the cyber security compliance methodology.
Responsible to move the tested, verified, and approved Use Cases to production environment.
Initiate the discussion on IOC with the IT/ICT and define the impacts and cyber security controls.
Developed own AI based tool to understand in-depth investigation about incident, alarm and alerts and stipulated the prompting on Microsoft Copilot for Security.
Accountable to keep the organization UpToDate threat advisory as per the current global situation of threats detection and advise to do proper action as required at each node.
Maintaining the pre-requisite of data collector from log sources, by providing updated steps as per the version of log source and application identity.

LogRhythmSecurity InformationEvent Management (SIEM)CrowdStrikeTrendMicroDefender+2

A'safwah dairy & beverages -dhofar cattle feed company(saog)

Cyber Security Specialist

Mar 2011 – Dec 2021 · 10 yrs 9 mos · Oman

Key Contributions:
Implemented Kaspersky endpoint solution to manage repository for Servers and Workstations.
Monitored health check of SIEM (Splunk) and integrated collector from Nationwide offices.
Prevent IT infrastructure from cyber threats like, phishing, DDOS, XSS, SQL injection, Malwares.
Hand on Experience with Kali Linux and ParrotOS, with build-in categorized cyber security tools.
Performed quarterly vulnerabilities assessment for IT assets, Network, OS and webservices.
Evaluation and root cause analysis of expected threats using tools like, Nmap, Dmitry, Wireshark.
Involved in staff, end user and vendors training to demonstrate cyber security best practices.
Analysed network traffic by raw packet data, network flow, Intrusion Detection Systems (IDS).
Maintained and update the Cyber Threat Intelligence (CTI) track records with respective IoC, URL's.

Security InformationEvent Management (SIEM)KasperskyNmapDmitryWireshark+2

Golden group of companies

System Administrator

Jan 2009 – Feb 2011 · 2 yrs 1 mo

Analyzing system logs and identifying potential issues with computer systems related to security.
Hospitality management software back and installation.
IP Cameras configuration under construction project.
Cyberoam Firewall Configuration and implementation.
Attendance system maintenance on figure prints for company employees to check in.
Maintenance of Accounting and ERP systems (Focus and Absolute+) for real state and hotels.
Taking and resolving issues with desktop computers and peripherals.
Taking ownership for a problem till resolution or upgrade to next level support for desktops.
Management of windows server 2003/2008, active directories.
Applying operating system updates, patches, and configuration changes.
FTP maintenance and updates as per user requirement and user rights on ADs.
Apply daily update of antivirus and provide patch to each host.
Proper documentation of the work you've done to resolve the issue ( so as to speed the repair of others or identify trends and issues with hardware and software)
Kespersky antivirus maintaining on Server side made check for Trojans’, virus attacks on client side
Managing & maintaining various types of Network Devices in Local Area Network.
Official Website Maintenance and web based security for online booking.
DELL (power edge) server maintenance and backup.
Performing backups of financial systems and servers using.

Saudi networkers services - sns

IT Administrator

Nov 2007 – Dec 2008 · 1 yr 1 mo

Run whole infrastructure of Networks and software applications. Responsible for all IT related issues.
Responsible for Project Management, IT Infrastructure, design and network security for both offices.
System management and domain controller on SBS 2003.
MS E-mail exchanges 2003 management.
Active directory installation configuration and group management.

Mobilink

IT Engineer

Jan 2005 – Jan 2007 · 2 yrs

MS e-mail Exchange server Support.
Complete maintenance of Exchange server and Create a login on domain of MOBILINK and also implement the user polices for that login. In addition I was also responsible for the maintenance of Exchange server.
Outlook Web Access (OWA) solution.
Installed as an integral part of Microsoft Exchange Messaging and Collaboration Services. Allows users to gain access to Exchange with browser. OWA URLs are based on host or domain names, and are independent of individual mailbox or public store locations.
Maintain a data backup when new software introduced in organization or when any updating of running software required.
Network issues like loop back or congestions in network are handled and solved. Also link vendors of network to describe the hardware life time and working.
Billing and Finance software’s.
Online handling billing and finance software for CS offices of company and franchises.
Wireless Networking solution.
In office or department create Wireless network where there is no wired LAN but for time duration.