Lead Staff
Cairo, Cairo, Egypt
• Monitor, Investigate and Respond to computer suspicious activities• Analyze and evaluate anomalous network and system activity• Understanding of malware and the modern threat landscape• Apply Dynamic malware analysis to understand malware activities• Use combination of manual and automated tools to proactively analyze various data and analyzelogs and digital forensic tools• Use of forensic analysis tools such as X-Ways Forensics, Encase, FTK, etc.• Provide… Show more • Monitor, Investigate and Respond to computer suspicious activities• Analyze and evaluate anomalous network and system activity• Understanding of malware and the modern threat landscape• Apply Dynamic malware analysis to understand malware activities• Use combination of manual and automated tools to proactively analyze various data and analyzelogs and digital forensic tools• Use of forensic analysis tools such as X-Ways Forensics, Encase, FTK, etc.• Provide recommendation and Improvements on remediation for cybersecurity operation to detect, prevent, and mitigate intrusions• Co-operate with other National CERTs to handle common incidents if required• Perform evidence acquisition and conduct digital forensic analysis on forensically imaged evidence on live systems• Registry Analysis using Eric Zimmer Tools and Memory Analysis using Volatility• Experience with various forensic log artifacts found in SIEM logs, web server logs, AV logs, protection logs such as HIDS and NIDS logs• Provide recommendation and Improvements on remediation for cybersecurity operation to detect, prevent, and mitigate intrusions• Conduct and participate in local and international trainings for other entities about cyber security either for awareness or to share high level knowledge• Organize and conduct Cyber Drills for international and national Governmental Entities to share high level knowledge• Excellent oral and written communication skills including concisely communicating status and creating customer technically detailed reports based on intrusions and events• Experience with APT actor group evidence including familiarity with Indicators of Compromise (IOCs), Indicators of Activity (IOAs) and attack Tools, Techniques and Procedures (TTPs)• Proven experience in helping Governmental Entities manage vulnerabilities, measure security, and ensure compliance as my role working in Egyptian National CERT Show less