EM
Ebrahim Mohamed
SOC Analyst at TryHackMe
EgyptWork Experience
TryHackMe
Apr 2024 - Present -1 yr, 3 months
- Job Details:Triaged 300+ simulated alerts weekly; escalated high-severity incidents per SOC playbooks. Built 10+ custom dashboards and correlation rules in Splunk and QRadar. Simulated phishing, brute-force, and malware attacks; identified IOCs and mapped TTPs using MITRE ATT&CK.
Epsilon AI
Feb 2022 - Oct 2022 -8 months
- Job Details:Participated in hands-on training on cybersecurity fundamentals, data analysis, and AI applications. Processed and analyzed large datasets using Python (Pandas, NumPy), developing anomaly-detection algorithms. Built and validated anomaly-detection models with Scikit-learn, identifying security-related patterns and reducing false positives. Conducted vulnerability scans and threat modeling for AI systems; documented findings and remediation steps.
Education
Bachelor's Degree in Computer & Control Systems
Mansoura UniversityJan 2019 - Jan 2024 - 5 yr
Skills
- SIEM & Monitoring: Splunk, QRadar, Elastic Stack
- Networking & Protocols: TCP/IP, OSI, DNS, VPN, PCAP Analysis
- Operating Systems: Windows, Linux (Kali)
- Threat Detection: Phishing, Brute-force, Malware, Port Scanning
- Incident Response: NIST IRP, Containment, Eradication, Recovery
- Security Concepts: MITRE ATT&CK, IOC/TTP, CIA Triad, Zero Trust
- Tools & Platforms: Wireshark, Nmap, Snort, Nessus, OpenVAS
- Attention to detail
- Analytical Thinking
- Communication
View More