Abdulrahman Alruwaili
Riyadh,Saudi Arabia
Summary
Dedicated Security Operation Center Engineer with expertise in monitoring SIEM alerts, conducting investigations, and taking appropriate actions. Seeking a challenging role in a fast-paced environment to enhance my skills and knowledge. In addition, I am a team player with excellent interpersonal skills.
Overview
4
4
years of professional experience
1
1
Certification
Work History
Senior SOC Engineer
Saudi Information Technology Company (SITE)
Riyadh
02.2023 - Current
- Monitor SIEM alerts, investigate security incidents, and execute necessary response actions to mitigate risks.
- Investigating and triaging security incidents to determine their severity and impact.
- Responding to security incidents according to established procedures and protocols.
- Documenting incident response activities and security incidents for reporting and analysis.
- Investigating security incidents by utilizing Endpoint Detection and Response (EDR) to identify the root cause of the activity and its impact.
- Working in tuning prebuilt and custom detection rules to optimize alert generation and reduce noise.
- Working with the automation team to auto-close the false-positive alerts and generate auto flash-alert.
Information Security Analyst
Saudi Aramco
Khurasanyiah
09.2021 - 02.2023
- Coordinated emergency disaster recovery, minimising data loss and supporting business continuity.
- Reviewed violations of computer security procedures and developed mitigation plans.
- Conducted security audits to identify vulnerabilities.
- Developed plans to safeguard computer files against modification, destruction or disclosure.
- Monitored use of data files and regulated access to protect secure information.
- Recommend improvements in security systems and procedures.
- Created spreadsheets using Microsoft Excel for daily, weekly, and monthly reporting.
- Used Microsoft Word and other software tools to create documents and other communications.
Education
Bachelor of Science - Information Systems
King Abdulaziz University
Jeddah, Makkah Region05.2021
Skills
- Security Information and Event Management (SIEM)
- Incident Response
- Endpoint Detection and Response (EDR)
- Tuning Detection Rules
- Automation (XSOAR)
Certification
- GIAC CERTIFIED FORENSIC ANALYST (GCFA)
- GIAC ADVISORY BOARD
- CCNA ROUTING AND SWITCHING (200-125)
- ISO 27005
- EC-COUNCIL INCIDENT HANDLER (ECIH)
- Security+
- EC-COUNCIL DISASTER RECOVERY (ECDR)
- ARAMCO DATA PROTECTION PROGRAM IMPLEMENTER
Timeline
Senior SOC Engineer
Saudi Information Technology Company (SITE)
02.2023 - Current
Information Security Analyst
Saudi Aramco
09.2021 - 02.2023
Bachelor of Science - Information Systems
King Abdulaziz University
Similar Profiles
Alkhansaa AlSultanAlkhansaa AlSultan
Business Analyst Intern at Saudi Information Technology Company (SITE)Business Analyst Intern at Saudi Information Technology Company (SITE)
Khalid ElshurafaKhalid Elshurafa
General Manager at Saudi Company for Site Technology (SITECH)General Manager at Saudi Company for Site Technology (SITECH)
Airus Cloud AlcantaraAirus Cloud Alcantara
Intern at Sitel- Information Technology Service Delivery, ETON Site, IT Site Engineer DepartmentIntern at Sitel- Information Technology Service Delivery, ETON Site, IT Site Engineer Department
Soliman AlshallashSoliman Alshallash
Information Technology Specialist at Jockey Club of Saudi Arabia (JCSA)Information Technology Specialist at Jockey Club of Saudi Arabia (JCSA)
Faisal AltalhiFaisal Altalhi
BD & Partnership Manager at Saudi Artisanal CompanyBD & Partnership Manager at Saudi Artisanal Company