Mohannad Hani Aldubayan

SOC Analyst with hands-on experience in security monitoring, incident triage, threat hunting, and security event analysis. Experienced in investigating and validating security alerts across multiple SIEM platforms including Splunk, IBM QRadar, LogRhythm, and google SOC OPS. Skilled in identifying True Positive and False Positive incidents, conducting IOC investigations, and escalating confirmed threats. Experienced in utilizing Fidelis EDR, . Additionally possesses knowledge in Governance, Risk, and Compliance (GRC), ISO 27001, and regulatory compliance.

SOC Analyst | Safe Decision 3 months

Responsibilities: 

• Monitored and analyzed security events across multiple customer environments using SIEM platforms.
• Performed Security Operations Center (SOC) Level 1 activities including alert triage, incident investigation, and incident escalation.
• Investigated security alerts and determined whether activities represented True Positive (TP) or False Positive (FP) incidents.
• Conducted threat hunting activities utilizing Indicators of Compromise (IOCs).
• Investigated endpoint detections using Fidelis EDR and analyzed suspicious processes, malware-related activity.
• Investigated alerts generated from SIEM, EDR, WAF, firewall, authentication systems, and network security technologies.
• Validated malicious IP addresses, domains, URLs, and file hashes using threat intelligence sources.
•  escalation reports.
• Coordinated with customers regarding security incidents, IOC investigations, SIEM monitoring issues, and operational requests.
• Performed initial threat assessment and supported advanced investigations when required.

Cybersecurity Trainee / GRC Consultant at RMG
Duration: 5+ Months

• Conducted regulatory compliance mapping for Al Majed Oud by analyzing Saudi laws and identifying applicable governance requirements.
• Structured compliance matrices to support audit readiness and regulatory alignment.
• Participated in an internal database audit for the Ministry of Interior (Riyadh) aligned with ISO/IEC 27001.
• Supported ISO 27001 pre-audit activities, identifying gaps and assisting in remediation planning.
• Designed and delivered a cybersecurity awareness program at the Emirate of the Northern Borders Region (MOI – Arar), demonstrating phishing and DDoS attack scenarios.

1 Regulatory Compliance & Governance Project – Al Majed Oud

• Conducted regulatory compliance analysis by reviewing Saudi laws, executive regulations, and governance frameworks.
• Identified and mapped regulations applicable to Al Majed Oud’s business operations.
• Extracted and structured regulatory requirements into organized compliance matrices.
• Distinguished applicable vs. non-applicable obligations to support governance decisions.
• Contributed to audit-readiness documentation and compliance reporting.

2 Internal Audit & ISO/IEC 27001 Pre-Audit – Ministry of Interior, Riyadh

• Participated in an internal database audit aligned with ISO/IEC 27001 requirements.
• Assisted in conducting a pre-audit assessment prior to the external ISO certification audit.
• Reviewed security controls, documentation, and database governance practices.
• Identified compliance gaps and supported remediation planning for certification readiness.

3 Cybersecurity Awareness Program – Emirate of the Northern Borders Region, Ministry of Interior (Arar)

• Designed and delivered a cybersecurity awareness program.
• Demonstrated real-world attack scenarios including Phishing and Distributed Denial of Service (DDoS).
• Educated employees on threat identification, prevention techniques, and incident reporting best practices.
• Promoted a cybersecurity culture aligned with organizational security policies.

• Splunk Enterprise
• IBM QRadar
• LogRhythm
• Microsoft Sentinel
• Google SecOps (Chronicle)
• Elastic Security
• EventLog Analyzer

• CompTIA CySA+ (Cybersecurity Analyst)
• CompTIA Security+ SY0-70
• ISC2 Certified in Cybersecurity (CC)
• EDU CBA – Introduction to SIEM (Splunk)
• TVTC – Governance, Risk Management and Compliance (GRC)