Muhammad ABOZIED

I am a high-caliber **SOC Analyst** and **Founder** driven by the pursuit of bulletproof infrastructure. My expertise lies in orchestrating the full lifecycle of a security event—from initial **SIEM alerting** and **Deep Log Analysis** to complex **Incident Remediation**.

• Proactive Monitoring: Developing custom detection rules to catch zero-day threats.
• Incident Handling: Rapid response to minimize dwell time and operational impact.
• Strategic Vision: Aspiring to lead proactive SOC teams with a focus on automation and intelligence-driven defense.

Sep 2021 – Present | SOC Incident Response Analyst

Operating at the front lines of national-level digital infrastructure security.

• Event Correlation: Analyzing massive data sets from distributed sources to identify multi-stage attack patterns (Kill Chain).
• Threat Hunting: Utilizing advanced queries to find anomalies that bypass traditional signature-based detection.
• Incident Documentation: Writing technical post-mortem reports to improve long-term security posture.

Technical Instructor & Mentor

Bridging the gap between academic theory and SOC reality for the next generation of analysts.

• Curriculum Architecture: Developed hands-on labs for Network Security, Cisco ASA/Fortinet management, and SOC Triage.
• Workforce Readiness: Training students on SIEM tools (Splunk/ELK) and real-world packet analysis using Wireshark.
• Active Mentoring: Guiding undergraduates through complex Graduation Projects in enterprise defense.

UneeQ (Best Intern Title):

• Executed **Vulnerability Scans (Nessus)** and prioritized remediation based on CVSS scores.
• Managed real-time network traffic monitoring to identify unauthorized access attempts.

---

MCIT Summer Internship:

• Hands-on with **Fortinet Infrastructure**, Data Center virtualization, and VoIP security.
• Mastered the art of Alert Triaging: distinguishing between false positives and critical threats.

Network Security & CyberOps Associate

• Forensics Analysis: Basic evidence preservation and analysis using The Sleuth Kit (TSK) and Autopsy.
• Firewall Hardening: Configured ACLs, NAT, and VPN tunnels on Cisco ASA and FortiGate appliances.
• Endpoint Security: Managed host-based defense systems and EDR solutions for threat containment.

A comprehensive engineering solution for modern enterprise security.

Building a specialized academy and brand focused on the Blue Team Career Path.

• Developed the "Cyber Route" roadmap for junior analysts to reach senior SOC roles.
• Specialized training content focusing on Incident Handling, Cisco Networking (CCNA/CCNP), and Firewall Mastery.

• SEC450 GSOC Prep (SANS): Intensive mastery of Modern SOC workflows, tactical analysis, and the analyst mindset.
• eCIR Prep (INE): Tactical training on enterprise incident response, focusing on memory analysis and data breach mitigation.
• SOC Level 1 (TryHackMe): Practical labs covering SIEM (Splunk), Digital Forensics, and Threat Intel.

Deep knowledge in building the networks I protect. Proficient in Cisco routing, advanced switching, and multi-vendor security architectures (FortiGate/ASA).

• Red Hat System Admin: Enterprise Linux management, user permissions, and service hardening.
• Python Programming: Writing scripts for security task automation and log parsing.
• Ethical Hacking (ITI): Understanding the adversary's mindset to better build the defense.

1st Place - IT-Gate CTF Blue Team

Track: HellFire_Club Team | Feb 2026

Other Titles: Finalist at ZINAD Cyber Champions, National Cybersecurity CTF, and 0xL4ugh CTF (Forensics & OSINT).