π Cybersecurity and cloud-focused IT professional with 5+ years of experience in enterprise IT operations, specializing in SIEM engineering, cloud security, and threat detection across large-scale environments.
- π’ IT & Systems Specialist managing Microsoft 365 security for 4,000+ users
- π‘οΈ Hands-on with Microsoft Sentinel, Splunk, Azure Defender, and SOAR automation
- βοΈ Focused on Azure Cloud Security Architecture & Identity Protection (Entra ID / MFA / PIM)
- π¬ Built 28+ real-world cybersecurity labs covering SOC, SIEM, and cloud security
- π ISO/IEC 27001:2022 Lead Auditor | CRTOM | CSCSO | Blue Team Analyst
- π Advancing toward AZ-500 Microsoft Azure Security Engineer (Expected Q3 2026)
| Achievement | Impact |
|---|---|
| Enforced MFA & Conditional Access across 4,000+ accounts | Significantly reduced unauthorized access risk |
| Deployed endpoint hardening baselines across all managed devices | Improved compliance rate organization-wide |
| Built SOAR-automated incident response workflows | Reduced mean time to respond (MTTR) |
| Reduced system downtime at previous role | 35% improvement through proactive monitoring |
| Improved help desk resolution efficiency | 40% faster through structured escalation |
| Project | Description |
|---|---|
| Microsoft Sentinel SIEM Threat Detection Lab | Built end-to-end threat detection pipeline with custom KQL analytics rules |
| Sentinel SOAR Automated IP Blocking | Automated incident response malicious IP blocking via Logic Apps |
| Honeypot Live Attack Map | Deployed Azure honeypot with real-time global attack visualization |
| SOC Dashboard Monitoring Lab | Built comprehensive SOC monitoring dashboard with alert triage workflows |
| Brute Force Attack Detection | Detected and responded to brute force attacks using Sentinel analytics |
| Project | Description |
|---|---|
| Azure Firewall Hub-Spoke Architecture | Enterprise-grade secure network segmentation in Azure |
| Azure WAF + Application Gateway Security | Web traffic inspection with OWASP rule sets |
| Azure DDoS Protection Lab | Cloud-native volumetric attack mitigation |
| Azure Key Vault Hardening | Secrets management and cryptographic key protection |
| Conditional Access + MFA Security Lab | Identity-based Zero Trust access enforcement |
| IAM + Privileged Identity Management (PIM) | Just-in-time privileged access controls |
| Project | Description |
|---|---|
| Splunk Real-Time Security Dashboard | Real-time threat visibility with custom Splunk dashboards |
| Windows Persistence Detection using Sysmon | Endpoint threat hunting for persistence mechanisms |
| Registry-Based Threat Detection | Detecting malicious registry modifications |
| Active Directory Monitoring | AD event log analysis for attack pattern detection |
| Network Traffic Analysis | Deep packet inspection and anomaly detection |
-
π Pearson BTEC Level 5 HND in Cybersecurity Achievers International Campus (2024 β 2026) | Distinction β Digital Forensics | Distinction β ISMS | Merit β Cybersecurity
-
π AZ-500 Microsoft Azure Security Engineer (In Progress Q3 2026)
-
β ISO/IEC 27001:2022 Lead Auditor
-
β CRTOM Certified Red Team Operations Management
-
β CSCSO Certified SME Cyber Security Officer
-
β Blue Team Junior Analyst Pathway
-
β ISC2 Candidate
-
β CCNA Cisco Networking Academy
-
β Cyber Threat Management Cisco Networking Academy
-
β MS-102 Microsoft 365 Administration Learning Path
-
β Wireshark & Network Analysis
π amalcyberlab.vercel.app Real-world cybersecurity labs, writeups, and security projects.
β 28+ real-world cybersecurity labs | SOC Operations | SIEM Engineering | Azure Cloud Security | Threat Detection