I’m a passionate Cybersecurity Engineer and Network Administrator with a strong foundation in system defense, SIEM engineering, threat detection, and network infrastructure.
With hands-on experience in offensive and defensive security, I specialize in building, securing, and monitoring enterprise-grade environments — both on-premises and in the cloud.
📘 About Me
- 🎓 B.Sc. in Electronics and Communication Engineering — Hajee Mohammad Danesh Science and Technology University (2017–2022)
- 💼 Cybersecurity Engineer & Network Administrator at Nextech Limited (2023–Present)
- 🛡️ Certified in CompTIA Security+, ISO/IEC 27001:2022 Lead Auditor, SOC Level 1, and Junior Penetration Testing
- 💬 Focused on Threat Detection, Incident Response, SIEM, Vulnerability Management, and Network Security Architecture
- 🌍 Based in Dhaka, Bangladesh
🧠 Technical Expertise
- SIEM Platforms: Wazuh, ELK, Splunk, QRadar
- IDS/IPS: Snort, Suricata
- Malware Analysis: YARA, PEStudio, Procmon, VirusTotal, Any.Run
- Threat Intelligence & Incident Response: MITRE ATT&CK, SOC Monitoring, Log Correlation, Triage
- Vulnerability Assessment & Penetration Testing: Nessus, OpenVAS, Nmap, Metasploit, Hydra, SQLmap, Burp Suite
- Governance & Compliance: ISO/IEC 27001 ISMS, Risk Assessment (ISO 27005), Internal Auditing
- Network Administration (LAN/WAN, VLAN, VPN, OSPF/BGP, NAT, QoS)
- Cisco IOS CLI, MikroTik Routers, Firewall Policy Management
- DNS, DHCP, AD DS, GPO, Identity and Access Management
- Cloud Networking (Azure, Hybrid Environments)
- Languages: Python, PowerShell, Bash
- Automation: Log parsing, alert triage scripts, configuration baselines
- Monitoring Tools: Grafana, Zabbix, PRTG, SolarWinds
💻 Featured Technical Projects
| Project | Description | Tools |
|---|---|---|
| My Private XDR & SIEM Simulation with Wazuh | End-to-end private XDR/SIEM lab using Wazuh, Kibana, and Suricata. Includes custom GUI for step-by-step learning. | Wazuh, ELK, VMware, Ubuntu, Windows |
| Azure Cybersecurity Trap | Built honeypots in Azure using T-Pot for malware detection and telemetry collection. | Azure, T-Pot, NSG Rules, IDS/IPS |
| Malware Detection with YARA Rules | Automated static and dynamic malware identification pipeline. | YARA, PEStudio, Procmon, VirusTotal |
| Active Directory Lab Simulation | Configured enterprise-grade AD DS with GPO, DNS, and LDAP. | VMware, Windows Server, RSAT, PowerShell |
| Network Risk Assessment using Nessus | Hands-on vulnerability scanning, port enumeration, and service analysis. | Nessus, Nmap, Wireshark |
| Operation ClickBait (Email Attack Analysis) | Built phishing detection lab with Suricata, Snort, ClamAV, and MISP. | Postfix, Snort, Wireshark, VirusTotal |
| University Network Design (CCNA Project) | Designed and simulated university network infrastructure. | Cisco Packet Tracer, OSPF, VLAN, NAT |
🏆 Career Highlights
- Designed and managed enterprise networks integrating NGFW, VPN, and IDS/IPS.
- Built and maintained Wazuh dashboards for real-time SIEM alerting and monitoring.
- Performed SOC Level 1 operations — log correlation, triage, and response aligned with MITRE ATT&CK.
- Ensured ISO/IEC 27001 compliance through audits, documentation, and CAPA management.
- Delivered security awareness campaigns and phishing simulations.
🎓 Certifications
- CompTIA Security+ (SY0-701)
- ISO/IEC 27001:2022 Lead Auditor
- SOC Level 1 Certificate
- Junior Penetration Tester Certificate
- TryHackMe: SAL1
📫 Connect With Me
- Email: fiaz1424@gmail.com
- LinkedIn: linkedin.com/in/fiazahmed
- Portfolio / Projects: https://fiazhackshield.github.io/wazuh-siem-lab
“Security is not a product — it’s a process of continuous improvement.”
— Fiaz Ahmed