Dhaka, Bangladesh
I am Ahnaf Tahmid Hasan, a Security Analyst and Cybersecurity professional with 3 years of experience in the IT industry, particularly in cybersecurity consulting firms, software development companies, and the industrial automation sector. I have been actively involved in multiple projects, contributing to their successful development, implementation, and security operations. My expertise includes VAPT, Security Operations (SOC), SIEM engineering, threat detection, incident response, vulnerability assessment and IT audit. I specialize in building and optimizing SOC capabilities, integrating servers, firewalls, and endpoints into SIEM platforms, developing effective detection rules, fine-tuning alerts, and creating practical playbooks to improve operational efficiency and strengthen organizational security posture. I have hands-on experience with cybersecurity tools including IBM QRadar, Wazuh, Splunk, Wireshark, Burp Suite, Nmap, Metasploit, Nessus, OpenVAS, Lynis, OSSEC, and EDR/XDR solutions. My experience also extends to IT audit, compliance, and GRC frameworks such as ISO 27001, COBIT, and NIST CSF, including operational compliance support for ISO/IEC 27001:2022 standards. Core Skills: VAPT, SOC Operations, SIEM (QRadar, Wazuh), Threat Detection & Analysis, Incident Response, EDR/XDR Monitoring, Vulnerability Assessment, IT Audit, Risk Analysis, Network & Cloud Security, Playbook Development, Log Analysis, APT & Insider Threat Detection, File Integrity Monitoring (FIM), Python, Bash Script, JavaScript, Machine Learning, Deep Learning.
Cyber World Infosec is a non-profit initiative and cyber awareness platform working to prevent cyber harassment and cyber bullying.We conduct cyber awareness seminars in schools and colleges, raising awareness among teenagers and youth to create a safer digital environment. In addition, we actively work in the field of cyber world information security and have trained thousands of individuals, contributing to the development of a safer, more informed, and responsible digital society.
• Monitor, analyze, and investigate security alerts and events to identify potential threats. • Respond promptly to cybersecurity incidents and coordinate effective containment and remediation actions. • Collaborate closely with NOC and security teams to ensure rapid incident resolution. • Document security incidents and produce detailed technical and executive-level reports. • Identify, assess, and mitigate vulnerabilities across systems and networks. • Conduct in-depth vulnerability analysis and exploit known weaknesses to evaluate resilience against real-world threats. • Research and maintain a strong understanding of the company’s systems and network architecture. • Troubleshoot security issues and support root-cause analysis. • Stay up to date with emerging cyber threats, attack techniques, and industry trends. • Provide strategic recommendations to strengthen overall security posture. • Manage incident reporting and lifecycle from detection through closure.
• Manage and maintain the organization’s IT infrastructure, including hardware, software, and network systems. • Monitor system performance and ensure high availability, reliability, and security of IT services. • Provide technical support and troubleshoot hardware, software, and network issues. • Install, configure, and update operating systems, applications, and security tools. • Support network administration, user access management, and system backups. • Identify, analyze, and resolve IT incidents in a timely manner. • Assist in implementing IT policies, procedures, and best practices. • Coordinate with internal teams and external vendors to resolve technical issues. • Maintain documentation for systems, configurations, and IT processes. • Support cybersecurity initiatives by applying patches, managing access controls, and enforcing security standards. • Stay current with emerging technologies and recommend improvements to enhance operational efficiency.