Hello! I'm
ABDUR REHMAN
Cybersecurity Specialist & SOC Operations Engineer
8th-semester BS Cybersecurity student at FAST-NUCES (Expected June 2026). Specializing in SOC operations, security automation, and digital forensics.
What I have done so far
Work Experience.
Cybersecurity Intern (SecOps Domain)
SNSKIES
- Monitored enterprise network operations and performed real-time analysis of security events across hybrid-cloud environments using SIEM tooling, contributing directly to L1 SOC workflows.
- Contributed to SOCentriq development, integrating distributed network components and optimizing Logstash data ingestion pipelines to support real-time threat detection and alert correlation.
- Gained hands-on SOC experience in alert triage, log monitoring, and incident documentation across Linux and Windows environments, aligning with SOC operational standards.
- Supported vulnerability scanning activities and tracked remediation statuses across monitored enterprise infrastructure.
Red Teaming Intern
ITSOLERA
- Performed penetration testing across multiple client network environments, identifying critical vulnerabilities in firewall rules, network configurations, and access controls — providing firsthand knowledge of attacker techniques relevant to SOC detection.
- Developed Python-based tools for automated vulnerability assessment and network reconnaissance, improving speed and accuracy of threat identification.
- Documented findings and collaborated with security teams on network-level mitigation strategies, developing skills in structured incident reporting and remediation tracking.
Lab Demonstrator / Teaching Assistant
FAST-NUCES
- Delivered technical lab sessions on TCP/IP, OSI model, VLANs, routing protocols, and network troubleshooting for 50+ students per cohort — reinforcing deep practical knowledge in network infrastructure.
- Demonstrated real-world security scenarios including firewall rules, ACL implementation, and traffic analysis using live virtualization environments.
- Managed lab infrastructure uptime, diagnosing and resolving connectivity, performance, and configuration issues across Windows and Linux systems.
Professional Credentials
Certifications.
Industry-recognized professional certifications, cloud architecture credentials, and specialized digital forensics training.
Certified in Cybersecurity (CC)
Foundational cybersecurity credential covering security principles, business continuity, disaster recovery, incident response, access controls, network security, and security operations.
AWS Academy Graduate - Microservices and CI/CD
12-hour advanced builder pathway validating architecture patterns, containerized deployments, serverless operations, and enterprise-grade CI/CD pipelines on AWS infrastructure.
Windows Forensics with Belkasoft
Completed training course scoring a perfect 100% on final exam. Covers forensic acquisition, registry analysis, event logs, file system artifacts, and evidence extraction from Windows devices.
API Security Fundamentals '25
Validated knowledge in securing REST and GraphQL APIs, assessing OWASP API Top 10 vulnerabilities, and conducting automated API security testing in DevSecOps environments.
x86-64 Assembly (Architecture 1001) & WinDbg (Debuggers 1011)
Completed rigorous coursework in low-level CPU architectures, assembly programming, stack/heap analysis, software debugging, and reverse engineering using WinDbg.
BelkaGPT: Effective AI in DFIR
Advanced training on integrating generative AI, large language models, and natural language query systems into digital forensics and incident response investigative workflows.
Ethical Hacking Essentials (EHE)
Foundational ethical hacking certification spanning footprinting, network scanning, system hacking, web application attacks, and wireless security concepts.
Academic & Leadership Distinctions
Achievements & Honors.
Recognitions of excellence and leadership within academic and cybersecurity programs.
Dean's Honor List
Earned academic distinction and placement on the Dean's Honor List at FAST-NUCES Islamabad for outstanding academic and GPA performance in the Department of Cyber Security.
Teaching Assistant & Lab Demonstrator
Selected to lead technical lab sessions for Ethical Hacking, Network Security, and Computer Networks courses, mentoring 100+ cybersecurity students on enterprise infrastructure.
My work
Projects.
Each project represents a real-world challenge in cybersecurity operations — from building autonomous threat reasoning systems to deploying enterprise SIEM infrastructure.
SOCentriq
Architected a distributed hybrid-cloud SOC running Wazuh SIEM, MISP, Zeek, and LLaMA 3.1. Developed an 8-layer Logstash pipeline that ingests real-time network telemetry, expanding raw event fields from ~15 to 160+ enriched attributes including GeoIP and STIX 2.1 IOCs, achieving a sub-5-minute MTTD.
Automation Bliss
Developed a custom SOAR platform integrating Shuffle with TheHive to automate incident response workflows. Configured Python automation scripts for alert enrichment, MISP threat intelligence lookups, and automated threat containment, significantly reducing MTTR for SOC tasks.
SIEM Stack Deployment
Deployed a full-scale Wazuh SIEM solution with Logstash integration for centralized log monitoring across hybrid infrastructure. Configured custom detection rules and dashboards, alongside a PostgreSQL-backed evidence tracking system with strict firewall and ACL controls.