Mustafa Kamal, Lead information security engineer

Mustafa Kamal

Lead information security engineer

Loyalty service llc

Location
Russian Federation
Education
Master's degree, Cyber Security
Experience
6 years, 0 Months

Share My Profile

Block User


Work Experience

Total years of experience :6 years, 0 Months

Lead information security engineer at Loyalty service llc
  • Russian Federation - Moscow
  • My current job since August 2023

• Internal and external audit of IT infrastructure.
• Penetration testing, Incident analysis and response
• Installation, configuration of SIEM system, IDS/IPS etc.
• Develop, design and implement DevSecOps strategy and architecture
• Developing threat model using MITRE_ATT&CK framework
• Security awareness training for employees including social engineering
• Development, defining, implementation of regulatory documents in accordance with Federal Laws and ISO 27001, 27002, PCI DSS, MITRE, SANS, NIST, OWASP.
• Collaboration, signing agreements with vendors and clients

Leading IT Engineer at Evraz Vanadi
  • Russian Federation - Moscow
  • May 2022 to February 2023

• Installation, configuration, troubleshooting and management of networking devices, servers, services, subsystems, Exchange servers, DHCP, AD, ACL etc.
• Installation, configuration, troubleshooting and management of Zabbix for enterprise IT infrastructure monitoring.
• Troubleshooting, maintaining and management of IoT devices.
• Implemented automation for information security processes.
• Participated in IT infrastructure development planning.
• Provided information security for remote offices through VPN.
• Conducted network troubleshooting and security analysis.
• Utilized PowerShell and Python for system administration tasks.

System Administrator at Haval motors manufacturing Rus LLC
  • Russian Federation - Tula
  • September 2021 to May 2022

• Ensured smooth operation of local networks, servers, & network devices.
• Managed 300 workstations including MES workstations.
• Registered and managed user accounts and passwords.
• Implemented data copying, archiving, and backup processes.
• Provided technical and software support to users.
• Managed Active directory
• Identified and resolved network and program errors.
• Implemented measures for ensuring technological security.

System security administrator at Central Hospital
  • Russian Federation - Moscow
  • March 2021 to September 2021

• Performed all tasks and duties of system administrator such as managing 190 workstations including special medical equipment’s, troubleshooting network, servers, AD, ACL, DNS, DHCP, and network devices.
• Administered and secured hospital website.
• IT audit of the hospital
• Participated in information security system implementation projects.
• Assisted in infrastructure and network IT projects.
• Utilized and implemented virtualization using VMware.
• Maintained office equipment, prepared documentations and inventory.
• Worked with specials medical software and devices.

Junior Penetration tester at Vendorie
  • Russian Federation - Moscow
  • January 2017 to February 2020

Vulnerability assessment, Penetration testing utilizing all open-source tools included in Kali Linux such as OpenVAS, Nmap, Nikto, Burpsuit, Nessus, SQLMap, Theharvester, sublist3r, Netcat, Google Dorks, Dirb, enum4linux, DNSRecon, Dig, Metasploit, John the Ripper, Wireshark, Ettercap, Hping3, Mimikatz etc.

Education

Master's degree, Cyber Security
  • at Tula State University
  • December 2023

Project: Use of machine learning technology in penetration testing: Focus on IDS evasion Project: Opensource software threats Practical project: Critical infrastructure security threats and solutions Paper: Secure DevOps practices scientific research on ML based IDS evasions using saliencyMapattack with cleverhans framework. creating/writing and training ML based python program to evade IDS and proposing defence mechanism.

Bachelor's degree, Secure Systems and Networks
  • at Siberian State University of Telecommunications and Informatics
  • January 2020

Bachelor: Infocommunication Technologies and Communication Systems Specialization: Secure Systems and Networks University: Siberian State University of Telecommunications and Informatics, Novosibirsk

Specialties & Skills

System Administration
Linux server administration
Firewall Administration
Penetration Testing
Network security analysis
web security
telecommunications
problem analysis
microsoft servers
servers
linux server
Penetration testing
Server engineer
Bash scripting
Pfsense configuration and installation
Fortigate firewall installation and configuration
server troubleshooting
PowerShell scripting
Server deployment automation via PowerShell
Linux server administration
windows Server administration
CISCO switch configuration
Firewall configuration
Incidence response
SIEM setup and configuration
IP table configuration
Server Monitoring
Zabbix configuration and troubleshooting
VMware ESXi administration
Splunk installation and configuration
windows server
systems management
network engineering
computer hardware troubleshooting
windows network administration
network operations
networking software
system administration
system maintenance
firewalls
security management
risk management
vulnerability management
vulnerability assessment
cyber security
information systems development
endpoint security
web application security
security information
security
routing
access control
Google cloud
Docker, Docker-Compose
Ansible
GitLab, GitHub
Firewall configuration, IPS IDS setup SOC analyst
Jenkins
Terraform
Cloud Computing (Yandex Cloud, Google Cloud, Azure, Selectel)
Active Directory

Languages

English
Expert
Russian
Expert
Urdu
Native Speaker

Training and Certifications

Certified Ethical hacker CEH (Training)
Training Institute:
Eccounsil
Date Attended:
January 2023
Cyber security analyst (Certificate)
Date Attended:
April 2020
SSCP (Training)
Training Institute:
ISC²
Date Attended:
July 2020
Duration:
100 hours
Development of a Secure online store "Vendorie" and penetration testing (Training)
Training Institute:
Sibsutis
Date Attended:
September 2020
Duration:
40 hours

Hobbies

  • Gym, Learning about trending IT topics, Volleyball