Инженер внедрения

Описание

(705) 611-22-03
Kazahstan, Astana
nayman7182@gmail.com Aidyn Sagyngali
telegram:@AidynSM
linkedin.com/in/hxshira PERSONAL PROfiLE
I am a dedicated cybersecurity professional with a Bachelor’s degree and currently pursuing a Master’s degree in Big Data. I have a
strong background in cybersecurity, and my academic journey in Big Data enhances my skills in this critical field.
In my current role as a System Engineer and Splunk Enterprise Administrator, my primary focus is on implementing robust
cybersecurity solutions. I take pride in safeguarding organizations from cyber threats and vulnerabilities. My extensive experience
in managing Splunk Enterprise and tailoring various security solutions showcases my commitment to ensuring that data and
systems remain secure.
With a strong foundation in cybersecurity and ongoing education in Big Data, I bring a heightened level of expertise to the dynamic
and ever-evolving world of digital security.
EDUCATION Bachelor of Science, Cybersecurity September 2020 — June 2023
Astana IT University, Kazakhstan, Astana
• Grade: 3.6/4.00 with Honors
• Relevant Modules: Computer Viruses and Malware, Object-Oriented programming (Java), Algorithms and Data Structures,
Cryptography, Web - technologies, Software Architecture, Network Application Testing, Security architecture and design, Ethical
Hacking and Penetration Testing, Cryptography, Computer Networks Security, Web security
Master of Science, Big Data September 2023 — June 2025
Astana IT University, Kazakhstan, Astana
• Relevant Modules: Programming for data analysis and databases, Introduction to neural networks, Markov chains and
decision-making processes, Agile
PROFESSIONAL EXPERIENCE System Engineer
September 2023 — Now
JK and Partners, Kazakhstan, Astana
• Deploy and customize essential security solutions including Splunk Enterprise, Splunk Enterprise Security, DLP, SOAR (e.g., The
Hive, Cortex), and SIEM tools (e.g., FortiSIEM, Wazuh, ELK stack).
• Utilize MISP Threat Sharing and VirusTotal for threat analysis, risk assessments, vulnerability testing, and security evaluations.
• Oversee SOC processes, such as monitoring, troubleshooting, incident response, and documentation. Develop and execute
playbooks, manage escalations, address false positives, and uphold service level agreements (SLAs). Facilitate client meetings
and ensure proper ticketing for validated incidents encountered by IDS and IPS systems.
Security Operation Center Senior Analyst(L1) June 2023 — September 2023
Freedom Telecom, Kazakhstan, Astana
• Analysis of incident alerts using SIEM tools (FortiSIEM, Splunk, Wazuh, ELK stack), SOAR, IRP (The Hive, Cortex, Cuckoo sandbox),
Secure Mail Gateway, Zabbix monitoring system;
• Providing threat analysis, risk analysis, vulnerability testing and security assessments through MISP Threat Sharing and Virus
Total;
• SOC processes: monitoring and troubleshooting, playbooks, escalation, incident response and documentation, acknowledging
and closing false positives, raising tickets for validated incidents IDS and IPS encounter, SLAs, client meetings;
Security Operation Center L1 Lead September 2022 — March 2023
Kazdream Technologies, Kazakhstan, Astana
• Coordinated the response to security incidents, ensuring timely and effective resolution.
• Observed and instructed the SOC team members, providing guidance and support in handling complex incidents and issues.
• Conducted quarterly vulnerability assessments using Nessus Professional to identify potential security weaknesses in the
organization’s environment. Prepared detailed incident reports for management and stakeholders, outlining the incident’s
scope, impact, and remediation steps.
Security Operation Center Analyst(L1) June 2022 — May 2023
Kazdream Technologies, Kazakhstan, Astana
• Implemented and maintained a comprehensive honeypot infrastructure, capturing and analyzing malicious activities, and
providing valuable insights to improve overall security posture.
• Managed Unix-based systems, performed security hardening, and monitored system logs to detect and respond to security
incidents effectively.
• Administered Windows server environments, including Active Directory, Group Policy, and patch management, ensuring a
secure and stable infrastructure.
• Utilized Wazuh for intrusion detection, log analysis, and compliance management, enabling effective monitoring and response
to security events

(705) 611-22-03
Kazahstan, Astana
nayman7182@gmail.com Aidyn Sagyngali
telegram:@AidynSM
linkedin.com/in/hxshira IT Assistant
Dec 2021 — June 2022
Astana IT University, Kazakhstan, Astana
• Helped to install, configure and maintain the IT infrastructure of the university.
• Customized hardware and software applications as needed.
• Provided general support to the IT department and company computer users.
ADDITIONAL EXPERIENCE Security Operation Center Intern(L1) May 2022 — June 2022
Kazdream Technologies, Kazakhstan, Astana
IT Assistant May 2021 — May 2022
Astana IT University, Department of Science and Innovation, Kazakhstan, Astana
Service Desk Internship May 2023 — June 2023
Tengizchevroil, Kazakhstan, Atyrau, Kazakhstan, Astana
Volunteer September 2022
KazHackStan Toitarys, Kazakhstan, Almaty
Member of FR13NDS TEAM January 2022 — May 2023
Top 1 team KZ 2023,2022
TryHackMe/HackTheBox January 2022 — Now
Top50 KZ/Top15 KZ
PERSONAL PROJECTS Building Security Operation Center(SOC)
Fully created SOC with technologies like Wazuh(cluster deployment), MISP, Virustotal, GCP
• Tools and technologies used: GCP, Proxmox VE, Wazuh, Kibana, filebeat, MISP, Virustotal
Malware Analysis and Reverse Engineering
Comprehensive analysis of malware behavior using reverse engineering techniques
• Goals: Analyzing and understanding various malware types, such as Alcatraz and Dropper, with a focus on potential
vulnerabilities.
• Novelty: Employing dynamic and static analysis for multiple malware types, contributing to a deeper understanding of their
workings.
• Practical Relevance: Significance for cybersecurity specialists and students, offering insights and recommendations for more
effective defense in the cybersecurity field. Research results updated in 2023, aligning with 21st-century cybersecurity needs.
SKILLS Tools
IBM QRadar, Wazuh, Splunk, FortiSiem, GrayLog Elastic/Logstash/Kibana,
Prometheus/VictoriaMetrics/Grafana, FortiAnalyzer, FortiGate, QRadar, Zabbix, Proxmox, TheHive
Skills SIEM, IPS/IDS, NGFW, DLP, MITRE Attacks, OWASP, OSI, TCP/IP, DNS/HTTP/SSL, Windows/Linux,
Python/Java/C++, Penetration testing, Web Application Security, Advance Malware Analysis, MSSQL,
PL/SQL.
CERTIfiCATIONS / COURSES Splunk Enterprise Certified Admin
October 2023
• Splunk.
Splunk Core Certified Power User October 2023
• Splunk.
Splunk Accredited Sales Rep I, II October 2023
• Splunk.
IELTS Academic Band 7.0 March 2022
• British Council.
Cisco Certified Network Associate Routing and Switching (CCNA) March 2022
• Cisco Networking Academy.

(705) 611-22-03
Kazahstan, Astana
nayman7182@gmail.com Aidyn Sagyngali
telegram:@AidynSM
linkedin.com/in/hxshira Operating System Linux
March 2022
• Cisco Networking Academy.
Cybersecurity Essentials November 2021
• Cisco Networking Academy.
Practical Ethical Hacking September 2022
• TCM Security.
Practical Malware Analysis and Triage September 2022
• TCM Security.
Practical Web Application Security and Testing Jule 2023
• TCM Security.
REFERENCES Dauren Salipov, Chief Executive Officer, MSSP.GL, d.salipov@mssp.global
Ruslan Baimuratov, Chief Executive Officer, IDENTIFY, CEO@identify.kz
Sholpan Borashova, Senior lecturer of School of Creative Industry, Astana IT University, sholpan.borashova@astanait.edu.kz
Yevgeniy Shutilin, Chief Executive Officer, JK and Partners, y.shutilin@jk.partners