Kianoush Habibi Sesari

• Led security incident response, leveraging Splunk for investigation and timely remediation. • Developed procedures, adhering to best practices and regulations. • Collaborated to triage and respond to incidents, minimizing impact. • Conducted forensic analysis to preserve evidence. • Fine-tuned alerts and correlation rules for proactive threat detection. • Conducted threat hunting using Splunk and Sysmon logs. • Delivered training on Splunk, incident response, and threat hunting.

• Security Course Instructor - CIS Controls v8 (Center for Internet Security Controls) (Volunteer) • Security Course Instructor - Blue Team Fundamentals: Security Operations and Analysis (Sec450) • Technical Editor of CIS Controls v8 Book (Persian Translation) (Volunteer)

• Security Analysis and Security Incidents Handling • Configuring and administrating different Splunk Cluster components • Deploying and administrating Splunk ES, use cases development, configuring and tuning its data models, dashboards, asset and identity lookups • Managing data inputs, indexes and HFs/UFs for collecting logs from different sources, making them compatible with Splunk CIM, and analyzing and visualizing data in Splunk by creating drill-down dashboards, reports and alerts

• Implementing Business Continuity Management Project based on ISO22301 • Implementing Data Leakage Prevention (Mcafee DLP) Project • Network Security internal audit based on ISO27001 • Research security enhancements and make recommendations to management

• Design and Secure Implementation of Company's WAN Network • Implementation of Network Monitoring using Solar-winds solutions • Maintaining Firewalls, Routers and switches • Creating and maintaining documentation

• Design, Implementation and Maintenance of the telephony system (VOIP, Digital, Analogue, Dect Technology-AASTRA Brand) • Active participation in the data center space and facilities development project (Network Passive and Active, Electrical, Civil, Fire Fighting, ...) • Creating and maintaining documentation

• Hyper-V Virtualization Implementation • Windows Domain Controller Implementation • Kerio Control Solution (Firewalling and Internet Sharing) Implementation • Windows OS deployment • Providing remote tech support • User hardware/software/peripheral support • LAN troubleshooting and support

• Kerio Mail Server Solution Implementation • Microsoft ISA Server Implementation • Windows OS deployment • User hardware/software/peripheral support • LAN troubleshooting and support • Creating and maintaining documentation

• User hardware/software/peripheral support • LAN troubleshooting and support

Computer - Hardware