I am an MS Cyber Security candidate at PNEC NUST (GPA: 3.55) with a background in SOC operations, security research, and GRC compliance frameworks. My internship at ITSOLERA gave me hands-on experience operating a real SOC toolchain from SIEM alert triage and firewall integration to malware analysis and workflow automation.

I am actively building toward GRC and information security roles, with focused study on ISO 27001, NIST CSF 2.0, PCI DSS, and risk management. I approach security from both the technical and governance side.

View Repository →

A compiled documentation booklet of all SOC lab work completed during my internship at ITSOLERA. Covers end-to-end deployment and configuration of a SOC toolchain including real-world use cases and findings.

Tools covered: Wazuh SIEM · pfSense Firewall · ClamAV · Squid Proxy · REMnux · Ghidra · n8n
Topics: File Integrity Monitoring · Alert Triage Automation · Malware Analysis · MITRE ATT&CK Mapping · Network Traffic Visibility

View Repository →

An IEEE-formatted research paper written as part of my MS Cloud Computing and Cloud Security coursework. Proposes a multi-layer encoding framework for data privacy in cloud environments and includes comparative analysis of existing approaches and compliance-as-code coverage.

Frameworks referenced: GDPR · ISO 27001 · NIST · Cloud compliance standards
Topics: Data privacy · Encryption · Compliance automation · Cloud security architecture

View Repository →

A research project evaluating two unsupervised machine learning models for anomaly detection in resource-constrained IoT edge environments, using the CIC IoT – DIAD 2024 Dataset.

Models compared: Isolation Forest vs Robust Random Cut Forest (RRCF)
Topics: Anomaly detection · F1-score stability · Edge computing · IoT security · Machine learning

View Repository →

Thesis chapters from my BS Computer Science degree at Iqra University (2020–2024).

Security & SOC      │ Log Analysis · Incident Response · SIEM (Wazuh) · MITRE ATT&CK
                    │ Malware Analysis (REMnux · Ghidra) · Threat Detection
                    │
GRC & Compliance    │ ISO 27001 · PCI DSS · NIST CSF 2.0 · Risk Assessment · Auditing
                    │
Networking          │ TCP/IP · DNS · Ports & Protocols · pfSense · Wireshark · VPN
                    │
Cloud Security      │ AWS Fundamentals · Azure Fundamentals · Cloud Architecture
                    │
Systems             │ Windows Administration · Linux · Active Directory · Access Control
                    │
Programming         │ Python · Bash · SQL · C#

• ISC2 CC - Certified in Cybersecurity
• TryHackMe - Pre Security Path

SOC Analyst Intern - ITSOLERA (Remote · Jan 2026 – Apr 2026)

• Conducted malware analysis using REMnux and Ghidra, mapping findings to MITRE ATT&CK
• Implemented File Integrity Monitoring (FIM) in Wazuh for real-time unauthorized change alerts
• Integrated pfSense firewall with Wazuh SIEM for centralized network traffic visibility
• Automated SOC alert triage and real-time classification using n8n workflows
• Deployed ClamAV antivirus with Squid Proxy on pfSense for malware download blocking

Open to GRC Analyst, Information Security Analyst, and SOC Analyst opportunities.
khanmabdullah2k@gmail.com · Karachi, Pakistan