Available to hire
Seasoned DFIR Engineer with 7+ years of hands-on experience in digital forensics, incident response, and
threat analysis across government, military, and healthcare sectors. Specialized in forensic acquisition,
intrusion correlation, malware investigation, log analysis, adversary tracking, and direct remediation.
Advanced skills with industry-leading forensic and EDR tools, SIEM, and automation (Python, PowerShell,
Bash). Holder of 25+ technical certifications including CEH, CNSP, Threat Hunter, and Incident Responder.
Bilingual in Arabic and English, with proven ability to communicate complex findings to all stakeholder
levels.
Skills
Experience Level
Expert
Expert
Expert
Expert
Expert
Intermediate
Intermediate
Language
Arabic
Fluent
English
Advanced
Work Experience
Cybersecurity/DFIR Engineer at Military Prosecutor
January 1, 2023 - PresentActed as primary responder for reported cyber incidents — executed evidence collection, triage, forensic imaging (FTK Imager, EnCase, dd, dc3dd), and integrity validation (MD5/SHA-256). Analyzed host-based and network logs, memory dumps, system artifacts (Windows Registry, NTFS, Prefetch, LNK files, Syslog, APFS), and traced attacker movement. Built custom Python and Bash tools for fast indicator extraction and log correlation, improving response times and detection accuracy. Led and documented remediation tasks, interfacing with EDR/SIEM (Carbon Black, Splunk) and preparing incident trend reports for management and auditors.
Cybersecurity Specialist at Maadi Armed Forces Medical Complex
January 1, 2023 - September 24, 2025Conducted high-impact forensics on compromised endpoints, server memory, and storage, leveraging Sleuth Kit, Volatility, and network packet analysis (Wireshark, tcpdump). Supported cross-functional incident response teams with forensic evidence, threat profiling, and communications. Managed SIEM alerts and EDR rules, providing actionable recommendations and educating internal security teams.
System Administrator / Incident Response Lead at Armed Forces Main Information Center
July 1, 2019 - September 24, 2025Maintained secure Windows and Linux environments, executed digital evidence preservation, and performed regular security control reviews. Automated repetitive forensic and response tasks, producing clear documentation and chain of custody records.
Education
Bachelor of Computer Engineering at Military Technical College, Cairo
January 11, 2030 - July 1, 2017Qualifications
Certified Ethical Hacker (CEH)
January 11, 2030 - September 24, 2025Certified Active Directory Penetration Tester
January 11, 2030 - September 24, 2025CyberTalents Certified Threat Hunter
January 11, 2030 - September 24, 2025Certified Incident Responder
January 11, 2030 - September 24, 2025Certified Network Security Practitioner (CNSP)
January 11, 2030 - September 24, 2025Certified AppSec Practitioner
January 11, 2030 - September 24, 2025IBM Penetration Testing, Threat Hunting, and Cryptography
January 11, 2030 - September 24, 2025Splunk Administration and Advanced Topics
January 11, 2030 - September 24, 2025Advanced Threat Hunting and Incident Response
January 11, 2030 - September 24, 2025Advanced Network Security
January 11, 2030 - September 24, 2025Next-Generation Firewalls and Intrusion Prevention
January 11, 2030 - September 24, 2025Cisco CCNA
January 11, 2030 - September 24, 2025Cisco CCNP
January 11, 2030 - September 24, 2025Foundations of Cyber Risk Management (FAIR)
January 11, 2030 - September 24, 2025Foundations of NIST Cybersecurity Frameworks
January 11, 2030 - September 24, 2025Threat Hunter (CyberTalents)
January 11, 2030 - September 24, 2025Industry Experience
Government, Healthcare, Professional Services, Software & Internet, Other, Computers & Electronics
Skills
Experience Level
Expert
Expert
Expert
Expert
Expert
Intermediate
Intermediate
Hire a Full Stack Developer
We have the best full stack developer experts on Twine. Hire a full stack developer in Cairo today.