Sadam Hussain M
Dubai
Summary
Highly Accomplished Cybersecurity Consultant with extensive expertise in EPP, EDR, XDR, Incident Response, SIEM and Vulnerability Management. Esteemed for consistently exceeding client expectations and leading teams to achieve security excellence. Proficient in strategic planning, risk mitigation, and regulatory compliance, with a proven track record of spearheading transformative security initiatives and fortifying organizational resilience. Capable of performing implementations, Migrations, designing EPP Solutions, Conducting Security Assessments, Cyber health Check Reports, Monitoring Compliance for information security programs.
Overview
12
12
years of professional experience
1
1
Certification
Work History
Associate Consultant
HCL TECHNOLOGIES LTD
12.2017 - Current
- Extensive experience in Solution design of cutting-edge endpoint security solutions like Microsoft Defender for Endpoint, Trellix ePO, Symantec Endpoint Protection, Trend Micro, Sentinel One, Crowd Strike
- Designed EPP security solutions to protect the company’s IT infrastructure against cyber-attacks, reducing the number of security incidents by95%
- Centralized management, Administration, Product Migration, Configuration Rules, policy finetuning, inline mode implementations and reporting of Endpoint Security Technologies for large-scale endpoint environments (50K+ users) across global regions (APAC, NCSA, EMEA) in IT Environment
- Proficient in the threat intelligence lifecycle, with expertise in the Cyber Kill Chain, and Leveraged MITRE ATT&CK framework and KQL to identify and neutralize APTs and zero-day exploits, enhancing threat detection and mitigation capabilities
- Recognized80+ new viruses and malware while safeguarding and observing more than60 websites without any major attacks, gaining positive feedback from supervisors, colleagues, and company stakeholders
- Experience on configuration and troubleshooting Full disk Encryption DE, File vault, Bit-Locker
- Managing Security Operations, ensuring alignment with IT, business, and audit performance metrics, while implementing service improvements for operational efficiency
- Specialized in deploying and managing endpoint protection solutions within SCADA and ICS environments, ensuring robust security in OT systems
- Improved threat detection and reduced response times by25% through EDR optimization
- Having sound Knowledge in Trellix TIE and ATD Malware Analysis
- Performing a discovery of environment and designing a technical onboarding process for their Azure/O365 tenants
- I.e., endpoint manager, MDO, XDR.Windows Hello, Conditional access, O365 ATP, RBAC
- Expert in information security risk management and vulnerability management using Nessus and Defender VA, with a focus on remediation and staying updated on new techniques, attack methods, and zero-day vulnerabilities
- Managed a comprehensive DLP strategy reducing data leakage incidents by90%
- Conducted security assessments on the company’s systems, boosting productivity by69% in the first year of Defender Security implementation
- Conducted security awareness training for Security Towers, improving security awareness of the workforce and Reduced phishing incidents by30% through effective end-user training
- Skilled in efficiently managing and tracking incidents with BMC Remedy and ServiceNow ticketing tools
- Contribute to multiple aspects of our information security program, helping us establish foundational controls across the environment and promoted continuous improvement for IT governance processes
- Assurance and Performance Management Reporting (KPI's/KRI's)
- Proficient in developing SOC operational security incident models, Technical Analysis, assigning threat classifications, and crafting analytical rules and use cases to enhance threat detection and response capabilities
- Experienced in building and customizing rule & Security policy templates within Intune, enhancing Defender security configurations and compliance
- Automated health checks and malware detection, cutting manual intervention by50%
- Led Breach Attack Stimulation and testing efforts revealing hidden weaknesses & improving overall security to improving security posture scoring by79%
- Maintained and updated process documentation, ensuring compliance with internal policies (PMO, ITIL, ISO9001 &27001), and improved security operational procedures for efficiency and automation
- Actively contributed to knowledge sharing with technical writing and maintaining documentation for procedures, runbooks, and SOPs
- Led and acted as the expert for Proof of Concepts to evaluate security solutions in coordination with CSA and GRM, providing comprehensive feedback and detailed test reports to ensure the selection of the most suitable security technologies for the organization’s IT security needs
- Worked with5+ internal and external audit groups to resolve regulatory issues and maintain compliance
- Project Leadership & Stakeholder Engagement: Proven ability to lead cross-functional teams in the successful delivery of multiple projects, ensuring adherence to quality, scope, schedule, and budget requirements
- Skilled in developing project plans, tracking progress, and communicating status updates to stakeholders
CONSULTANT
AMINNO SOFTWARE TECHNOLOGIES
10.2014 - 11.2017
- Managing all client systems from Endpoint Security (ENS) perspective using McAfee EPO tool which includes managing Agent, VSE, pushing client tasks, managing ODS & OAS scans
- Created tasks for real-time repository updates, policy and task assignments, and dashboard updates
- Optimized policy creation and task assignment process based on the products supported and administered via ePO
- Identifying the Threat hunting for malicious activity across the network and Checking the IOC of particular binary, and search third party feeds to see its reputation and origin information
- Performed daily analysis of alerts, client data, connectivity, deployed modules, and functionality
- Provide onsite assistance for technical issues involving product and upgrades and implementation
- Enforced aggressive machine rules to ensure only approved processes are allowed, eliminating the use of third party applications
- Developed strategies to reduce security risks and ensure audit compliance with no high-risk findings, resolving findings within the agreed timelines
- Executed in-depth Trend analysis of incident, assessing the impact on data and infrastructure, and provided strategic recommendations for enhancing cybersecurity defenses
- Assist in incident response activities, including investigation, containment, and remediation of security incidents on endpoints
- Prepared weekly and monthly reports for compliance with Trellix Agent, VirusScan Enterprise, Distributed Repositories, Malware Alerts, and Yearly Audits
- Researched various emerging attacks, threats and risks related to computer security to produce internal proactive security awareness reports
- Handled tickets smoothly during shift change over and offered On Call support for critical incidents
- Responded to and resolved technical escalations in a timely manner while adhering to SLAs
- Coordinated with stakeholders during incident handling, providing functional support for EPP area development and Solve Complex Problem with recommending remediation actions
System Administration
VISAG BUILDERS & DEVELOPERS PVT LTD
11.2012 - 02.2014
- Managing and maintaining Symantec Endpoint Protection for workstations and Servers
- Deploy software packages to new systems and update Symantec Endpoint Protection on existing clients
- Provided effective resolutions to issues and escalated problems with knowledgeable support and quality service
- Identifying and troubleshooting the infected/outdated client machines through Symantec endpoint protection manager
- Analyzing & Generating Antivirus compliance and patch compliance report on monthly basis and producing the same to the respective stakeholders
- Ample knowledge in Windows XP / WIN7 / WIN8/WIN10 Added and removed server roles and features
- Monitoring the progress of third-party maintenance contract suppliers
- Involve in Planning, Designing, Implementing, and Configuring, administrating, Optimizing and troubleshooting of the IT infrastructure services like AD, DNS, and DHCP etc
Education
B. TECH - Informational Technology
AMS engineering College, Affiliated Anna University
Chennai01.2012
Skills
- Endpoint Security: Trellix ePO, Mvision EDR, Mvision Insights, Trellix TIE, SEPM14x, Symantec ATP, Trend Micro Office Scan XG, Deep Security, Trend Micro Cloud one, SOPHOS Enterprise, Carbon Black Response, Falcon Crowd Strike, Bit-Defender Enterprise, Sentinel One, Microsoft Defender for Endpoint
- Encryption: Trellix Drive Encryption, File-Vault, Bit-Locker
- Data Loss Prevention : Triton DLP, Microsoft Defender DLP Compliance
- Vulnerability Management Tool: Trellix Vulnerability Manager, Nessus, Defender Threat & VM
- Penetration Testing: Cymulate Endpoint stimulation, PE Studio, Wire Shark, IDA Pro
- SIEM : Azure Sentinel , Splunk
- Ticketing Tool: Service Now, BMC Remedy
- Security Frameworks: ISO27001, NIST Cybersecurity Framework, COBIT, PCI DSS
- Operating System: Windows, Linux & Mac
- Applications: SCCM, Intune Tool
- Sandboxing: Trellix ATD, Falcon Sandbox
- Scripting languages: PowerShell, KQL
- Monitoring: Manage Engine, Nexthink, Power BI
- Incident Response
- Threat Hunting & Cyber Threat Intelligence
Certification
- Advance Cyber Security & Cyber Defense at IIT Kanpur
- MCITP
- Microsoft Cybersecurity Architect SC-100
- CISSP (Pursuing)
LNGG
English
Tamil
Hindi
Urdu
Arabic
Disclaimer
I hereby declare that the Information provided above is correct up to my knowledge and I am solely liable to the above stated information. Place: Dubai,UAE (Sadam Hussain M)
Timeline
Associate Consultant
HCL TECHNOLOGIES LTD
12.2017 - Current
CONSULTANT
AMINNO SOFTWARE TECHNOLOGIES
10.2014 - 11.2017
System Administration
VISAG BUILDERS & DEVELOPERS PVT LTD
11.2012 - 02.2014
B. TECH - Informational Technology
AMS engineering College, Affiliated Anna University