L2 SOC Analyst & Security Engineer based in Riyadh
I design and deploy Security Operations Centers end-to-end, from Wazuh SIEM and custom detection rules to endpoint telemetry and incident workflows.
Hardened MikroTik edge networks with dual-WAN automated failover, traffic shaping and segmentation engineered for zero downtime.
L2 incident analysis, threat hunting and log forensics that turn raw telemetry into clear, actionable defensive decisions.
Cybersecurity professional and L2 SOC Analyst with 8+ years across system administration, network security and infrastructure. I architect, deploy and run Security Operations Centers from the ground up — advanced SIEM, secure network design and hands-on threat analysis. My background in accounting and risk lets me translate technical threats into clear business impact, and I am driven by active defense and security engineering rather than passive monitoring.
Moaaz Abouobaida
+966 53 583 9579
Al Rawdah, Riyadh, KSA
M.Sc. Computer Science
Available
Stand up a working Security Operations Center with Wazuh, custom detection rules, endpoint telemetry and L2 incident analysis.
MikroTik firewall design, advanced routing, traffic shaping and dual-WAN automated failover for high-availability edge networks.
Production-grade WireGuard and OpenVPN infrastructure with certificate auth, peer segmentation and tight firewall whitelisting.
Asterisk / Issabel and FreeSWITCH deployments — SIP dial-plan hardening, trunk security and call-flow troubleshooting.
Credentialed Nessus scans, system audits and prioritized remediation plans that measurably strengthen security posture.
Python and PowerShell tooling for account auditing, password-compliance checks, hardening and repeatable operational tasks.
Designed and deployed a functional SOC from the ground up; engineered Wazuh SIEM with custom detection rules, and architected resilient MikroTik networks with dual-WAN automated failover and perimeter defense.
Lead a technical support team resolving 500+ incidents a year. Administer Windows Server, manage access and patching, and implement firewall rules, VPNs and network segmentation alongside backup and security policies.
International consulting across SOC/SIEM (Wazuh), secure remote access (VPNs) and enterprise VoIP (Asterisk / FreeSWITCH), with deep-dive troubleshooting of SIP dial plans and network bottlenecks.
Provided IT support and security for 30+ branches — POS and network hardening, endpoint protection, password policies, secure VPN connectivity and QA/security testing on new ERP modules.
Delivered hardware and software support for critical financial systems, ensuring secure daily operations through proactive maintenance and troubleshooting.
Postgraduate study in computer science, building on a decade of hands-on infrastructure and security work.
A finance and auditing foundation that sharpens risk assessment, compliance and translating cyber threats into business impact.
Designed and deployed a complete Security Operations Center from the ground up. Engineered Wazuh SIEM to monitor an enterprise network, authored custom detection rules, and analyzed telemetry from multiple endpoints to drive L2 incident analysis and threat hunting.
Architected a resilient MikroTik edge network with complex port forwarding, traffic shaping and a dual-WAN automated failover system engineered to guarantee zero downtime, including resolving asymmetric UDP routing caused by mangle rules.
Deployed a full WireGuard VPN infrastructure on an international VPS — key management, peer segmentation (/32), firewall whitelisting, DNS overrides and end-to-end connectivity testing for secure, high-performance geo-distributed access.
Built a production-grade OpenVPN server on a MikroTik router using a static public IP, certificate-based authentication, NAT/firewall policies and optimized routing to provide secure remote access to a home-lab network.
Built a virtualized enterprise lab and ran credentialed Nessus scans against intentionally vulnerable systems, performing full audits to surface critical misconfigurations and implementing actionable remediation that strengthened overall posture.
Built a risk register for a financial institution and assessed major threats — including business email compromise, database compromise and supply-chain disruption — scoring likelihood and severity to produce a prioritization matrix aligned with NIST CSF.
© 2026 Moaaz Abouobaida — All rights reserved. Template by Marketify. Build v1.4 · 2026-06-22