I’m a cybersecurity professional with hands-on experience across security operations, risk management, and enterprise IT environments. I hold CISSP and CISA certifications and have worked in roles supporting SOC operations, incident analysis, and secure enterprise platforms.
My background spans monitoring and investigating security events, working with SIEM and EDR tools, and aligning technical findings with established frameworks such as NIST and MITRE ATT&CK. I’ve supported both operational and governance-focused security efforts, giving me a practical understanding of how security controls function in real production environments—not just on paper.
Outside of my day-to-day role, I actively maintain a personal cybersecurity lab where I experiment with threat detection, network segmentation, logging, and defensive tooling. This environment allows me to continuously sharpen my skills, validate concepts hands-on, and stay current with evolving attack techniques and defensive strategies.
This site is where I share my learning, observations, and practical insights from the field—focused on cybersecurity fundamentals, threat analysis, and real-world security thinking. My goal is clarity, accuracy, and usefulness over buzzwords.
If you value security grounded in evidence, hands-on practice, and continuous learning, you’re in the right place.
Amir Ebrahimi 