Abdulazeem Damilola Sanuth
Abule Egba
Summary
Dynamic Senior Security Engineer with expertise at Soft Solutions Limited, specializing in endpoint security and incident response. Proven track record in leading cyber breach investigations and enhancing client security postures through tailored threat modeling and training. Adept at utilizing advanced tools for malware analysis and fostering strong client communication to drive security awareness.
Overview
6
6
years of professional experience
1
1
Certification
Work History
SENIOR SECURITY ENGINEER / PRODUCT SPECIALIST
SOFT SOLUTIONS LIMITED
06.2023 - Current
- Led investigations of large-scale, high-impact cyber breaches, managing the Incident Response workflow, including host triage, analysis, and coordination of activities to support effective response and remediation
- Collaborated with cross-functional security teams to investigate malicious activities and analyze threat/event data using advanced tools to identify indicators of compromise (IOCs) and implement timely mitigations
- Conducted in-depth analysis of malicious code, including de-obfuscation and reverse engineering, to understand execution flow, key components, and potential impact, enabling proper removal from infected systems
- Analyzed malicious artifacts such and phishing emails to uncover their capabilities, refine detection strategies, and enhance endpoint security policies for proactive defense
- Performed threat modeling, identified threat vectors, and developed tailored use cases for security monitoring, leveraging the MITRE ATT&CK Framework to detect adversarial Tactics, Techniques, and Procedures (TTPs) across client environments
- Delivered cybersecurity awareness training to clients, educating them on evolving threats and fostering a culture of security consciousness across organizations
- Specialized in the deployment, configuration, and optimization of endpoint security solutions, ensuring robust protection for client networks and seamless integration into existing security architectures
CYBERSECURITY ENGINEER
07.2022 - 06.2023
- Served as the Primary Engineer for the network security hardening project at a financial institution, successfully configuring and deploying Sophos XG firewalls across the network perimeter
- Additionally, implemented Sophos Intercept X across all endpoints and reconstructed the dormant Active Directory server, including configuring organizational units (OUs), shared folder data limits, screensavers, and domain user authentication
- Configured and administered Veritas DLO (Desktop and Laptop Option) for endpoint backup, enabling cloud backup capabilities across customers endpoints
- Conducted external and internal vulnerability assessments to identify and mitigate security risks, utilizing tools such as Rapid7 InsightVM and Nessus for comprehensive assessments
- Assisted in the development and enforcement of security policies, standards, and procedures, ensuring compliance with industry regulations
- Responded promptly to security incidents, conducted root cause analyses, and implemented effective remediation measures to prevent recurrence
- Configured and deployed McAfee Database Activity Monitoring (DAM) at United Capital, enabling comprehensive visibility and monitoring of databases across the network
- Managed and monitored security systems, including SIEM (Security Information and Event Management) tools, to ensure proactive threat detection and response
- Contributed to the development and delivery of security awareness training programs for employees and clients to enhance organizational security posture
- Collaborated with third-party vendors to evaluate, implement, and optimize security technologies, ensuring alignment with organizational needs
- Maintained current knowledge of emerging cybersecurity threats and trends, applying insights to strengthen security strategies
- Deployed, configured, and managed Trellix ePO (both on-premises and cloud) for clients
IT SUPPORT INTERN
YS CONSULTING
06.2019 - 08.2022
- Worked within a team to design, implement, troubleshoot and maintain network, hardware and software
- Provided technical support to customer facing network issues
- Performed regular Server Administration and Active directory user management
Education
B.sc - Microbiology
Olabisi Onabanjo University
Ogun State02.2022
WASSCE, GCSE and UTME certificates -
Starfield College
Fagba, Lagos State07.2014
Skills
- Endpoint Security
- McAfee (ENS & ATP)
- CrowdStrike (Falcon)
- Sophos (Intercept X)
- Data Security
- Incident response
- Client communication
- Regulatory compliance
- McAfee (DLPe)
- GTB DLP
- SOPHOS PERIPHERAL CONTROL
- Vulnerability Management
- Qualys
- Rapid7
- ManageEngine
- OpenVAS
- NESSUS
- SIEM Technologies
- McAfee ESM
- Wazuh
- Threat Hunting
- Zeek (Bro)
- RITA
- MVISION EDR
- Wireshark/tshark
- Tcpdump
- KALI LINUX
- NMAP
- Malware Analysis
- FLARE VM
- Cuckoo Sandbox
- Firewall
- FortiGate
- MySQL
- Cloud Computing
- AZURE
- Access control
- PAM
- Cyberark P
- Python
- Scripting
- Powershell
- Bash
- IP addressing and subnetting
Certification
- McAfee (Trellix) Certified Product Specialist: ePolicy Orchestrator (ePO)
- McAfee (Trellix) Certified Product Specialist: Endpoint Security (ENS)
- McAfee (Trellix) Certified Product Specialist: Data Loss Prevention (DLP)
- Sophos XG Firewall Certified Engineer
- Sophos Endpoint Certified Engineer
- Crowdstrike Falcon Certified Sales Engineer
- (ISC)2 Certificate in Cybersecurity (CC)
Recent Projects
- Trellix MVISION Deployment with ENS and Device Control for an SMB, Led the deployment and configuration of Trellix MVISION ePO to streamline centralized security management., Installed and deployed Endpoint Security (ENS) modules, including Threat Prevention, Web Control, Firewall, and Adaptive Threat Protection, across all managed endpoints., Configured and enforced Device Control policies to regulate the use of removable media and external devices, ensuring compliance with the organization's data security requirements., Conducted an initial health check and compatibility assessment to ensure seamless integration with existing IT infrastructure., Created and tested customized deployment tasks to automate the rollout of ENS and Device Control across the network., Provided detailed user training and knowledge transfer to the IT team, enabling efficient policy management and incident response., Monitored and fine-tuned policies post-deployment to optimize system performance and address endpoint-specific challenges.
- Incident Response to RansomWare Attack (SunCrypt) Commercial Bank, I was part of the team that reviewed IOCs to determine malware family/variant and attack scope., Triaged network traffic and event logs to discover root-cause and execution flow., Analyzed malware behaviour and operationalized response best practices.
- Sophos Endpoint and Firewall Deployment for an SMB, Deployed Sophos Central Endpoint Protection and configured tamper protection policies to prevent unauthorized changes to security settings on managed devices., Installed and configured Sophos AD Sync Installer to integrate Active Directory, enabling seamless synchronization of users and groups for policy assignment., Managed group-based endpoint policy configuration to ensure tailored security settings for different departments and user roles., Configured device control policies to restrict unauthorized use of USB drives and external storage devices on endpoints., Set up application whitelisting and blacklisting to block untrusted applications from running on endpoint devices., Enabled Real-Time Scanning and configured scheduled scans to detect and remediate threats proactively.
- Firewall Deployment and Configuration, Configured public and private IPs for interfaces Port A (WAN) and Port B (LAN) to establish network connectivity and routing., Created LAN-to-WAN firewall rules to enable internet access for internal users while restricting unauthorized traffic., Configured captive portal with Active Directory (AD) authentication to regulate and monitor internet access for users., Set up web filtering policies to block inappropriate or malicious websites based on predefined categories., Enabled DoS and DDoS Protection to safeguard the network against potential denial-of-service attacks., Configured NAT policies for port forwarding, allowing secure access to internal servers from external networks., Set up Site-to-Site VPN and Remote Access VPN for secure connectivity between remote branches and users., Configured Intrusion Prevention System (IPS) and Application Control policies to detect and block potential exploits and unauthorized applications., Monitored and optimized firewall logs and reports to identify security incidents and fine-tune policies., Enabled high-availability (HA) for the firewall, ensuring redundancy and minimizing downtime., Implemented email filtering policies to block spam, phishing attempts, and malicious attachments.
- Configuration of Trellix Drive Encryption on ePO for a Federal Government Institution, Configured Trellix ePolicy Orchestrator (ePO) to deploy and manage Drive Encryption policies across all managed endpoints within the institution., Conducted a pre-deployment assessment, including compatibility checks, system readiness verification, and hardware encryption capability validation., Installed and configured the Drive Encryption Agent and Management of Native Encryption (MNE) extension on ePO for centralized management., Created and applied encryption policies tailored to organizational requirements, including full-disk encryption and pre-boot authentication settings., Synchronized ePO with Active Directory (AD) to automate user and group assignments for encryption management., Enabled and configured single sign-on (SSO) to streamline user authentication post-boot, ensuring compliance with usability and security standards., Deployed encryption policies using client tasks across distributed endpoints, ensuring minimal disruption to end users., Configured encryption key management settings for secure storage and recovery of encryption keys via ePO., Tested and validated the recovery mechanisms, including challenge-response recovery and self-recovery options, to ensure business continuity., Monitored deployment status and encryption progress through dashboard reports and client event logs on ePO., Troubleshot and resolved encryption-related issues such as pre-boot authentication failures and encryption process interruptions on affected systems., Implemented user-based policies for specific departments, balancing strict encryption protocols with operational needs., Conducted a post-deployment health check to verify that all endpoints were fully encrypted and compliant with the institution's security requirements., Provided training and documentation to IT staff on managing encryption policies, recovery procedures, and monitoring tools., Ensured adherence to government security and compliance standards, including data-at-rest protection policies.
Affiliations
- Reading science fiction books
- listening to podcasts
- Watching football
- Volunteering
Languages
English
First Language
French
Beginner
A1
References
References available upon request.
Timeline
SENIOR SECURITY ENGINEER / PRODUCT SPECIALIST
SOFT SOLUTIONS LIMITED
06.2023 - Current
CYBERSECURITY ENGINEER
07.2022 - 06.2023
IT SUPPORT INTERN
YS CONSULTING
06.2019 - 08.2022
B.sc - Microbiology
Olabisi Onabanjo University
WASSCE, GCSE and UTME certificates -
Starfield College
Similar Profiles
David NwokoroDavid Nwokoro
Cybersecurity Analyst at Sahara Group LimitedCybersecurity Analyst at Sahara Group Limited
Deepika ChennuriDeepika Chennuri
QA Analyst at Stic Soft e-solutions private LimitedQA Analyst at Stic Soft e-solutions private Limited
A.Prabha ArjunanA.Prabha Arjunan
Senior Software Developer at KnackForge Soft Solutions Private LimitedSenior Software Developer at KnackForge Soft Solutions Private Limited