Kianoush Habibi Sesari

- Led a team of seven cybersecurity professionals. - Conducted vulnerability assessments, prioritized remediation. - Managed firewalls, enforced security policies, ensured compliance. - Enhanced threat detection and risk management. - Reduced MTTR by 25% through 200+ annual incident resolutions. - Optimized Splunk, increasing data efficiency by 40%. - Developed 80+ Splunk alerts, achieving 95% incident detection. - Conducted threat hunting, mitigating 5 advanced threats. - Ensured 99.9% Splunk uptime.

- Designed and enhanced a Splunk platform, managing 600+ GB/day of logs across five companies. - Onboarded logs from 100+ sources, providing comprehensive security visibility. - Optimized performance, cutting analysis time by 30% for faster incident response. - Implemented data retention policies, reducing storage costs by 20% and ensuring compliance. - Improved threat detection and response by 25% across the holding. - Completed the project a month early with zero downtime, ensuring seamless operations.

• Security Analysis and Security Incidents Handling • Configuring and administrating different Splunk components such as search head cluster, indexer cluster, deployment server, deployer and cluster master • Managing data inputs, indexes and HFs/UFs for collecting logs from different sources, making them compatible with Splunk CIM, and analyzing and visualizing data in Splunk by creating drill-down dashboards, reports and alerts • Development of SOC Processes

- Taught "CIS Controls v8," "Blue Team Operations," and "Splunk Fundamentals" to 120+ students, achieving a 90% completion rate and 40% proficiency increase. - Served as Technical Editor for the Persian translation of "CIS Controls v8 Book," ensuring 100% accuracy and reaching 5,000+ Persian-speaking professionals, boosting cybersecurity awareness by 10%.

• Security Analysis and Security Incidents Handling • Configuring and administrating different Splunk Cluster components • Deploying and administrating Splunk ES, use cases development, configuring and tuning its data models, dashboards, asset and identity lookups • Managing data inputs, indexes and HFs/UFs for collecting logs from different sources, making them compatible with Splunk CIM, and analyzing and visualizing data in Splunk by creating drill-down dashboards, reports and alerts

• Implementing Business Continuity Management Project based on ISO22301 • Implementing Data Leakage Prevention (Mcafee DLP) Project • Network Security internal audit based on ISO27001 • Research security enhancements and make recommendations to management

• Design and Secure Implementation of Company's WAN Network • Implementation of Network Monitoring using Solar-winds solutions • Maintaining Firewalls, Routers and switches • Creating and maintaining documentation

• Design, Implementation and Maintenance of the telephony system (VOIP, Digital, Analogue, Dect Technology-AASTRA Brand) • Active participation in the data center space and facilities development project (Network Passive and Active, Electrical, Civil, Fire Fighting, ...) • Creating and maintaining documentation

• Hyper-V Virtualization Implementation • Windows Domain Controller Implementation • Kerio Control Solution (Firewalling and Internet Sharing) Implementation • Windows OS deployment • Providing remote tech support • User hardware/software/peripheral support • LAN troubleshooting and support

• Kerio Mail Server Solution Implementation • Microsoft ISA Server Implementation • Windows OS deployment • User hardware/software/peripheral support • LAN troubleshooting and support • Creating and maintaining documentation

• User hardware/software/peripheral support • LAN troubleshooting and support

Computer - Hardware