Badges

135 Points
9 Years
Top 10

User Activity

About 5 years ago
Answered a question: Soc vs CSIRT !?
CERt IS Subdomain of SOC
About 5 years ago
Answered a question: What is Security Information Event Management vs Next G SIEM!?
Please share Your Experiance
About 5 years ago
Commented on Vulnerability management is the most valuable feature but it would be good if they could provide an internal computing appliance.
Thanks 4 share
About 5 years ago
Commented on Easy to deploy and manage but reporting and dashboards have room for improvement
Nice
About 5 years ago
Commented on Patch supersedence has been an invaluable feature
Publish!? Or
Over 5 years ago
Contributed a review of Barracuda Web Application Firewall: Strong updating features but the tech support is weak
Almost 6 years ago
Commented on Enables Centralization And Correlation Of Data That Was Unattainable With Other Solutions
According to Splunk documentation posted here, Splunk offers reporting capabilities for various security compliance initiatives, including the following Federal Information Security Management Act (FISMA) of 2014 Gramm-Leach-Bliley Act Health Insurance Portability and…
Almost 6 years ago
Commented on Allows us to monitor access and pull cyber reports quickly. No more searching through logs on each server.
SolarWinds Log and Event Manager offers the core SIEM capabilities supported by nearly every SIEM, and in addition, the product also supports enhanced file and registry integrity monitoring to generate additional security log entries for endpoints. No other advanced security…
Over 6 years ago
Answered a question: When evaluating Network Performance Monitoring, what aspect do you think is the most important to look for?
- Highly detailed stats collection without roll-ups - Out-of-the-box Monitoring and alerting - Product has to be multi-user and multi-vendor - As little system maintenance as possible - Reliability and Scalability - Customization - Fast development cycle - Good…
Over 6 years ago
Commented on How to Choose an Endpoint Protection Solution
First, what is required Then select the product
Over 6 years ago
Commented on The ability to see logs and correlate them using Splunk has greatly improved our organization's functionality with auditing and troubleshooting.
splunk is user friendly-Better than other similar products
Over 6 years ago
Answered a question: Best solutions for breach detection and forensics.
RSA NetWitness® Suite
Over 6 years ago
Answered a question: Best solutions for breach detection and forensics.
https://www.fireeye.com/products/forensics-investigation.html
Over 6 years ago
Answered a question: Between AlienVault and LogRhythm, which solution is suitable for Banks in Gulf Region
if ur forced Between Alien Vault and LogRhythm,alien vault is the better
Over 6 years ago
Answered a question: Between AlienVault and LogRhythm, which solution is suitable for Banks in Gulf Region
Alien Vault-2 be sure
Almost 7 years ago
Commented on Enables Centralization And Correlation Of Data That Was Unattainable With Other Solutions
Yes Splunk is still a top dog in SIEMs-exactly
Almost 7 years ago
Commented on New SIEM Reviews 2017
ye :LogRhythm is missing in the list
Almost 7 years ago
Commented on New Network Monitoring Software Reviews 2017
SolarWinds NPM , zabix is good
Almost 7 years ago
Commented on It allows us to store raw data and use it repeatedly for different domains.
Splunk's schema-on-read technology is one of the most valuable characteristics of this solution. It allows us to store raw data and use it repeatedly for different domains. You don't need to prepare the data upfront.
Almost 7 years ago
Commented on The Alerting Module provides real-time event processing language on the logs/packets stream.
The only thing I advise others is to spend enough time for fine-tuning and the initial rule development. You should also develop a plan for the ongoing development and fine-tuning, as found in all the other SIEM solutions.
Almost 7 years ago
Commented on We can investigate incidents based on logs and raw packets.
Built-in Incident Management module for small security/SOC teams
Almost 7 years ago
Commented on Ingests machine data and helps to analyze and visualize it.
Cost and Licensing Advice: You will eat up whatever you purchase quickly. The level of insights that Splunk empowers is addictive
Almost 7 years ago
Commented on New SIEM Reviews -- What Users Say in Q2 2017
arcsight - splunk - rsa
Almost 7 years ago
Commented on Provides visibility into business metrics and insights that deliver value.
If there's gold in log files, Splunk will help you to find it. Splunk bridges the gap between simple log management and security information and event management products from vendors such as ArcSight, RSA, Q1 Labs and Symantec. Splunk lets you gather log data from…
Almost 7 years ago
Commented on Provides the ability to diagnose problems in production and non-production.
exactly :I have found that the use of Splunk has saved many hours of time and, as said in the review the ROI is amazing with problem solving much faster than I've seen from other searches.
Almost 7 years ago
Commented on Correlates data across our global enterprise and integrates third-party solutions.
Stability Issues: The stability is good.
About 7 years ago
Commented on The feature list allows us to input data dynamically to list it as a rule action.
thnaks 4 share it :D
Over 7 years ago
Commented on Innovative tool but it needs to be improved for day to day use.
thank you for a good review.
Over 7 years ago
Commented on Our company uses a virtual infrastructure. Implementing this product supplements the protection of our infrastructure.
I think Fortinet has a balanced offering of prices and licenses. %50 %50
Over 7 years ago
Commented on We run this product on our network 24/7 and it has helped identify important events.
thats right
Over 7 years ago
Commented on We run this product on our network 24/7 and it has helped identify important events.
Excellent! Every time I have had an issue, the customer and technical support has been outstanding : exactly
Over 8 years ago
Commented on It provides reports on the Cardholder Data Environment at 95% effectiveness, but to operate at the 99.99% level, it needs to have uninterrupted reporting host connections to the Log Mediator.
like :dude - Speciallyyyy LogRhythm Change Management
Almost 9 years ago
Commented on Qradar vs. ArcSight
complete review
About 9 years ago
Commented on It could be easier to set up but it has an innovative way of collecting and presenting data
Splunk is the best - SIEM

Projects

Over 6 years ago
Consultant (Network & Infrastructure -Security) 4 Critical Systems
Consultant (Network & Infrastructure -Security) 4 Critical Systems and Electronics iran
About 5 years ago
Consultant as Project Manager (Security , Infrastructure) 4 Saei Co
Consultant as Project Manager (Security , Infrastructure) 4 Saei Tehran Co Jan 2018 – Present Project descriptionConsuler,Design,Imp,Operation,Support,Training :Infra, / Sec, Fw Vmware San R-S Ddos Va Pt Patch Mgmt BCP Anti Malware IDP IPs,IDs Monitoring Hardening log…
About 5 years ago
Teaching and Training Custom Courses (Cyber Security) 4 Cinnagen
Teaching and Training Custom Courses (Cyber Security) 4 Cinnagen
About 5 years ago
Projects Project nameCyber Security Consultant by ( Offensive
Project Manager as Director Security , Network Infrastructure 4 AbadanPng Jun 2018 – Jun 2019 Project description:Infrastructure , Security Developing+Security , Infrastructure FineTune+Enterprise ArchInfra: Hashing Dns - dis - server - NAS - redundant - HAStorage - BCP -…
Currently Researching
Experience
Following

Reviews

Barracuda Web Application Firewall Logo
Over 5 years ago
Barracuda Web Application Firewall
Strong updating features but the tech support is weak

Answers

About 5 years ago
Security Information and Event Management (SIEM)
Soc vs CSIRT !?
About 5 years ago
Security Information and Event Management (SIEM)
What is Security Information Event Management vs Next G SIEM!?
Over 6 years ago
Network Monitoring Software
When evaluating Network Performance Monitoring, what aspect do you think is the most important to look for?
Over 6 years ago
Intrusion Detection and Prevention Software (IDPS)
Best solutions for breach detection and forensics.
Over 6 years ago
Intrusion Detection and Prevention Software (IDPS)
Best solutions for breach detection and forensics.
Over 6 years ago
Security Information and Event Management (SIEM)
Between AlienVault and LogRhythm, which solution is suitable for Banks in Gulf Region
Over 6 years ago
Security Information and Event Management (SIEM)
Between AlienVault and LogRhythm, which solution is suitable for Banks in Gulf Region

Comments

About 5 years ago
IT Asset Management
Vulnerability management is the most valuable feature but it would be good if they could provide an internal computing appliance.
About 5 years ago
IT Asset Management
Easy to deploy and manage but reporting and dashboards have room for improvement
About 5 years ago
IT Asset Management
Patch supersedence has been an invaluable feature
Almost 6 years ago
Log Management
Enables Centralization And Correlation Of Data That Was Unattainable With Other Solutions
Almost 6 years ago
Security Information and Event Management (SIEM)
Allows us to monitor access and pull cyber reports quickly. No more searching through logs on each server.
Over 6 years ago
Endpoint Protection Platform (EPP)
How to Choose an Endpoint Protection Solution
Over 6 years ago
Log Management
The ability to see logs and correlate them using Splunk has greatly improved our organization's functionality with auditing and troubleshooting.
Almost 7 years ago
Log Management
Enables Centralization And Correlation Of Data That Was Unattainable With Other Solutions
Almost 7 years ago
Log Management
New SIEM Reviews 2017
Almost 7 years ago
Network Monitoring Software
New Network Monitoring Software Reviews 2017
Almost 7 years ago
Log Management
It allows us to store raw data and use it repeatedly for different domains.
Almost 7 years ago
Log Management
The Alerting Module provides real-time event processing language on the logs/packets stream.
Almost 7 years ago
Log Management
We can investigate incidents based on logs and raw packets.
Almost 7 years ago
Log Management
Ingests machine data and helps to analyze and visualize it.
Almost 7 years ago
Security Information and Event Management (SIEM)
New SIEM Reviews -- What Users Say in Q2 2017
Almost 7 years ago
Log Management
Provides visibility into business metrics and insights that deliver value.
Almost 7 years ago
Log Management
Provides the ability to diagnose problems in production and non-production.
Almost 7 years ago
Log Management
Correlates data across our global enterprise and integrates third-party solutions.
About 7 years ago
Security Information and Event Management (SIEM)
The feature list allows us to input data dynamically to list it as a rule action.
Over 7 years ago
Log Management
Innovative tool but it needs to be improved for day to day use.
Over 7 years ago
Log Management
Our company uses a virtual infrastructure. Implementing this product supplements the protection of our infrastructure.
Over 7 years ago
Log Management
We run this product on our network 24/7 and it has helped identify important events.
Over 7 years ago
Log Management
We run this product on our network 24/7 and it has helped identify important events.
Over 8 years ago
Log Management
It provides reports on the Cardholder Data Environment at 95% effectiveness, but to operate at the 99.99% level, it needs to have uninterrupted reporting host connections to the Log Mediator.
Almost 9 years ago
Log Management
Qradar vs. ArcSight
About 9 years ago
Log Management
It could be easier to set up but it has an innovative way of collecting and presenting data

About me

I have worked in the ITS(Security)/Cyber Security Section 4 more than 15 years
Graduate student /MBA : Master of e-Business Administration(E.Commerce)2012-2014 With IMI - Industrial Management Institute,Cavendish College -
( Research & Knowledge Base )
http://imi.ir

Bachelor of Computer science/Information Technology (CNS:Comuter Network Systems)
( Research & Knowledge Base )
http://www.viu.edu/

My Certificate:
Microsoft Certificate System Administrator 2003-MCSA2003Security
Microsoft Certificate ُSystem Engineer 2003-MCSE2003Security
Windows Server 2008 Network Infrastructure Configuration
Windows Server 2008 Application Infrastructure Configuration
Windows Server 2008 Active Directory Configuration
Microsoft Certificate Professional 1,2
MCTS , 7
MCITP
MCITP Server Administrator
MCITP Enterprise Administrator
MCSA2008,2012,2016
MCSE 2012,2016 Server Infrastructure
Comptia A+Network+Security+ IT Operation,CASP
MCSE 2012,2016 Cloud & Security - Private
MCSE MSG 2012,2016
TCCSP1 - (TIC CIU Cyber Security Professional)
TCCSP2 - (TIC CIU Cloud Security Professional)
TCNSP - (TIC CIU Network Security Professional)
TCSMP(TIC CIU Security Management Professional)
ISO27001:2007-2013 (ISMS) Implementation/QMS Italia , Audit Internal, Lead Auditor From Acs Usa
SANS Bootcamp
CCNA Security
ICSI | Certified Network Security Specialist (CNSS)
Certified Information Security Manager (CISM)
ISACA Bootcamp
http://about.me/Alirezaghahrood
Follow Me on Linkedin , Twitter , Aparat , Youtube
And Search On Google

Certifications
  • Security +
  • A+
  • Network +
  • Microsoft Certified Professional_MCP 1.0 -- Certified Professional
  • Microsoft Certified Systems Administrator (MCSA) 2003
  • Microsoft Certified Systems Administrator (MCSA) 2003 \ Security
  • Microsoft Certified Systems Engineer (MCSE) 2003
  • Microsoft Certified Systems Engineer (MCSE) 2003 \ Security
  • MCTS=Windows 7
  • Configuring
  • MCTS:Windows Server 2008 Active Directory
  • Configuring
  • MCTS:Windows Server 2008 Network Infrastructure
  • Configuring
  • MCTS:Windows Server 2008 Applications Infrastructure
  • Configuring
  • Pro: Windows Server 2008
  • Server Administrator
  • Pro: Windows Server 2008
  • Enterprise Administrator
  • Microsoft Certified Solutions Associate (MCSA) 2008
  • Microsoft Certified Solutions Associate (MCSA) 2012
  • MCTS:Installing and Configuring Windows Server 2012
  • MCTS:Administering Windows Server 2012
  • MCTS:Configuring Advanced Windows Server 2012 Services
  • MCTS:Designing and Implementing a Server Infrastructure
  • MCTS:Implementing an Advanced Server Infrastructure
  • Microsoft Certified Professional_MCP 2.0 -- Certified Professional
  • Microsoft Certified Solutions Expert (MCSE) 2012 - Server Infrastructure
  • Microsoft Certified Solutions Expert (MCSE) 2012 Cloud & Security - Private
  • Microsoft Certified Solutions Expert (MCSE) 2012 - MSG
  • Things That Can Undermine Your Security Program( Cyber Security )
  • Things That Can Undermine Your Security Program ( Security Intelligence )
  • Things That Can Undermine Your Security Program ( Security Strategy )
  • Things That Can Undermine Your Security Program ( Critical Controls )
  • Things That Can Undermine Your Security Program ( Next Generation Fw )
  • Things That Can Undermine Your Security Program ( CISO )
  • Things That Can Undermine Your Security Program ( SOC V )
  • Things That Can Undermine Your Security Program( Security Monitoring )
  • CompTIA Advanced Security Practitioner (CASP)
  • Network Security Professional– TCNSP
  • Cloud Security Professional 1-TCCSP1
  • Cyber Security Professional 2– TCCSP2
  • Security Management Professional – TCSMP
  • Personal Branding
  • Information Security Management System - ISMS ( ISO / 27001)
  • MS: Windows 7
  • Configuring
  • CompTIA Security ce
  • CCNA Security - Implementing Cisco Network Security (IINS)
  • CISM-ISACA
Employers

Private Co
Execution of Imam khomeini's order (EIKO)
Afranet
AmnPardaz
SARV
Douran
IR National SOC : Security Operation Center
RAYA VND
Rayan Andishan E Faraz
NIOCPR
Parsian HP

Education

Singapore | VUE & IS2 Professional & SANS |
Cavendish College & IMI
UAE| Prometric & Internet City College |
MIT
UAE| VUE & Comptia College |
UAE| Prometric & Microsoft College |
Sama 03

Interesting Projects and Accomplishments

Over 6 years ago
Consultant (Network & Infrastructure -Security) 4 Critical Systems
About 5 years ago
Consultant as Project Manager (Security , Infrastructure) 4 Saei Co
About 5 years ago
Teaching and Training Custom Courses (Cyber Security) 4 Cinnagen
About 5 years ago
Projects Project nameCyber Security Consultant by ( Offensive