s
sumaya_memon121

Sumaya Memon

@sumaya_memon121

Cyber Security Specialist

Pakistan
English
About me
My expertise spans threat hunting, penetration testing, incident response, digital forensics, and security engineering. I work with SIEM, EDR, Firewalls, PAM, and Zero Trust technologies to detect, investigate, and respond to threats. I conduct Active Directory and web application penetration testing, identify privilege escalation paths, assess ADCS misconfigurations, and emulate adversary techniques using MITRE ATT&CK. I build detections, develop IR playbooks, perform compromise assessments, and conduct memory, disk, email, and malware forensics to determine root cause and drive remediation.... Read more

Skills

s
sumaya_memon121
Sumaya Memon
Offline • 

See my services

Technical Support
I will siem use cases and sentinel monitoring

Work experience

Cyber Security Consultant

Consulting

Aug 2022 - Present3 yrs 11 mos

I am a cybersecurity professional with hands-on experience in Digital Forensics, Penetration Testing, AWS Security, Endpoint Security, Information Security, and Email Security. I have helped organizations identify security weaknesses, strengthen their defenses, and respond effectively to security incidents. My experience includes conducting web application and Active Directory penetration tests, identifying privilege escalation paths, assessing ADCS misconfigurations, and providing actionable remediation recommendations. In digital forensics and incident response, I have performed memory and disk analysis, malware triage, phishing investigations, email header analysis, and root-cause investigations to support containment and recovery efforts. I have secured AWS environments by implementing security monitoring, threat detection, IAM hardening, and security best practices across EC2 and cloud infrastructure. Additionally, I have worked with enterprise SIEM and EDR solutions to investigate threats, develop detections, improve endpoint visibility, and reduce security risks. My goal is to deliver practical, high-quality security services that help clients protect their systems, data, and business operations.