Md Towhidul Ahmed

Blue Team Analyst |

Alert triage · log correlation · incident escalation · malware & network analysis

Cologne, Germany
Get In Touch View Writeups

01. About Me

SOC / Blue Team analyst focused on detection, triage, and incident response.

Recent M.Sc. graduate (IT & Security) with hands-on experience in SIEM alert triage, log correlation, threat hunting, and basic malware analysis.

Interested in SOC Analyst (L1/L2) roles where I can own alerts end-to-end, improve detection quality, and contribute to response playbooks.

Top 5%
TryHackMe Global
90+
Hands-on SOC Labs
4
Security Writeups

02. Background Snapshot

April 2022 – September 2025

MSc in Electrical Engineering (IT & Security)

University of Rostock, Germany

Focus: IT & Security · Thesis: OT firmware vulnerability detection (reverse engineering)

February 2019 – February 2022

Technical Support Engineer (Industrial Systems)

Jeanologia Bangladesh LTD

Troubleshot industrial machinery (hardware + software), supported installs and preventive maintenance, delivered IT/user training, and tracked resolutions via CRM tickets to minimize downtime.

Full professional history available on LinkedIn

03. Writeups & Case Studies

Automated Firmware Analysis of OT Devices

YARA signatures · Ghidra RE · CVE-2015-4590 · STM32 · CFG isomorphism

Master's Thesis

Forwarding Attack on Mechatronic Locking System

ASSA ABLOY CLIQ · 1-Wire protocol · Signal capture · Cryptography

Embedded Security

Keygen for Serial Validation Binary (x86-64)

Ghidra analysis · Algorithm recovery · Stripped ELF · C keygen

Reverse Engineering

MITRE ATT&CK Mapping of PCAP Analysis

Wireshark · Phishing → C2 chain · TLS SNI · MITRE ATT&CK techniques

Network Forensics

04. Skills & Expertise

SOC & Blue Team

SplunkELK StackWazuhMISPOpenCTIMITRE ATT&CKNessus

Malware Analysis

GhidraSandboxesYARA RulesWindows InternalsARM Assembly

Network Analysis

WiresharkZeekSnortNmap

OT / Embedded

Logic AnalyzerOscilloscope1-WireST-LinkOpenOCD

Programming

PythonCBash

Tools & Platforms

Git / GitHubLinuxWindowsVirtualBoxAzure

05. Certifications & Achievements

TryHackMe — Top 5% Worldwide

TryHackMe · December 2025

Top Performer

Vulnerability Management with Nessus

LinkedIn Learning

Azure: VM & Web Server Deployment

Coursera Project

Security Testing: Nmap Scanning

LinkedIn Learning

Machine Learning with Python

Coursera

Neural Networks and Deep Learning

Coursera

View All Certificates

06. Get In Touch

Let's Connect

I'm currently looking for a Junior SOC Analyst / Blue Team role (L1/L2). I enjoy alert triage, log correlation, and writing clear investigation notes that help teams respond faster.

Location

Cologne, Germany

Availability

Open to opportunities

Connect on LinkedIn View GitHub Profile TryHackMe Profile