Combining expertise in network security, incident response, and automation, Idris Paul Kwaya leverages tools like IDS/IPS, Suricata, Splunk, and Python to address advanced cyber threats.
Combining expertise in network security, incident response, and automation, Idris Paul Kwaya leverages tools like IDS/IPS, Suricata, Splunk, and Python to address advanced cyber threats.
Proven ability to respond rapidly, analyze incidents, and design resilient defenses.
Proven ability to respond rapidly, analyze incidents, and design resilient defenses.
Key Cybersecurity Projects & Labs
SOC Simulation: Built and managed a Security Operations Center environment, implementing automated threat detection and response with Splunk, Python, and Suricata. Reduced alert triage time by 35%.
Network Defense Lab: Configured inline IDS/IPS with Suricata and custom detection rules across multi-segmented lab networks. Demonstrated real-time packet capture and threat visualization.
Incident Response Playbooks: Designed and executed IR processes for simulated ransomware and phishing incidents. Developed scripts to automate containment and evidence collection steps, improving overall incident response time.
