Mohammad A.
About Mohammad A.
Mohammad A. is a Security Engineer with extensive experience in systems administration and security across various organizations. He has held key roles at companies such as Merrill Lynch, SocialFlow, and Sourcegraph, where he has implemented security measures and managed access control systems.
Work at Sourcegraph
Currently, Mohammad A. serves as a Security Engineer at Sourcegraph, a role he has held since 2021. He operates remotely from Voorhees, New Jersey. In this position, he has developed a post-breach follow-up script using Golang and GraphQL, which facilitates systematic cleanup of privileged access. Additionally, he has led the exploration and implementation of a Permission Management tool, specifically deploying Entitle to manage access across internal applications.
Previous Employment History
Mohammad A. has an extensive employment history in the field of security and systems administration. He worked at Merrill Lynch as a Senior Specialist from 2006 to 2008 and as a Summer Analyst in 2005. He served as a Systems Administrator at New York Magazine from 2008 to 2010 and at Freelancers Union from 2010 to 2013. He then transitioned to OTG Management as a Systems Administrator/Engineer from 2013 to 2016, followed by a role as Lead System Administrator at SocialFlow from 2016 to 2018. He was a Senior Security Engineer at Zipari from 2020 to 2021, after initially serving as a Senior Security & DevOps Engineer from 2018 to 2020.
Education and Expertise
Mohammad A. holds a Master of Science degree in Telecommunication Networks and a Bachelor of Science degree in Computer Engineering, both from New York University - Polytechnic School of Engineering. His academic background has equipped him with a solid foundation in engineering principles, which he has applied throughout his career in various security and systems administration roles.
Security Assessments and Vulnerability Management
Throughout his career, Mohammad A. has conducted thorough assessments of vendor security postures by scrutinizing policies, procedures, and certifications. He has also performed in-depth analysis and remediation of security vulnerabilities within Google Cloud. His efforts have contributed to significant improvements in security measures, including the introduction of Multi-Factor Authentication (MFA) for executive accounts and the deployment of anti-phishing technology using Yubikeys.
Achievements in Security Certifications
Mohammad A. played a key role in achieving SOC 2 certifications by aiding in evidence collection and certification efforts. He has led the initiation and implementation of an access change-management system, demonstrating its feasibility and effectiveness. His contributions have significantly reduced data breach risks by minimizing exposure to administrative accounts.