Hamza Bagazi

Security Delivery Associate Manager | DIFR Analyst

Leading cybersecurity operations with 5+ years of expertise in digital forensics, incident response, and threat hunting across government, aviation, finance, and chemical industries.

Discover My Expertise

About Me

Security Delivery Associate Manager & DIFR Expert

As a Security Delivery Associate Manager with over five years of experience, I specialize in Digital Forensics and Incident Response (DIFR) across diverse industries including government, aviation, finance, and chemicals.

My expertise spans forensic analysis, incident response leadership, and advanced threat detection, with a proven track record of reconstructing attack timelines and identifying compromised systems. I'm proficient with tools like Volatility, Autopsy, EnCase, and FTK.

I lead cross-functional teams to deliver cybersecurity projects with 95% on-time execution rate, while advancing organizational security posture through innovative MITRE ATT&CK aligned detection strategies and comprehensive incident response preparedness.

Professional Experience

Security Delivery Associate Manager | DIFR Analyst

Accenture
May 2025 – Present | Riyadh, Saudi Arabia

Leading Digital Forensics and Incident Response operations across multiple clients. Performing forensic analysis to reconstruct attack timelines, conducting threat hunting on EDR telemetry and SIEM logs, and managing cybersecurity projects with 95% on-time delivery rate across government, aviation, financial, and chemical industries.

Cybersecurity Consultant

Accenture
Nov 2023 – May 2025 | Riyadh, Saudi Arabia

Served as trusted advisor for cybersecurity solutions, established Detection Research Unit serving all Middle East clients, achieving 46% increase in threat detection coverage. Delivered 200+ tailored MITRE ATT&CK detection rules and reduced manual incident handling by 30% through automation implementation.

Cybersecurity Senior Analyst

Accenture
Jan 2022 – Nov 2023 | Riyadh, Saudi Arabia

Oversaw incident response and threat hunting operations for multiple clients. Integrated 50+ new log sources into SIEM, deployed EDR solutions for three enterprise environments, and fine-tuned 160+ detection rules to minimize false positives.

Cybersecurity Analyst

Saudi Basic Industries Corporation (SABIC)
Sep 2019 – Dec 2021 | Jubail, Saudi Arabia

Supported SOC operations in a 24/7 environment, investigated and resolved 500+ security incidents with 95% resolution rate. Enhanced SOC efficiency by 20% through optimized reporting templates and delivered training to 15+ analysts.

Areas of Expertise

Digital Forensics & Investigation

  • Forensic Analysis & Evidence Reconstruction
  • Attack Timeline Analysis
  • Memory & Network Artifacts Analysis
  • Compromised System Identification

Incident Response Leadership

  • Crisis Management & Containment
  • Cross-functional Team Leadership
  • Tabletop Exercise Design
  • Incident Response Playbooks

Threat Hunting & Analysis

  • EDR Telemetry Analysis
  • SIEM Log Investigation
  • Proactive Threat Detection
  • MITRE ATT&CK Framework

Forensic Tools & Technologies

  • DIFR: Volatility, Autopsy, EnCase, FTK
  • SIEM: Splunk, Microsoft Sentinel, Elastic
  • EDR: Solutions across multiple enterprises
  • Network Security: Multiple platform integration

Certifications & Education

GIAC Certified Forensic Analyst (GCFA)

SANS - March 2023

GIAC Certified Incident Handler (GCIH)

SANS - May 2022

Certified Ethical Hacker (CEH v11)

EC-Council - May 2021

CompTIA Security+

CompTIA - October 2020

CCNA CyberOps

Cisco - December 2019

B.S. Computer Science

University of Findlay - Cum Laude

Get In Touch

Let's Connect

Location

Riyadh, Saudi Arabia

Phone

+966542731330

Email

hamzabagzi@gmail.com

Send Message