I'm a Network Security Engineer with 4+ years of experience securing enterprise networks and cloud environments from on-premises firewalls protecting government and financial institutions to modern cloud infrastructure on AWS. My foundation is in network security. I hold NSE7, NSE4, and CCNA certifications, and I've spent years deep in FortiGate, FortiMail, and Web Application Firewall deployments, designing, hardening, and troubleshooting security infrastructure for clients across banking, government, and aviation sectors. At USETECH, I diagnosed and resolved issues across 50+ firewalls and network devices, cutting downtime by 60%, and led a FortiMail migration that eliminated downtime entirely. I've designed and deployed 5+ secure VPN solutions supporting site-to-site and remote-access connectivity for businesses that depend on it every day. Today, I split my time between two roles: as the sole IT and security point of contact at a law firm in Riyadh, where I manage Active Directory, Microsoft 365 security, and remote access infrastructure end-to-end; and as a freelance network and firewall consultant, designing FortiGate deployments and VPN architecture for SMB clients who need enterprise-grade security without an in-house team. Over the past two years, I've expanded deliberately into the cloud. I earned my AWS Solutions Architect Associate and most recently my AWS CloudOps Engineer Associate certification, and rather than stopping at the certificate, I've built hands-on projects to prove the skills out: deploying serverless architectures with Lambda, API Gateway, and DynamoDB; automating infrastructure with CloudFormation and Terraform; securing web applications with AWS WAF and bot control; and exploring generative AI workflows through Amazon Bedrock and SageMaker. This website itself is hosted on S3 behind CloudFront. My first production AWS deployment, and proof I practice what I build. What drives me is the overlap between security and cloud: the idea that as more infrastructure moves to the cloud, the discipline of hardening, segmenting, and monitoring it matters more, not less. I'm not interested in security as a checkbox; I care about systems that actually hold up under pressure, and about building the kind of habits, patching consistently, documenting decisions, monitoring proactively. That prevent the 2AM incident in the first place. I'm based in Riyadh and open to opportunities across the GCC region. Always learning, always building something hands-on to back up what's on paper.