Curriculum Vitae

About

Qais is an offensive security professional focused on penetration testing, red teaming, application and cloud security. He has secured organizations in the aerospace, automotive, healthcare, technology and government sectors.

Experience

Penetration Tester — Municipality of Oslo
Jan 2024 - Dec 2024
• Performed security testing on web and infrastructure assets.
• Delivered reports aligned with OWASP and CVSS standards.
• Planned, executed and reported phishing simulations.
• Analyzed security logs with Microsoft Sentinel using KQL.
• Presented findings to clients and assisted remediation efforts.

Photographer — Independent
• Completed several projects over the years, specializing in architecture, automotive and event photography.

Certifications

Offsec Certified Professional (OSCP) - In Progress
Certified Professional Penetration Tester (eCPPT)
Web Application Penetration Tester (eWPT)

Courses

Breaching the Cloud
The Bug Hunter's Methodology
NSM Grunnprinsipper for IKT-sikkerhet
The Web Application Hacker's Handbook
Foundations of Operationalizing MITRE ATT&CK
PEN-200: Penetration Testing Certification with Kali Linux

Recognitions

Acknowledged for responsible disclosure and security research contributions by:

Skills

Penetration Testing (Infrastructure, Application, Cloud)
Phishing (Microsoft Attack Simulation, GoPhish)
SIEM (Microsoft Defender for Endpoint, Splunk)
Automation (Bash, Python, PowerShell)
OSINT & Reconnaissance
Physical Security (RFID, Lock Picking, Badge Cloning)

Languages

Norwegian
English
Arabic
Russian

Interests

Action sports including motorbiking, martial arts, skateboarding, snowboarding, mountaineering, climbing, skydiving and tunnel flying. These activities require focus, precision and discipline.