Summary
Overview
Work History
Education
Skills
Certification
Practical Walkthrough
Challenges
Accomplishments
Software
Work Availability
Work Preference
Websites
Languages
Timeline
AdministrativeAssistant
Souhaieb Marzouk

Souhaieb Marzouk

Blue-Team Analyst
Tunis,NH

Summary

Cybersecurity Analyst with over 11 years of quality assurance expertise, specializing in threat hunting, incident response, and vulnerability management. Certified in Security+, Network+, and HTB CDSA, with hands-on experience in practical SOC and penetration testing labs, including TryHackMe SOC Levels 1/2 and Junior Penetration Tester. Proficient in leveraging analytical skills to track security events and identify vulnerabilities while employing ISTQB techniques for compliance and risk-based testing. A collaborative team player focused on stakeholder communication and reporting, dedicated to integrating cybersecurity frameworks with QA methodologies to enhance system security proactively.

Overview

14
14
years of professional experience
5
5
Certifications
4
4
Languages

Work History

Professional development

Career Break
01.2023 - Current
  • Focused on upskilling for cybersecurity roles through certifications, hands-on training, and personal growth.
  • Mastered core networking and security principles (firewalls, encryption, endpoint security).
  • Applied SIEM tools (ELK, Splunk), and incident response to analyze 100+ simulated security incidents.
  • Developed hands-on blue team skills (threat hunting, log analysis with the ELK stack).
  • Conducted SOC Analyst workflows (TryHackMe): triaged alerts, analyzed logs (Splunk), and mitigated simulated breaches using MITRE ATT&CK.
  • Performed penetration testing in lab environments: exploited OWASP Top 10 vulnerabilities (SQLi, XSS), and wrote Python/Bash scripts for automation.
  • Solved 50+ CTF challenges (HackTheBox, TryHackMe) to sharpen problem-solving skills, and analyzed real-world breaches (e.g., SolarWinds) to map attack vectors.
  • Analytical and Soft Skill Development.
  • Expanded repertoire of skills through continuous learning and professional development opportunities.

Senior QA Engineer (Contractor)

LibertyGlobal
01.2020 - 01.2023
  • Specialized in functional, management, and security validation, and vulnerability assessment for cable modem, optical fiber, VoIP, and Wi-Fi systems, collaborating with the IT team, developers, and stakeholders to mitigate risks in network infrastructure and software releases.
  • Conducted functional, system, regression, and security tests using Nmap, Wireshark, and tcpdump to identify vulnerabilities in RDK-B, cable modems, and optical fiber (GPON/XGSPON) environments.
  • Performed Wi-Fi security assessments (2.4 GHz/5 GHz/Wi-Fi 6) and VoIP vulnerability scans (Asterisk/Kamailio) to validate encryption and protocol robustness.
  • Executed automated security tests (CD-Router, Jenkins) to detect critical and high issues in CI/CD pipelines.
  • Across seven sequential six-month network security projects, I discovered and triaged over 300 vulnerabilities, including 30 critical and 80 high-severity issues, reducing the production escape rate to under 1%.
  • Documented vulnerability reports with triage-level severity for developer remediation, aligning with Agile/Scrum release cycles (biweekly sprints).
  • Reviewed product specifications to advocate for secure-by-design principles in functional and regression testing.
  • Led a team of eight engineers in optical fiber security testing (XGSPON), coordinating cross-project validation campaigns.
  • Translated client business goals into risk-aware testing strategies, ensuring compliance with DOCSIS and TR-069 standards.
  • Mentored developers on secure coding practices through bug triage sessions and documentation reviews.

Quality Assurance Engineer

Capgemini
01.2019 - 01.2020
  • Participated in on-site engagements at customer premises to support test automation initiatives.
  • Collaborated closely with client teams to promote best practices in mobile test automation, and conduct code reviews.
  • Focused on validating mobile applications across Android and iOS platforms, using automated testing tools and frameworks.
  • Built automated test scripts using Selenium, Cucumber, and Java to improve test coverage and detect security flaws.
  • Designed cross-browser compatibility tests with Appium (Chrome, Firefox) to validate UI integrity.
  • Executed tests across multiple Android and iOS versions to identify OS-specific vulnerabilities and ensure secure interoperability.
  • Optimized test cases to maximize success of manual software testing.
  • Met tight deadlines to satisfy client demands and project timelines.
  • Partnered with developers to diagnose and resolve defects (including security ones), leveraging root cause analysis (RCA) for risk mitigation.
  • Advised clients on mobile testing practices and risk reduction strategies through clear, compliance-aligned reporting.

Quality Assurance Engineer

SAGEMCOM
01.2014 - 01.2019
  • Designed and executed comprehensive test plans and test cases aligned with functional, design, and security specifications to ensure high-quality product releases.
  • Conducted validation across Linux, Windows, iOS, and Android to assess functionality, compatibility, and security posture.
  • Performed compliance testing for standards such as DLNA, OMCI, ITU-T G.9807.1, and validated ONU/OLT interoperability to meet regulatory requirements.
  • Executed security testing, including firewall validation, vulnerability scans, and routing table analysis, to identify and mitigate threats.
  • Conducted network testing across xDSL, fiber, and cable modem technologies for performance and security robustness.
  • Across seven sequential six-month network security projects, I discovered and triaged over 500 vulnerabilities, including 60 critical and 170 high-severity issues, reducing the production escape rate to under 1%.
  • Investigated and replicated customer-reported issues to identify root causes, and validate fixes.
  • Collaborated with cross-functional teams to define secure product requirements, and align with business goals.
  • Developed scalable frameworks using Robot Framework, Selenium, and Python for embedded/network systems.
  • Automated validation of routing, switching, VoIP, Wi-Fi, and security features (e.g., throughput, latency, jitter).
  • Automated capture and analysis of logs, crash reports, and protocol traces to file detailed bug reports.
  • Worked with developers and DevOps to align automation with real-world security deployment scenarios.
  • Partnered with clients (Vodafone, Telia, TalkTalk, BBbox3) to analyze and resolve platform-specific vulnerabilities and performance issues.
  • Bridge communication between development teams and clients for incident resolution.

Junior Software Test Engineer

Focus Corporation
01.2012 - 01.2014
  • Performed manual security testing of embedded software to validate functionality, and identify vulnerabilities.
  • Monitored embedded systems in production, detecting anomalies, and escalating security risks.
  • Managed testing tools and processes, ensuring compliance with security standards.
  • Conducted root cause analysis for defects, proposing fixes to mitigate risks.
  • Collaborated with engineering teams to prioritize and remediate defects.
  • Optimized testing workflows, improving efficiency in vulnerability detection.

Education

Master's Degree - Computer Science

ESPRIT University
Tunisia
06-2016

Skills

Vulnerability assessment

Certification

ISTQB Foundation Level (CTFL)

Practical Walkthrough

  • TryHackMe Junior Pentester (Practical Walkthrough) - 2023
  • Google Cybersecurity Professional - 2024
  • TryHackMe SOC Analyst Level 1 (Practical Walkthrough) - 2024
  • TryHackMe SOC Analyst Level 2 (Practical Walkthrough) - 2025

Challenges

Ranked in top 1% on TryHackMe platform, with overall 285 completed rooms (40+ CTF, and 240+ Walkthrough)

Accomplishments

  • Conduct on-site engagements with customers in many countries. Worked with their teams to find and fix critical environment specific defects.
  • Contributed quality insights in executive go/no-go meetings, influencing final product-release decisions.
  • Delivered QA support across 16 diverse projects, consistently meeting deadlines and adapting quickly to varying domains and technologies.
  • Led a 8 QA team on a new optical-fiber initiative, overseeing test strategy, execution, and successful delivery.
  • Onboarded and mentored new hires, delivering targeted training that accelerated their understanding of QA processes and tools.

Software

Splunk

ELK

QRadar

Wireshark

Nmap

Burp Suite

Metasploit

OWASP ZAP

Kali Linux

CrowdStrike

YARA

Sigma

Snort

Volatility

Autopsy

FTK

Zimmerman Tools

Sysinternal Suite

Jira

TheHive

Hashcat

John the Ripper

Maltego

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Work Preference

Work Type

Full TimeInternship

Work Location

On-SiteHybrid

Important To Me

Career advancementWork-life balanceCompany CultureFlexible work hoursPersonal development programsTeam Building / Company RetreatsPaid sick leavePaid time offHealthcare benefits

Languages

English
Upper intermediate (B2)
French
Upper intermediate (B2)
Arabic
Bilingual or Proficient (C2)
Spanish
Beginner (A1)

Timeline

HTB Certified Defensive Security Analyst (Practical)

08-2025

CompTIA Security+

02-2025

CompTIA Network+

12-2024

ISTQB Foundation Level - Agile Tester (CTFL-AT)

03-2024

ISTQB Foundation Level (CTFL)

02-2024

Professional development

Career Break
01.2023 - Current

Senior QA Engineer (Contractor)

LibertyGlobal
01.2020 - 01.2023

Quality Assurance Engineer

Capgemini
01.2019 - 01.2020

Quality Assurance Engineer

SAGEMCOM
01.2014 - 01.2019

Junior Software Test Engineer

Focus Corporation
01.2012 - 01.2014

Master's Degree - Computer Science

ESPRIT University

Similar Profiles

CREATE PROFILE
Souhaieb MarzoukBlue-Team Analyst