Ali Golkar

Email: ali@golk.ar

Welcome to my website! I am a cyber security professional with 8 years of experience. I currently hold multiple IT certifications with a Masters degree in IT Management and Bachelors degree in IT with a concentration in cyber security. With a passion for excellence and an unwavering dedication to protecting organizations from cyber threats, I bring a unique blend of knowledge, expertise, and proven success to any team or project.

Experience  

Principal Information Security Officer

Capital One

Come back another time to learn more about my contributions at Capital One :)

May 2025 - Present

Senior Cyber Security Engineer

Mastercard

At Mastercard I worked on doing proof-of-concept testing, evaluations, and implementations of cutting edge security technologies to improve the security posture of the company. My work involved making implementation architectures and going through strict security evaluations to ensure my implementation was done in a secure manner and complied with internal and external requirements. The technologies I implemented improved Linux server security, enhanced existing DLP capabilities, improved cloud database monitoring, and made sure existing tools in the security stack prevented TTPs used by APT threat actors.

March 2022 - April 2025

IT Security Analyst

George Mason University

During my time as a security analyst at GMU I worked on setting up alerts and dashboards in Splunk to monitor the NIST 800-171 CUI research environment to ensure compliance. Additionally, I actively assisted fellow analysts in carrying out operational responsibilities, including prompt response to alerts from our EDR, IDS, and DNS security tools, as well as proactively hunting for emerging threats within our environment. Collaborating closely with system administrators, I diligently informed them about identified vulnerabilities, while also serving as the primary point of contact for IT security in various projects.

February 2019 - March 2022

IT Security Intern

George Mason University

While I was an IT security intern at GMU, I primarily assisted full time analysts with the vulnerability management process, investigated compromised accounts, and used Splunk to gather more information around alerts coming from our IDS tool. Additionally I worked on projects to help improve the security maturity of the network by looking at new technologies that could be implemented with little additional cost.

January 2017 - Feburary 2019

Enterprise IT Intern

BAE Systems

As a summer intern, I worked with various teams on a rotation to learn more about how an IT team functions in a corporate setting. During this internship I worked with the SOC to extract IoC's from open source intelligence reports and import them to the SIEM to enhance detection capabilities. I also helped the tech support team by preparing old machines for disposal.

May 2018 - August 2018

IT Intern

ScienceLogic

During my time at ScienceLogic I imaged machines and made AD accounts for new employees. I also worked closely with the help desk and worked on tickets as they came in for various IT issues. Additionally, with the help of the sysadmin team I was able to install ESXi on new servers and setup RAID as well as configure IP addresses.

May 2017 - August 2017

NOC Intern

Time Warner Cable (aquired by Charter Communications)

While I was an intern at TWC, I worked in the NOC surveillance and VoIP teams to create tickets based on issues and alerts that came in as well as create documentation on existing and new processes. Additionally, I worked closely with senior technicians to escalate complex or undocumented issues to they could be resolved.

June 2015 - August 2016

Education  

George Mason University

Master of Science
Applied Information Technology - IT Management
January 2020 - December 2021

George Mason University

Bachelor of Science
Information Technology - Information Security
August 2015 - May 2019

Monroe Technology Center

Computer Systems Technology
August 2014 - June 2015

Skills  

Technical Skills
  • SIEM tools (Splunk & ArcSight)
  • Proficiency in Windows 7/10/11 Operating Systems along with Microsoft Active Directory
  • Proficiency in the macOS and iOS Operating Systems along with Jamf MDM
  • Basic knowledge of Linux operating systems (Debian, Ubuntu, Kali)
  • Experience with NIST 800-53, NIST 800-171, NIST CSF, PCI-DSS, & CIS Critical Security controls
  • Experience with creating enterprise level documentation
  • Experience with industry leading EDR products (Crowdstrike, SentinelOne, Microsoft Defender for Endpoint)
  • Experience with Cisco Umbrella DNS Security
  • Experience with Palo Alto next-gen firewalls (NGFW) and FireEye Intrustion Detection System (IDS)
  • Proficiency in TCP/IP fundamentals and networking concepts such as microsegmentation, DNS, DHCP, VPN, SMTP, IMAP, UDP, TCP, HTTP/S, IDS, IPS, SSH, etc.
  • Experience with Governance, Risk, and Compliance (GRC) & Vulnerability Management (RSA Archer & Tenable Nessus)
  • Experience with evaluating new security technologies and conducting proof-of-concept (POC) testing
  • Experience with virtualization (VMware ESXi), containerization, & CI/CD
  • Experience with cloud computing architecture & infrastructure (AWS & Microsoft Azure)

Non-technical Skills
  • Effective verbal and written communication
  • Collaboration, cooperation, and the ability to work harmoniously with diverse team members towards common goals
  • Analytical thinking, creative problem-solving, and the ability to find innovative solutions to challenges
  • Flexibility in adjusting to new situations, embracing change, and being open to learning and growth
  • Efficiently managing time, prioritizing tasks, and meeting deadlines
  • The ability to analyze information, evaluate options, and make informed decisions
  • Providing exceptional service, addressing customer needs, and ensuring customer satisfaction

Conference Presentations & Talks  

DNS Security Considerations for Higher-Ed

Online - Virginia Alliance for Security Computing and Networking (VASCAN)
October 2021

Leveraging CUI to Shape University IT

James Madison University - Virginia Alliance for Security Computing and Networking (VASCAN)
October 2019

Certifications  

  • CISSP
  • SANS GIAC Certified Intrusion Analyst (GCIA)
  • SANS GIAC Security Essentials Certification (GSEC)
  • Microsoft Azure Fundamentals AZ-900
  • CompTIA CySA+
  • CompTIA Security+
  • CompTIA A+