imraneggy/imraneggy

GitHub: imraneggy/imraneggy

一位 CISM 认证安全工程师的作品集，展示自建的 AI 驱动渗透测试、威胁情报和 GRC 自动化平台，以零云成本实现企业级安全能力。

Stars: 0 | Forks: 0

[![Profile Views](https://komarev.com/ghpvc/?username=imraneggy&label=Profile+Views&color=1a5276&style=for-the-badge)](https://github.com/imraneggy) ![CISM](https://img.shields.io/badge/CISM-ISACA_2026-FFD700?style=for-the-badge&labelColor=0a2342) ![Experience](https://img.shields.io/badge/7%2B_Years-Enterprise_Security-2e86c1?style=for-the-badge&labelColor=0a2342) ![Location](https://img.shields.io/badge/Abu_Dhabi-UAE_🇦🇪-1a5276?style=for-the-badge&labelColor=0a2342) [![Open to Work](https://img.shields.io/badge/🌍_Open_to-International_Opportunities-00a86b?style=for-the-badge&labelColor=0a2342)](https://linkedin.com/in/imranbatcha)

## 🔐 关于我 **AI 安全工程师**，致力于构建生产级安全平台，消除高达六位数的供应商依赖。目前担任某**领先多元化企业集团**（阿布扎比）的**网络安全分析师**——负责在企业基础设施中架构 XDR、Zero Trust 和 SOAR。此前曾在某**大型金融服务公司**担任**网络安全经理**——主导 ISO 27001 认证、CNAPP 部署以及针对受监管金融服务领域 3,000+ 特权账户的 PAM 治理。我利用本地 LLM、边缘计算和 Agentic AI 编排技术，以**$0 云成本**构建 AI 驱动的网络安全平台。四个生产级平台。零供应商锁定。可量化的年度节省超过 $200K。 | | | |:---|:---| | **认证** | CISM · OCI Multicloud Architect · OCI Gen AI Professional · AZ-900 · CWHH · CCNA | | **教育背景** | 网络取证与信息安全硕士 | | **专业领域** | XDR · CNAPP · Zero Trust · CTEM · AI Red Teaming · DevSecOps · GRC Automation | | **框架** | NIST CSF 2.0 · ISO 27001:2022 · MITRE ATT&CK · CIS v8 · OWASP · UAE NESA · GDPR · NIS2 · DORA | ## 📊 影响力 — 可量化的成果

| 指标 | 结果 | 方式 | |:-------|:------:|:----| | **成本消除** | **$200K+/年** | 本地 LLM 渗透测试平台取代商业 VAPT 服务 | | **威胁检测** | **MTTD 缩短 45%** | Trend Micro Vision One XDR — 统一端点/网络/邮件/云遥测数据 | | **分析师效率** | **分流工作减少 50%** | SOAR Playbooks + MITRE ATT&CK 关联自动化 | | **云安全** | **CVE 减少 30%** | Palo Alto Prisma Cloud CNAPP — 50+ 条映射至 CIS v8 的 RQL 查询 | | **Zero Trust** | **违规事件减少 50%** | Azure AD / Entra ID Conditional Access + Arcon PAM + ZTNA | | **配置漂移** | **减少 70%** | 嵌入 CI/CD 流水线的 DevSecOps Shift-Left Security | | **攻击面** | **320+ 影子 IT 资产** | 攻击面管理 — 可见性提升 60% | | **端点加固** | **500+ 端点** | Vision One XDR + 误报减少 35% | | **网络控制** | **2,500+ 设备** | 跨企业的 FortiNAC 微分段 | | **荣誉** | **最佳表现者** | FY 2022–2023 — 网络安全与创新 |

## 🚀 旗舰 AI 安全项目 ### Autonomous 渗透测试平台 ``` ┌──────────────────────────────────────────────────────────────────────────┐ │ MISSION AI-orchestrated autonomous pentesting + governance reporting │ ├──────────────────────────────────────────────────────────────────────────┤ │ AI Core Local llama.cpp (Qwen2.5-3B GGUF) + OpenAI analysis │ │ Hardware NVIDIA Jetson Orin Nano 8GB — fully air-gapped, edge-native │ │ Tools Katana · Nikto · Nuclei · SQLMap · Nmap — AI-orchestrated │ │ Backend Python FastAPI · Uvicorn · SQLite · CPU/RAM-aware dispatch │ │ Frontend Vanilla HTML/CSS/JS · admin controls · bulk CSV/TXT import │ │ Reports Executive · Technical · Compliance (ISO 27001 · SOC 2 · │ │ NIST CSF · OWASP · CIS · UAE-IA · NESA) │ │ Security Role-based auth · step-up MFA · full audit trail export │ ├──────────────────────────────────────────────────────────────────────────┤ │ IMPACT $200K+/yr savings · 100% offline-capable · governance-ready │ └──────────────────────────────────────────────────────────────────────────┘ ``` ![Python](https://img.shields.io/badge/Python-3776AB?style=flat-square&logo=python&logoColor=white) ![FastAPI](https://img.shields.io/badge/FastAPI-009688?style=flat-square&logo=fastapi&logoColor=white) ![SQLite](https://img.shields.io/badge/SQLite-07405E?style=flat-square&logo=sqlite&logoColor=white) ![OpenAI](https://img.shields.io/badge/OpenAI-412991?style=flat-square&logo=openai&logoColor=white) ![llama.cpp](https://img.shields.io/badge/llama.cpp-Local_LLM-111111?style=flat-square) ![NVIDIA](https://img.shields.io/badge/NVIDIA_Jetson-76B900?style=flat-square&logo=nvidia&logoColor=white) ### AI 网络安全情报仪表板 ``` ┌──────────────────────────────────────────────────────────────────────────┐ │ MISSION AI-powered executive cyber intelligence + SOC operations │ ├──────────────────────────────────────────────────────────────────────────┤ │ AI Core Ollama local LLM (llama3.2:1b) + grounded prompt pipeline │ │ Agents Hybrid agentic orchestration — context/draft/finalize/ │ │ policy/verification with optional LangChain composition │ │ Frontend React 18 + GeoPulse Atlas (Leaflet) + KPI snapshots + │ │ 30-day AI intel chat + Spline 3D splash UX │ │ Backend Python Flask · SQLAlchemy · PostgreSQL · Redis │ │ Workflow Admin curation → AI draft → Telegram edit → publish │ │ Integr. MCP fetch proxy · n8n automation · Docker Compose · Nginx │ ├──────────────────────────────────────────────────────────────────────────┤ │ IMPACT $0 cloud cost · privacy-preserving · daily C-suite briefings│ └──────────────────────────────────────────────────────────────────────────┘ ``` ![React](https://img.shields.io/badge/React_18-20232A?style=flat-square&logo=react&logoColor=61DAFB) ![Flask](https://img.shields.io/badge/Flask-000000?style=flat-square&logo=flask&logoColor=white) ![PostgreSQL](https://img.shields.io/badge/PostgreSQL-316192?style=flat-square&logo=postgresql&logoColor=white) ![Redis](https://img.shields.io/badge/Redis-DC382D?style=flat-square&logo=redis&logoColor=white) ![Ollama](https://img.shields.io/badge/Ollama-Local_LLM-111111?style=flat-square) ![Docker](https://img.shields.io/badge/Docker-2CA5E0?style=flat-square&logo=docker&logoColor=white) ![Nginx](https://img.shields.io/badge/Nginx-009639?style=flat-square&logo=nginx&logoColor=white) ### ARIA — AI IT 策略管理器 ``` ┌──────────────────────────────────────────────────────────────────────────┐ │ MISSION Automated IT policy generation, review, and compliance │ │ governance for enterprise organisations │ ├──────────────────────────────────────────────────────────────────────────┤ │ AI Core Ollama local LLM + ChromaDB RAG (vector similarity search) │ │ Agents 3 specialised agents — ARIA Expert · Policy Writer · │ │ Compliance Auditor (LangChain multi-agent orchestration) │ │ Backend Python FastAPI · Uvicorn · ChromaDB · LangChain │ │ Frontend React 18 + real-time streaming chat + policy editor │ │ Coverage UAE NESA · ISO 27001:2022 · UAE PDPL · NIST CSF 2.0 · │ │ CIS v8 · GDPR · NIS2 · DORA · OWASP │ │ Output Policy drafts · compliance scorecards · gap analysis │ ├──────────────────────────────────────────────────────────────────────────┤ │ IMPACT Automated GRC governance · audit-ready output · $0 cost │ └──────────────────────────────────────────────────────────────────────────┘ ``` ![FastAPI](https://img.shields.io/badge/FastAPI-009688?style=flat-square&logo=fastapi&logoColor=white) ![React](https://img.shields.io/badge/React_18-20232A?style=flat-square&logo=react&logoColor=61DAFB) ![ChromaDB](https://img.shields.io/badge/ChromaDB-RAG-FF6F00?style=flat-square) ![LangChain](https://img.shields.io/badge/LangChain-Multi_Agent-1C3C3C?style=flat-square) ![Ollama](https://img.shields.io/badge/Ollama-Local_LLM-111111?style=flat-square) ### AI 求职申请机器人 ``` ┌──────────────────────────────────────────────────────────────────────────┐ │ MISSION Autonomous job search, matching, and application pipeline │ ├──────────────────────────────────────────────────────────────────────────┤ │ AI Core spaCy NLP + ReAct agent pipeline + LLM-assisted matching │ │ Automation Playwright browser automation — end-to-end job workflow │ │ Pipeline Job discovery → NLP parsing → skill matching → application │ ├──────────────────────────────────────────────────────────────────────────┤ │ IMPACT Automated high-volume job applications with AI precision │ └──────────────────────────────────────────────────────────────────────────┘ ``` ![Python](https://img.shields.io/badge/Python-3776AB?style=flat-square&logo=python&logoColor=white) ![spaCy](https://img.shields.io/badge/spaCy-NLP-09A3D5?style=flat-square) ![Playwright](https://img.shields.io/badge/Playwright-2EAD33?style=flat-square&logo=playwright&logoColor=white) ## 🛠️ 技术栈

网络安全平台

![Vision One XDR](https://img.shields.io/badge/Trend_Micro_Vision_One-XDR-D71921?style=for-the-badge&labelColor=0a2342) ![Prisma Cloud](https://img.shields.io/badge/Palo_Alto-Prisma_Cloud_CNAPP-2e86c1?style=for-the-badge&labelColor=0a2342) ![FortiNAC](https://img.shields.io/badge/FortiNAC-NAC-EE3124?style=for-the-badge&labelColor=0a2342) ![Arcon PAM](https://img.shields.io/badge/Arcon-PAM-1a5276?style=for-the-badge&labelColor=0a2342) ![Burp Suite](https://img.shields.io/badge/Burp_Suite-FF6633?style=for-the-badge&logo=burpsuite&logoColor=white&labelColor=0a2342) ![Nmap](https://img.shields.io/badge/Nmap-0E83CD?style=for-the-badge&labelColor=0a2342) ![Nuclei](https://img.shields.io/badge/Nuclei-3F86C4?style=for-the-badge&labelColor=0a2342) ![SQLMap](https://img.shields.io/badge/SQLMap-CC0000?style=for-the-badge&labelColor=0a2342)

AI / LLM / Agentic AI

![Claude AI](https://img.shields.io/badge/Claude_4.6-Anthropic-CC785C?style=for-the-badge&labelColor=0a2342) ![OpenAI](https://img.shields.io/badge/OpenAI_GPT-412991?style=for-the-badge&logo=openai&logoColor=white&labelColor=0a2342) ![Ollama](https://img.shields.io/badge/Ollama-Local_LLM-111111?style=for-the-badge&labelColor=0a2342) ![LangChain](https://img.shields.io/badge/LangChain-1C3C3C?style=for-the-badge&labelColor=0a2342) ![LangGraph](https://img.shields.io/badge/LangGraph-Agentic_AI-1C3C3C?style=for-the-badge&labelColor=0a2342) ![ChromaDB](https://img.shields.io/badge/ChromaDB-RAG-FF6F00?style=for-the-badge&labelColor=0a2342) ![spaCy](https://img.shields.io/badge/spaCy-NLP-09A3D5?style=for-the-badge&labelColor=0a2342) ![NVIDIA](https://img.shields.io/badge/NVIDIA_Jetson-Edge_AI-76B900?style=for-the-badge&logo=nvidia&logoColor=white&labelColor=0a2342)

云安全

![AWS](https://img.shields.io/badge/AWS-232F3E?style=for-the-badge&logo=amazonaws&logoColor=white) ![Azure](https://img.shields.io/badge/Azure-0078D4?style=for-the-badge&logo=microsoftazure&logoColor=white) ![OCI](https://img.shields.io/badge/Oracle_Cloud-F80000?style=for-the-badge&logo=oracle&logoColor=white) ![GCP](https://img.shields.io/badge/Google_Cloud-4285F4?style=for-the-badge&logo=googlecloud&logoColor=white)

开发与基础设施

![Python](https://img.shields.io/badge/Python-3776AB?style=for-the-badge&logo=python&logoColor=white) ![React](https://img.shields.io/badge/React_18-20232A?style=for-the-badge&logo=react&logoColor=61DAFB) ![Flask](https://img.shields.io/badge/Flask-000000?style=for-the-badge&logo=flask&logoColor=white) ![FastAPI](https://img.shields.io/badge/FastAPI-009688?style=for-the-badge&logo=fastapi&logoColor=white) ![Docker](https://img.shields.io/badge/Docker-2CA5E0?style=for-the-badge&logo=docker&logoColor=white) ![Kubernetes](https://img.shields.io/badge/Kubernetes-326CE5?style=for-the-badge&logo=kubernetes&logoColor=white) ![PostgreSQL](https://img.shields.io/badge/PostgreSQL-316192?style=for-the-badge&logo=postgresql&logoColor=white) ![Redis](https://img.shields.io/badge/Redis-DC382D?style=for-the-badge&logo=redis&logoColor=white) ![Terraform](https://img.shields.io/badge/Terraform-7B42BC?style=for-the-badge&logo=terraform&logoColor=white) ![n8n](https://img.shields.io/badge/n8n-EA4B71?style=for-the-badge&logo=n8n&logoColor=white) ![Nginx](https://img.shields.io/badge/Nginx-009639?style=for-the-badge&logo=nginx&logoColor=white)

合规与治理

![ISO 27001](https://img.shields.io/badgeISO_27001:2022-Audit_Trained-FFD700?style=for-the-badge&labelColor=0a2342) ![NIST](https://img.shields.io/badge/NIST_CSF_2.0-003087?style=for-the-badge&labelColor=0a2342) ![MITRE](https://img.shields.io/badge/MITRE_ATT&CK-E20000?style=for-the-badge&labelColor=0a2342) ![CIS](https://img.shields.io/badge/CIS_Controls_v8-003366?style=for-the-badge&labelColor=0a2342) ![OWASP](https://img.shields.io/badge/OWASP_Top_10-000000?style=for-the-badge&logo=owasp&logoColor=white) ![UAE NESA](https://img.shields.io/badge/UAE_NESA-00732F?style=for-the-badge&labelColor=0a2342) ![GDPR](https://img.shields.io/badge/GDPR-003399?style=for-the-badge&labelColor=0a2342) ![NIS2](https://img.shields.io/badge/NIS2_Directive-003399?style=for-the-badge&labelColor=0a2342) ![DORA](https://img.shields.io/badge/DORA-003399?style=for-the-badge&labelColor=0a2342)

## 🏅 认证 | | 认证 | 颁发机构 | 年份 | |:--|:-------------|:-------|:-----| | ⭐ | **CISM** — 注册信息安全管理师 | ISACA | 2026 | | ☁️ | **OCI Generative AI Professional** | Oracle | 2025 | | ☁️ | **OCI Multicloud Architect Professional** | Oracle | 2025 | | 🤖 | **OCI AI Foundations Associate** | Oracle | 2025 | | ☁️ | **OCI Foundations Associate** | Oracle | 2025 | | 🪟 | **AZ-900** — Azure 基础知识 | Microsoft | 2024 | | 🔓 | **CWHH** — 注册白帽黑客 (L1 & L2) | — | 2023 | | 🔓 | **C-WAST** — 注册 Web 应用安全测试员 | — | 2023 | | 📋 | **ISMS 受训审核员** — ISO/IEC 27001:2022 | — | 2022 | | 🌐 | **CCNA** — 思科认证网络工程师 | Cisco | 2021 | ## 📈 GitHub 统计数据

## 💼 职业经历 ### 网络安全分析师 — 领先多元化企业集团 *阿布扎比，阿联酋 · 2025 年 9 月 – 至今* - 架构了 **Trend Micro Vision One XDR** 部署，统一了端点、网络、邮件和云遥测数据——**MTTD 缩短 45%**，分析师分流效率提升 50% - 通过攻击面管理发现了 **320+ 影子 IT 资产**——可见性提升了 **60%** - 利用 Azure AD Conditional Access + Arcon PAM 构建了 **Zero Trust Network Access**——**非授权访问尝试减少 50%** - 加固了 **500+ 台服务器和端点**；优化检测规则，将误报率降低了 **35%** - 管理覆盖 **2,500+ 设备**的 **FortiNAC** 网络访问控制，实施微分段 - 在 NVIDIA Jetson Orin Nano 上构建了 **AI 自主渗透测试平台**——**年度成本规避 $200K+** - 以 $0 云成本交付了 **AI 网络安全智能仪表盘**——用于每日 C-level 简报 - 保持符合 **UAE-IA, NESA, SIA, DESC ISR 和 ADHICS** 框架的要求 ### 网络安全经理 — 大型金融服务公司 *印度 · 2021 年 6 月 – 2025 年 9 月* - 主导了跨 AWS、OCI、Kubernetes 的 **Palo Alto Prisma Cloud CNAPP** 部署——关键 CVE **减少了 30%** - 通过 XDR 和 SIEM 跨层关联，将多阶段攻击检测提升了 **300%** - 针对 ISO 27001 和 CIS Benchmark 自动化合规编写了 **50+ 条自定义 RQL 查询** - 在 Zero Trust 下管理混合云中 **3,000+ 特权账户**的 **Arcon PAM** - 领导了 **ISO 27001:2022 认证**——通过外部审计且零不符合项 - 将 **DevSecOps Shift-Left Security** 嵌入 CI/CD 流水线——**配置漂移减少 70%** - 通过季度 VAPT（Burp Suite, Nmap, Nuclei）实现了 **攻击面减少 20%** - 通过模拟钓鱼活动将钓鱼点击率降低了 **25%** - **FY 2022–2023 最佳表现者奖**——因网络安全创新而获奖 ## 🌍 积极寻求国际机会我开放以下地区的高级网络安全职位： | 地区 | 目标地点 | 监管合规 | |:-------|:-----------------|:---------------------| | 🇺🇸 **美国** | 纽约 · 旧金山 · 华盛顿特区 · 奥斯汀 · 西雅图 · 波士顿 | NIST 800-53 · CMMC 2.0 · FedRAMP · SOC 2 · CISA KEV | | 🇦🇺 **澳大利亚** | 悉尼 · 墨尔本 · 堪培拉 · 珀斯 | ASD Essential Eight · APRA CPS 234 · ACSC ISM | | 🇨🇦 **加拿大** | 多伦多 · 温哥华 · 渥太华 · 卡尔加里 | OSFI B-13 · PIPEDA · Bill C-26 · CCCS | | 🇸🇬 **新加坡** | 新加坡 | MAS TRM 2021 · PDPA · CSA Cyber Trust Mark | | 🇦🇪 **海合会 (GCC)** | 阿联酋 · 沙特阿拉伯 · 卡塔尔 · 科威特 | UAE NESA · NCA ECC · DESC ISR · ADHICS | | 🇪🇺 **欧洲** | 荷兰 · 德国 · 爱尔兰 · 英国 · 丹麦 | GDPR · NIS2 · DORA · EU AI Act | **可接受：** 现场办公 · 混合办公 · 搬迁 · 合同制 · 永久职位 ## 💡 理念

## 联系方式 [![LinkedIn](https://img.shields.io/badge/LinkedIn-imranbatcha-0077B5?style=for-the-badge&logo=linkedin&logoColor=white)](https://linkedin.com/in/imranbatcha) [![GitHub](https://img.shields.io/badge/GitHub-imraneggy-100000?style=for-the-badge&logo=github&logoColor=white)](https://github.com/imraneggy) [![Email](https://img.shields.io/badge/Email-imranbatchait@gmail.com-D14836?style=for-the-badge&logo=gmail&logoColor=white)](mailto:imranbatchait@gmail.com)
**CISM** · **网络取证与信息安全硕士** · **阿布扎比，阿联酋**

标签：AI渗透测试平台, AI风险缓解, AWS, Azure, CISA项目, CISM, CISM认证, CNAPP, CTEM, DPI, GCP, IPS, ISO 27001, JSONLines, SOAR, 云安全架构师, 人工智能安全, 企业安全, 合规性, 多云架构, 威胁检测与响应, 子域名突变, 安全合规, 安全架构, 安全编排自动化响应, 安全认证, 成本优化, 持续威胁暴露管理, 搜索引擎查询, 测试用例, 特征检测, 生产级AI平台, 网络代理, 网络安全, 网络安全专家, 网络资产管理, 请求拦截, 逆向工具, 金融安全, 阿布扎比, 阿联酋, 隐私保护, 零信任