About Experience Projects Skills Awards Certs Blog Contact
Security Engineer · Nairobi, Kenya

HAMZAPARVEZ

Identity Security  ·  Penetration Testing  ·  CTFs & Competition

I approach security from both the builder's and the adversary's perspective — ensuring every defence is grounded in real exploit behaviour, not theory alone.

Get in touch View awards
IAM · PAM · SSO · MFA Penetration Testing AD · OSINT · Crypto East Africa & Beyond
01

About

I am a Security Engineer specialising in identity security spanning IAM, PAM, SSO, and MFA among others, as well as vulnerability assessment and penetration testing. My work focuses on strengthening systems by understanding how access is granted, how controls can fail, and where security measures need reinforcing.

I approach every engagement from both the builder's and the adversary's perspective. Hands-on CTF problem-solving sharpens my ability to analyse systems, trace attack paths, and develop practical mitigation strategies, keeping security decisions grounded in real exploit behaviour rather than theory alone.

Beyond my day-to-day engineering work, I'm deeply involved in the East African security community — organising HTB meetups, speaking at events, and authoring challenges that help sharpen the next generation of professionals across Kenya, Uganda, and internationally.

I value clarity, reliability, and continuous refinement. My goal is to contribute to scalable, resilient security foundations that enable organisations to operate with confidence.

Current Role
Cyber Security Engineer
Isolutions Associates Ltd
Based in
Nairobi, Kenya
CTF Team
p3rf3ctr00t
Communities
Hack The Box · Bug Bounty KE
Uguntu · CTFROOM · CTFZone
Focus
Identity Security · Offensive Sec
AD · OSINT
02

Experience

Aug 2023 – Present
Full-time
Isolutions Associates Ltd
Cyber Security Engineer
Identity security, vulnerability assessments, and security hardening across enterprise environments. Translating offensive findings into actionable, resilient defensive architecture.
Sep 2023 – Present
Full-time
P3rf3ctr00t
CTF Player and Author
Designing and authoring Capture The Flag challenges across OSINT, Cryptography, and security domains, while actively competing in cybersecurity competitions on the global stage.
Jan 2026 – Present
Ambassador
Hack The Box Uganda
Meetup Ambassador
Organising community meetups for the Ugandan HTB chapter; building a network of practitioners and fostering local security talent.
Jan 2025 – Present
Speaker
Hack The Box Kenya
HTB Kenya Meetup Speaker
Regular speaker at Kenyan HTB community events on offensive security, CTF strategy, and practical vulnerability research.
Dec 2025 – Present
Community
CTFZone Labs
Content Engineer
Contributing high-quality challenge sets to international CTF competition platforms.
Dec 2025 – Present
Community
AfricaHackon
Content Engineer
Engineering CTF challenges and content, delivering talks, and supporting community initiatives.
Mar 2024 – Present
Community
CTFROOM
Content Engineer
Designing and authoring CTF challenges across OSINT, cryptography, and security domains for competitions and training platforms across East Africa.
Sep 2020 – Present
Community
Uguntu
Content Engineer & Community Contributor
Long-standing contributor to Uganda's cybersecurity community; creating educational content and running competitions for emerging security professionals.
Jan 2021 – Present
Community
Bug Bounty KE
Community Member
Active member of Kenya's bug bounty community — attending sessions, hosting events, and sharing security research and insights with the local practitioner network.
03

Projects

15+
Identity Security
Enterprise PAM Deployments
Designed and delivered privileged access management solutions for large organisations across East Africa — covering policy design, tooling rollout, and least-privilege enforcement.
10+
Vulnerability Mgmt
Enterprise Vulnerability Management
End-to-end vulnerability assessment and remediation tracking across internal networks, web applications, and cloud infrastructure for enterprise clients in the region.
5+
App Security
Enterprise Web Application Scanning
Deployed and configured enterprise-grade web application scanning tools for continuous security assessment of client-facing and internal applications.
3+
Identity Security
Enterprise MFA Deployments
Rolled out multi-factor authentication across enterprise environments — strengthening access security and reducing credential-based attack surface for critical systems.
2+
IAM
Enterprise IAM Implementations
Architected and implemented identity and access management frameworks for large organisations — defining access policies, role structures, and lifecycle management processes.
3+
CTF
International CTF Organisations
Organised international Capture the Flag competitions end-to-end — from infrastructure setup and challenge design to platform management, scoring, and post-event wrap-up.
04

Skills

Identity Security
IAMPAMSSOMFAZero TrustAccess ControlPrivileged Access
Offensive Security
Penetration TestingVulnerability AssessmentExploit DevelopmentRed Teaming
Specialisations
OSINTCryptographyWeb App SecurityAttack Path AnalysisThreat Modelling
Defensive Security
Security HardeningIncident ResponseSecurity ArchitectureRisk AssessmentControl Validation
Community & Outreach
CTF Challenge AuthoringCTF Infra & OpsSecurity Awareness Training
05

Awards & Contributions

Competition wins and challenge authorships across East Africa and internationally; contributing to the security community through high-quality, real-world problem sets.

YearAward / ContributionOrganisation
2026Challenge Author — ECOWAS CTF 2026CTFZone
2026Challenge Author — Cyber Premier League, TanzaniaCTFZone
2026Challenge Author — 0xfun CTF 20260xfun
2026Challenge Author — MKU/Zetech CTF 2026MKU / Zetech University
2025Winner — AfricaCERT FIRST Cyber Drill winnerAfricaCERT · p3rf3ctr00t
2025Winner — Cyberlympics Kenya 2025 winnerAfrica Cyber Defense Forum
2025Challenge Author & Instructor — Cyber Stars Uganda 2025UCC & UgCert · Uguntu
2025Challenge Author — Nahamcon Winter CTF 2025Nahamcon
2025Challenge Author — P3rf3ctr00t CTF 2025p3rf3ctr00t
2025Challenge Author — BitSiege CTF 2025Bitwall.ke
2025Challenge Author — CyberQuest CTF 2025CTFROOM & Tech Sisters Kenya
2025Challenge Author — Dewald Roode Hackathon 2025CTFROOM & USIU
2025Challenge Author — HackFridays CTF 2025CTFROOM
2025Challenge Author — Black Awareness OSINT CTF 2025CTFROOM
2025Challenge Author — Digital Safe Ltd Zambia CTF 2025CTFROOM & DSL Zambia
2024Runners Up — BIC Defcon CTF 2024 top 2Blacks in Cyber & Defcon
2024Challenge Author — Bsides Nairobi CTF 2024Bsides Nairobi
2024Challenge Author — P3rf3ctr00t CTF 2024p3rf3ctr00t
2024Challenge Author — East Africa Intervarsity CTF 2024CTFROOM
2024Challenge Author — CyberPro CTF 2024CTFROOM
2022Winner — Cyber Stars Uganda Competition 2022 winnerCyber Ranges & UCC
06

Certifications

SailPoint Identity Security Leader
SailPoint
Verify ↗
Junior Penetration Tester (eJPT)
INE
Verify ↗
Certified Cloud Associate (ICCA)
INE
Verify ↗
Android Forensics with Belkasoft
Belkasoft
Verify ↗
Windows Forensics with Belkasoft
Belkasoft
Verify ↗
Certified Blue Team Practitioner (CBTP)
The SecOps Group
Verify ↗
Certified Network Security Practitioner (CNSP)
The SecOps Group
Verify ↗
Certified Social Engineering Defense Practitioner (CSEDP)
The SecOps Group
Verify ↗
McKinsey Forward Program
McKinsey & Company
Verify ↗
07

Contact

Working on identity security, application hardening, or offensive-informed defence?

I'm always open to connect, collaborate, and exchange ideas with people pushing the field forward. Reach out. Let's talk.

LinkedInHamza Parvez Email[email protected]
© 2026 Hamza Parvez
LinkedIn ↗ Blog ↗ Email ↗
Nairobi, Kenya