Skills
SIEM & SOAR Tools: Azure Sentinel, Sumo logic, Splunk, Phantom Splunk, Cortex XSOAR(Demisto)
AI Fundamentals: Prompt Engineering & Output Evaluation, Creating responsible generative AI solutions, Microsoft Security Copilot (Copilot in Defender XDR, Purview, Entra, Intune and Cloud)
Sandboxes Hybrid Analysis, Anyrun, VirusTotal, Mx toolbox
Ticketing Tools: ServiceNow, Jira
Endpoint Security: Microsoft Defender suite (including Defender for Office 365, Cloud Apps, Purview, Endpoint, Identity)
Identity & Access Management: Active Directory (AD DS, User & Group Management, RBAC), Microsoft Entra ID (Azure AD)
Vulnerability Assessment Tools Nessus, Qualys, OpenVAS
Threat Intelligence: ThreatConnect, IBM X-Force, Recorded Future
Traffic Analysis: Wireshark, Nmap
Programming and Scripting Python, KQL
Operating Systems: Windows, Android, iOS, Mac OS, Linux
Project Management Fundamentals: Agile, Waterfall, Scrum, Kanban, Trello
About
I have over 5 years of experience in IT and 3 years as a Cybersecurity Analyst and Engineer, specializing in threat detection, incident response, cybersecurity risk mitigation, and proactive defense strategies. I have advanced in my career to the role of Cybersecurity Engineer.
• Highly skilled in security frameworks, particularly the NIST Framework, with extensive experience in using incident analysis tools like Splunk and various security monitoring tools
• Specialized in using SIEM tools (Sentinel, Splunk, IBM QRadar) & SOAR platforms (phantom Splunk, Demisto) to monitor & analyze security events & incidents, providing regular reports & recommendations to management & stakeholders to enhance security posture
• Proficient in advanced endpoint security solutions including Microsoft Defender, CrowdStrike, Carbon Black (VMware), and Symantec Endpoint Protection, with strong analytical skills for detecting unusual patterns and anomalies in security event data
• Proficient in real-time monitoring and proactive threat detection using AWS Guard Duty and Azure Sentinel, seamlessly integrating advanced security automation strategies with firewalls, IDS/IPS, and log aggregation to identify and mitigate cyber threats, thereby enhancing organizational resilience
• Possesses in-depth knowledge of OWASP (Open Web Application Security Project) guidelines and best practices for secure application development, including code review, vulnerability scanning, and penetration testing
Profile Photo
