Details
Skills
•Incident Detection and Response (SOC L1–L2): Log correlation, triage, and escalation procedures.
•SIEM & Threat Hunting: IBM QRadar, Splunk, CrowdStrike, Forcepoint, and Zscaler for threat detection and DLP.
•Security Automation: Python scripting to automate alert enrichment, case creation, and ticket routing.
•Metrics & Dashboards: Developed Power BI and Grafana dashboards to visualize detection trends and SLA metrics.
•Network and Endpoint Monitoring: Deep packet inspection, IOC analysis, and endpoint telemetry correlation.
•Vulnerability Management: Integrated Qualys VMDR and Tenable scanning for proactive risk reduction.
•Others: Incident management, Cross-functional Collaboration, Risk Assessment, Cyber Defense Operations, Business continuity planning, Continuity of Operations Planning (COOP), Disaster recovery, threat Hunting.
About
Cybersecurity Analyst with 7+ years of experience monitoring, detecting, and responding to security incidents in enterprise environments. Skilled in SIEM log analysis, TTP identification, and threat hunting using QRadar, Zscaler, Forcepoint, Splunk, and CrowdStrike. Skilled at automating repetitive SOC tasks and reducing mean time to detect (MTTD) and mean time to respond (MTTR).
Profile Photo
