About
3.4+ years of experience in the SOC domain. Presently, I am working as a security analyst at IBM, Bangalore.
Skills & Expertise (32)
Work Experience
Security Analyst
IBM
Aug 2022 - Present
Responding to alerts from various monitoring, detection systems, and platforms like SIEM, ATP/EDR, and Threat Intel, within a defined SLA. Applied MITRE ATT&CK and Cyber Kill Chain frameworks to analyze adversary tactics, and enhance detection logic. Utilized KQL in Azure Sentinel for advanced log correlation, threat hunting, and incident triage. Monitored and responded to endpoint threats using Microsoft Defender and CrowdStrike, minimizing malware impact. Investigated identity-based threats and enforced access controls using Microsoft Entra to protect user accounts and credentials. Analyzed cloud activity via Microsoft Cloud App Security to detect anomalies and enforce security policies. Triaged email-based threats using O365, identifying phishing, spoofing, and BEC attempts. Interpreted network traffic using TCP/IP and OSI model knowledge to identify suspicious patterns and potential intrusions. Supported firewall alert analysis to validate threats and recommend mitigation actions. Analyzed suspicious payloads in O365 Defender sandbox to identify evasive malware and zero-day exploits. Performed malware analysis and contributed to threat intelligence enrichment during incident investigations. Malware analysis and investigation of phishing and spam emails. Root Cause Analysis on Malware Threats. Used ServiceNow for incident documentation, escalation, and SLA-based resolution tracking. Managed pending incident tickets by coordinating with the proxy, network, and SIEM teams to escalate issues, clarify gaps, and ensure timely resolution. Preparing daily, weekly, and monthly, and ad-hoc reports, along with their complete analysis.
Education
Bachelor of Engineering
2012 - 2016 · India
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Relocation
Open to Relocation
