About
Detail-oriented security professional with 3 years of IT experience and hands-on exposure to SOC operations, security monitoring, incident response, and threat analysis. Experienced in Splunk SIEM for log analysis, alert triage, threat detection, and security investigation, along with CrowdStrike Falcon for endpoint detection and response. Skilled in analysing logs from Palo Alto Firewall, Proofpoint Email Gateway, Zscaler Web Proxy, Imperva WAF, Cisco VPN, and Trend Micro Tipping Point through Splunk. Familiar with NIST, MITRE ATT&CK, incident management, SOP documentation, and threat intelligence. Certified Ethical Hacker (CEH v12) with a strong commitment to continuous learning and strengthening organizational security posture through proactive threat detection and response.
Skills & Expertise (20)
Work Experience
Content Engineer
Cyncly
Jul 2023 - Present
Monitored, analysed, and responded to security alerts and incidents using SIEM, EDR, and IDS/IPS technologies including Splunk and CrowdStrike to identify and mitigate cyber threats. Conducted incident triage, log analysis, root cause analysis, and proactive threat hunting aligned with MITRE ATT&CK and NIST cybersecurity frameworks. Developed and optimized Splunk correlation searches, detection rules, alerts, and dashboards to enhance threat visibility and reduce false positives. Performed in-depth investigation and resolution of security incidents escalated by L1 analysts, ensuring timely remediation and adherence to incident response procedures. Collaborated with cross-functional teams during incident response, remediation, and vulnerability assessment activities to minimize security risks and operational impact. Managed incident tracking, escalation, documentation, and SLA compliance using OS Ticketing tools. Researched emerging cyber threats, vulnerabilities, malware trends, and attack techniques to strengthen detection capabilities and improve overall security posture. Assisted in analysing suspicious activities, investigating security events, and supporting containment and recovery efforts during cybersecurity incidents. Maintained security documentation, incident reports, and standard operating procedures (SOPs) for audit and compliance purposes.
Cyber Security Intern
HackSudo Training and Testing Academy
Jul 2022 - Jun 2023
Monitored and investigated security alerts using IBM QRadar SIEM, CrowdStrike EDR, and IDS/IPS tools. Participated in incident triage and preliminary threat analysis following MITRE ATT&CK framework. Gained hands-on experience in log analysis, threat hunting, and security operations processes. Supported SOC operations by analysing endpoint and network security events and documenting findings.
Education
B.E. Mechanical Engineering - Savitribai Phule Pune University
2019 - 2023 · India
Certifications
CEH v12
EC Council · 2024
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (20)
Click a skill to find developers with the same skill
