Jatin Choudhary
Cybersecurity analyst | SOC analyst
About
Experienced and highly skilled SOC Analyst with over 4 years of hands-on experience in Security Operations, Incident Detection and Response, and Threat Intelligence. Proficient in leveraging advanced tools such as Splunk, Splunk Enterprise Security (ES), Microsoft defender for endpoint, and Palo Alto Cortex XSOAR to monitor, detect, investigate, and respond to cybersecurity incidents in real-time. Adept at creating correlation searches, dashboards, and automated playbooks to enhance SOC efficiency and reduce mean time to detect (MTTD) and mean time to respond (MTTR). Strong understanding of MITRE ATT&CK, cyber kill chain, and log analysis from various data sources including firewalls, endpoints, and IDS/IPS systems. Demonstrated ability to work in fast-paced environments and collaborate across teams to fortify an organization’s security posture.
Skills & Expertise (19)
Work Experience
Associate Engineer (SOC/Cybersecurity Analyst)
BT E-serv
Mar 2021 - Aug 2025
Monitor and analyze security events from SIEM tools like Splunk and Splunk Enterprise Security to identify threats, anomalies, and suspicious activities in real-time. Investigate endpoint-related alerts using MSD endpoint and escalate confirmed incidents based on predefined criteria. Perform triage and in-depth analysis of security incidents including phishing, malware infections, data exfiltration, and lateral movement. Acknowledging and closing false positives and raising tickets for validated incidents. Coordinate with Incident Response and Threat Intelligence teams for advanced threat analysis, mitigation, and root cause investigation. Good understanding of OSI, TCP/IP, DNS, DHCP, NAT, VPN, and other core networking protocols to support incident investigations. Configured and managed Splunk Technology Add-ons (TAs). Integrated Splunk Heavy Forwarders to collect, parse, and route high-volume log data from distributed sources, ensuring reliable indexing and minimal data loss. Involved in creating phishing awareness campaign. Assist SOC lead in reporting. Assist IRT/SME teams in incident remediation by providing supporting data and recommendations. Work closely with business units to ensure that they know what and how to feed data into the SIEM. Investigate malicious phishing emails, domains, and IPs using Open-Source tools and recommend proper blocking based on analysis.
Education
B.Tech in Electronics and Communication Engineering - USICT
2015 - 2019 · Afghanistan
Certifications
CEHv13
· 2025
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
