About
SOC Analyst with 2+ years of experience in Security Operations Center (SOC) environments, specializing in SIEM monitoring, alert triage, incident response, and threat detection. Hands-on expertise in IBM QRadar, Microsoft Defender for Endpoint, and Qualys for log analysis, endpoint security, and vulnerability management. Strong understanding of MITRE ATT&CK framework, threat intelligence, and incident handling lifecycle.
Skills & Expertise (18)
Work Experience
SOC Analyst
HCLTech
Jan 2024 - Present
Performed security monitoring and alert triage in a SOC environment, handling 50+ daily security alerts using IBM QRadar. Investigated 60+ security incidents per month, including phishing, malware infections, and unauthorized access attempts. Performed log analysis across endpoints, firewalls, and network devices to detect anomalies and indicators of compromise (IOCs). Detected and responded to endpoint threats using Microsoft Defender for Endpoint, ensuring rapid containment and remediation. Conducted vulnerability assessments using Qualys and collaborated with internal teams for remediation tracking. Enriched security alerts by analyzing malicious IPs, domains, and file hashes using threat intelligence tools such as VirusTotal and AbuseIPDB. Managed incident lifecycle using ServiceNow, adhering to ITIL v4 practices and SLA requirements. Generated monthly security reports highlighting incident trends, vulnerabilities, and remediation status. Supported SIEM integrations and log source onboarding to enhance security visibility and monitoring coverage.
Education
Bachelor of Technology (B.Tech) - Rajeev Gandhi Memorial College of Engineering and Technology
2019 - 2023 · India
Certifications
Microsoft Certified: Security Operations Analyst Associate
Microsoft · 2025
Microsoft SC-200 certified with skills in threat detection, investigation, and response using Microsoft security tools.
Microsoft Certified: Security, Compliance, and Identity (SCI) Fundamentals
Microsoft · 2025
Certified in Microsoft SC-900 with a solid understanding of security, compliance, and identity fundamentals. Knowledge includes Zero Trust principles, identity management using Azure Active Directory, and basic security solutions in Microsoft environments.
ITIL® Foundation certificate in IT Service Management
AXELOS Global Best Practice · 2024
ITIL 4 Foundation certified with practical understanding of ITSM processes in a Security Operations Center (SOC) environment. Skilled in incident lifecycle management, prioritization, escalation, and adherence to SLAs. Supports structured and efficient response to cybersecurity incidents aligned with organizational processes.
