About
Detail-oriented L1 SOC Analyst with hands-on experience in security event monitoring, alert triage, basic threat hunting, and incident escalation using industry-standard SIEM tools (Splunk, ArcSight) and firewall logs (Palo Alto). Strong exposure to Vulnerability Assessment processes, including executing scans using tools like Nessus, validating findings, identifying false positives, and assisting in remediation tracking with IT teams. Cisco Certified Network Associate (CCNA) certified professional, demonstrating a solid foundation in networking fundamentals, IP protocols, security fundamentals, and programmability. Adept at maintaining documentation, following standard operating procedures (SOPs), and collaborating with L2/L3 teams. Currently seeking opportunities to take ownership of more complex investigations and deepen skills in threat intelligence, endpoint detection, and VAPT reporting.
Skills & Expertise (8)
Work Experience
SOC Engineer
Servion Global Solutions
11-2021 - Present
Monitored and triaged 100-150 security alerts daily using SIEM tools like Splunk and ArcSight to identify potential threats and anomalies. Followed Standard Operating Procedures (SOPs) for incident response, ensuring consistent handling of alerts across the SOC team. Participated in weekly SOC drills to simulate and practice real-world cyber incidents and improve team readiness. Utilized threat intelligence platforms and tools like VirusTotal to correlate IOCs (IPs, domains, hashes) for incident enrichment. Maintained accurate incident documentation and updated tickets in ServiceNow with 100% compliance to SLA and reporting standards. Investigated and triaged alerts involving malware, phishing attempts, and unauthorized access, escalating high-priority cases as needed. Conducted weekly vulnerability scans using Nessus; assisted in validating scan results, filtering false positives, and preparing internal VAPT reports. Performed phishing email analysis on user-reported incidents and extracted IOCs for further investigation. Applied IP blocks and allowed access rules using Palo Alto Firewalls, as per incident response playbooks and approvals.
Education
B.E. (Electronics and Communication Engineering)
2016 - 2020 · India
