Manthan Agravat

SOC Analyst — Detection Engineering — Shift Team Leader

Ahmedabad, India

Profile Score

About

SOC Analyst and Shift Team Leader with 1.5+ years of hands-on experience in Security Operations Center, Detection Engineering and Incident Response. Currently leading shift operations and detection engineering while managing 24x7 security monitoring across enterprise SIEM platforms (Google SecOps, Azure Sentinel, ArcSight). Proven track record in custom rule engineering, log analysis, threat hunting, and ransomware mitigation. Strong team leadership skills with experience mentoring junior analysts and coordinating cross-functional incident response. PSAA certified with offensive security background that provides a comprehensive blue team and red team perspective.

Skills & Expertise (44)

Azure Sentinel Intermediate

7.5/10

Years Exp

Splunk Intermediate

7.5/10

Years Exp

QRadar Intermediate

7.5/10

Years Exp

Google SecOps Intermediate

7.5/10

Years Exp

ArcSight ESM Intermediate

6.8/10

Years Exp

SPL ISO 27001 Burp Suite Professional MobSF Metasploit Nmap WIRESHARK OWASP ZAP Nessus Python bash scripting SQL PowerShell REST API Integration MITRE ATT&CK NIST Cybersecurity Framework Cyber Kill Chain OWASP Top 10 SANS Top 25 Malware Analysis EDR/XDR solutions SOAR platforms Brand Monitoring ITSM Tools Security Event Monitoring Log Analysis Incident Response Threat Hunting Alert Triage KQL Phishing Analysis Forensic Investigation Team Leadership SLA Management SIEM Rule Development Custom Parser Creation Regex Pattern Matching MITRE ATT&CK Mapping use case development

Work Experience

SOC Analyst & Shift Team Leader

Tribastion Technologies - Cyber Intelligence and Defense Center

Sep 2024 - Present

Lead shift team operations for 24x7 SOC monitoring, coordinating incident escalations, task delegation, and ensuring SLA compliance across security monitoring workflows and alert triage processes. Mentor and train junior SOC analysts on SIEM platforms, log analysis techniques, incident response procedures, and security best practices, improving team detection capabilities and response times. Engineer custom detection rules and complex Regex-based log parsers for 15+ log sources including firewalls, EDR, proxy, and cloud platforms, reducing false positive rates by 40% and improving threat visibility. Led critical ransomware incident response, coordinating with IT teams to contain infected endpoints within 2 hours, prevent lateral movement, and execute recovery procedures with zero data loss. Perform proactive threat hunting using MITRE ATT&CK framework and develop detection use cases for emerging threats including phishing campaigns, malware, and insider threats. Create executive dashboards and weekly security metrics reports for management, presenting KPIs including MTTD, MTTR, alert volume trends, and security posture improvements. Collaborate with vulnerability management and network security teams for end-to-end security incident lifecycle management and remediation tracking.

Cybersecurity Intern - VAPT Specialist

Cyber Octet Pvt Ltd

Jan 2024 - Aug 2024

Conducted comprehensive vulnerability assessments and penetration testing for 10+ clients across web applications, mobile applications (Android/iOS), REST APIs, and network infrastructure. Performed security audits of enterprise systems, Linux/Windows servers, and Active Directory environments, delivering detailed reports with CVSS scoring and actionable remediation guidance. Utilized Burp Suite Professional, MobSF, OWASP ZAP, Nmap, Metasploit Framework, and custom Python scripts to identify OWASP Top 10 vulnerabilities, privilege escalation paths, and misconfigurations. Supported incident response activities and coordinated with development teams for secure code review and vulnerability remediation verification.

Education

Bachelor of Engineering - Artificial Intelligence and Machine Learning - New L J Institute of Engineering and Technology - Gujarat Technological University

2020 - 2024 · Afghanistan