Maroti Gavhane

SOC Analyst (L2)

Pune, Maharashtra

Profile Score

About

SOC Analyst (L2) with 3+ Years of experience in security monitoring, log analysis, Threat detection and incident response. Proficient in SIEM tools (Splunk, QRadar) and EDR (CrowdStrike) for alert triage and complex investigations. Expert in Detection engineering, Threat hunting, MITRE ATT&CK framework, vulnerability management, and SOC workflows. Strong background in access control (IAM), phishing incident response, Active Directory security, and enterprise endpoint protection.

Skills & Expertise (27)

MITRE ATT&CK Advanced

8.5/10

Years Exp

Splunk Advanced

8.3/10

Years Exp

CrowdStrike Falcon Advanced

8.1/10

Years Exp

Microsoft Defender for Endpoint Intermediate

7.8/10

Years Exp

IBM QRadar Intermediate

7.5/10

Years Exp

Service Now Behavioral Analytics IOC Hunting Active Directory LINUX Sysmon Windows Event Logs Nmap Qualys WIRESHARK DMARC Validation DKIM SPF Phishing Analysis VPN Snort CISCO Palo Alto DHCP DNS IP TCP

Work Experience

SOC Analyst L2

Brillioz Infotech Pvt.Ltd

Aug 2022 - Present

Monitored and triaged 3,000+ daily security events through SIEM across enterprise environments. Led end-to-end investigations of escalated alerts from L1 such as (account compromise, malware infections, phishing campaigns, C2 communication) with SLA Compliance. Developed 25+ SIEM detection rules aligned with MITRE ATT&CK TTPs, reducing false positives by 30% and improving MTTD. Conducted log analysis across Windows Event logs, Linux logs, Active Directory, DNS and DHCP etc. and Monitored network traffic using Wireshark and PRTG. Utilized CrowdStrike EDR/XDR for endpoint triage and host-based isolation. Contained threats via host isolation, blocking IPs/URLs/Domains, account disablement, malware cleanup, and MFA enforcement. Performed phishing analysis (SPF/DKIM/DMARC validation, URL/Attachments scanning). Conducted static/dynamic malware analysis using Any.Run sandbox. Led hypothesis-driven threat hunts using IOCs, MITRE ATT&CK, and feeds from MISP/ThreatConnect; uncovered 20+ stealthy threats missed by alerts. Reduced MTTR through optimized triage workflows, SOAR playbooks (Splunk SOAR-Phantom), and standardized procedures (40% faster response). Conducted root cause analysis (RCA) and updated SOPs/playbooks based on lessons learned. Delivered incident reports with impact assessments/remediation to stakeholders/executives. Collaborated with network, server, IT, digital forensic and DLP teams for threat mitigation. Provided technical leadership/mentoring to L1 analysts during major incidents.

Education

Bachelor’s Degree - Nowrosjee Wadia College

2014 - 2017 · Afghanistan

Higher Secondary Certificate (HSC) - MJ College, Palam, Parbhani

2012 - 2014 · Afghanistan

Certifications

No certifications added yet

Interested in this developer?

Profile Score Breakdown

📷 Photo 10/10

📄 Resume 10/10

💼 Job Title 10/10

✍️ Bio 10/10

🛠️ Skills 20/20

🎓 Education 10/10

⏱️ Experience 5/15

💰 Rate 0/5

🏆 Certs 0/5

✅ Verified 5/5

Total Score 80/100

Profile Overview

Member sinceMar 2026

Skills (27)

Click a skill to find developers with the same skill

MITRE ATT&CK Splunk CrowdStrike Falcon Microsoft Defender for Endpoint IBM QRadar Service Now Behavioral Analytics IOC Hunting Active Directory LINUX +17 more

Similar Profiles

Ayush Vats

Soc

$200/hr

Santosh Ippili

Entry-level SOC Analyst (L1)

Desireddy Ramana Reddy

SOC Analyst

$30/hr

Nkanyiso Cele

Software Developer

View All Developers →