About
SOC Analyst with proven track record in monitoring, triage, analysis, and swift response to security incidents. Proficient in leveraging industry-leading tools such as SIEM, IDS/IPS, Firewall, AV/EDR, Email Gateway, and Web Proxy for effective cyber threat detection and mitigation. Notable expertise in conducting in-depth investigations, implementing robust security fortify organizational defenses. Known for fostering collaboration. Seeking to apply my skills and experience in a challenging SOC Analyst role within a dynamic cyber security team.
Skills & Expertise (5)
Work Experience
SOC Analyst / Incident Responder
MDR, Network Intelligence Pvt. Ltd.
04-2022 - Present
Demonstrates eagerness and intuition while performing investigations of attacks, especially in malware, phishing, fraud, malware analysis, IOC gathering. Experience in Advance threat protection alerts handling on Microsoft Defender for Endpoint. Investigated and classified security alerts for rapid response. Mitigated intrusion attempts, ensuring a secure environment. Drive incident response efforts, identified incident root cause and took proactive mitigation steps. Working on WAF, DHCP, IPS, Proxy, SIEM reports to analysis and monitor inbound-outbound traffic. Utilizes the internal knowledge base to assist with resolution of threats. Responded to the detection of odc and .iso files, often associated with malicious payload delivery. Website/Process/Application whitelist and blocklist to maintain secure environment. Working on Sentinel for Monitoring & Investigating the Security Incident.
SOC Analyst
Aarna Technologies Pvt. Ltd.
03-2022 - 03-2025
Develop SOC monitoring use cases to proactively detect emerging threats. Update incident response playbook for effective cybersecurity readiness. Monitor the health of security sensors and SIEM infrastructure. Monitor diverse security events and logs (Proxy, IPS/IDS, Firewall, Email, AntiMalware, Endpoints, Web Application Firewall) for situational awareness. Collect and analyze threat intelligence feeds, investigating potential Indicators of Compromise (IOCs). Identify, ingest, and manage IOCs in applicable security controls. Review and enhance detection coverage of IOCs, collaborating with vendors or internal teams. Deliver concise SOC reports to senior management, outlining the current security status, recent incidents, threat trends, and control effectiveness. Conduct proactive monitoring and efficient triage of security events. Investigate all security alerts, utilizing tools and log files to differentiate whether the event is a false positive or a security incident. Recognize potential, successful, and unsuccessful intrusion attempts and compromises through reviews and analyses of relevant event details and summary information. Investigate reported suspicious emails, categorize them, and respond to users with findings and recommendations. Malware analysis, advanced persistent threats, infection vectors, and defense strategies. User authentication methods, Active Directory, On-Prem and Office 365 authentications, system patching, Data Loss Prevention.
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Current Company
Other
Relocation
Open to Relocation
