Back to Developers
SONAL SAUNDARYA

SONAL SAUNDARYA

Security Analyst

Gurgaon
69
Profile Score

Skills & Expertise (14)

SIEM (Grey Log, Microsoft Sentinel) Intermediate
8.2/10
2
Years Exp
Endpoint detection and response (SentinelOne) Intermediate
8.0/10
2
Years Exp
Log Analysis Intermediate
7.8/10
2
Years Exp
Incident Response Intermediate
7.8/10
2
Years Exp
DLP incident analysis Intermediate
7.6/10
2
Years Exp
Forcepoint DLP Intermediate
7.4/10
2
Years Exp
MITRE ATT&CK framework Intermediate
7.2/10
2
Years Exp
ServiceNow Intermediate
6.8/10
2
Years Exp
Forcepoint Proxy Intermediate
6.8/10
2
Years Exp
Zammad Intermediate
5.9/10
2
Years Exp
Python (basic) Beginner
5.4/10
1
Years Exp
Strong Analytical Abilities Effective Communication Team Collaboration

Work Experience

SOC Analyst

Adecco

May 2025 - Present

Working as a Security Operations Center Analyst at IndiGo. Continuously monitor SIEM, EDR, and other security platforms for critical alerts and events that indicate potential security threats. Escalating suspicious alerts to L2 analysts. Monitor and analyze DLP alerts from various sources, including network, endpoint, and cloud-based systems. Investigate and verify the legitimacy of DLP alerts, determining whether they are true positives or false positives. Develop and maintain documentation of DLP incidents, including root cause analysis, lessons learned, and recommendations for future improvements. Practical knowledge of network protocols (TCP/IP, DNS, HTTP/S, SMTP). Investigate alerts for root causes, and determine actionable steps. Created and maintained IOC blocklists in endpoint protection tools (SentinelOne, Forcepoint) to proactively prevent known threats from executing or communicating.

Associate Cybersecurity Consultant

Nihon Cyber Defense

Jul 2022 - Sep 2023

Contributed as a key member of the SOC Analyst team, improving the overall security posture through proactive threat detection and response. Monitored and analyzed over 500 event logs daily for suspicious activity, identifying and escalating potential threats in real time using SIEM tools like Splunk and Graylog. Escalating a suspicious alert to L2 analysts. Prepare and maintain daily, weekly, and monthly SOC activity and incident reports for internal stakeholders.

Education

B.Tech in Information Technology - Maulana Abul Kalam Azad University of Technology, Kolaghat

- 2022 · Afghanistan

AISSCE - St. Joseph Senior Secondary School, Muzaffarpur

- 2018 · Afghanistan

AISSE - DAV Public School, Muzaffarpur

- 2015 · Afghanistan

Interested in this developer?

Profile Score Breakdown

📷 Photo 10/10
📄 Resume 10/10
💼 Job Title 10/10
✍️ Bio 0/10
🛠️ Skills 19/20
🎓 Education 10/10
⏱️ Experience 5/15
💰 Rate 0/5
🏆 Certs 0/5
Verified 5/5
Total Score 69/100

Profile Overview

Member sinceFeb 2026

Skills (14)

SIEM (Grey Log, Microsoft Sentinel) Endpoint detection and response (SentinelOne) Log Analysis Incident Response DLP incident analysis Forcepoint DLP MITRE ATT&CK framework ServiceNow Forcepoint Proxy Zammad +4 more