Vishnu Kousthub

SOC Analyst

UAE 85 · Excellent

About

SOC Analyst with 2+ years of experience in SIEM deployment, log management, threat intelligence, and incident response within high-volume Security Operations Centers (SOCs). Skilled in malware/phishing/DDoS investigations, firewalls/IDS/IPS maintenance, audits/compliance (NIST/ISO 27001), and Python automation on Windows/Linux. Experienced in real-time abuse monitoring, EDR/SIEM alerting proactive threat hunting, and reducing false positives via ticket triage. Proficient PCAP analysis, Cyber kill-chain mapping, and DLP triage for financial threat detection. Leverages Metasploit/Impacket for defenses; excels in real-time mitigation and team collaboration. Proven ability to detect, analyze, and mitigate threats in real-time environments. Eager to drive proactive security operations and contribute to mature SOC teams.

Skills & Expertise (44)

Splunk Advanced

8.1/10

Years Exp

AWS Intermediate

6.9/10

Years Exp

Python Intermediate

6.5/10

Years Exp

ELK Stack Intermediate

6.3/10

Years Exp

IBM QRadar Intermediate

5.8/10

Years Exp

Metasploit Azure Nmap Impacket Enum4Linux SQLmap Bettercap Kali Linux Ubuntu Windows Server 2019 Bash Flask NIST ISO 27001 Cyber Kill Chain MITRE ATT&CK Phishing Analysis Cloud Security Vulnerability Assessments Filebeat Sentinel Log Forwarding Dashboard Studio Real Time Monitoring SPL queries Timeline Reconstruction Malware Analysis DDoS Mitigation IOC Analysis risk assessments Threat Hunting VirusTotal Firewalls IDS IPS Endpoint Protection Splunk universal forwarder WIRESHARK AlienVault OTX

Work Experience

IT Operations Security Engineer

Engro Technologies Ltd.

Nov 2023 - Present

Monitored SIEM (splunk) alerts and logs in high volume SOC, analyzing 500+ daily events to detect threats/vulnerabilities, reducing false positives by 30% via correlation rules. Led incident response for 150+ malware/phishing/unauthorized access cases, achieving 95% containment within SLA (under 2 hours MTTR) using Virus-total validation. Conducted vulnerability assessments on 1000+ endpoints quarterly, prioritizing remediations that closed 85% of critical CVEs in <7 days with IT/Engineering collaboration. Implemented/Maintained firewalls, IDS/IPS, and endpoint tools, blocking 2,500+ malicious connections and enhancing control across windows and Linux environments. Produced weekly security reports/documentation and supported audits/compliance checks(NIST/ISO 27001), contributing to 100% audit pass rate and risk reduction by 40%. Automated log parsing/alert triage with python scripts; gained basic cloud security knowledge (AWS/Azure) via TII hybrid environment monitoring, saving 20 hours/week in analysis. Investigated/Escalated abuse claims (intrusions/DDoS/malware) via ticketing system, vetting reporters and collaborating with engineering for platform fixes. Analyzed proxy/IDS/endpoint logs using wireshark PCAP and splunk SPL to identify Trojans/ransomware; triaged DLP alerts preventing data exfiltration.

Education

B.Tech in Electronics and Communication Engineering - Sreenidhi Institute of Science and Technology

- 2022 · Afghanistan

Certifications

Texial Certified SOC Analyst

Texial Labs · 2026

Cybersecurity Essentials

Cisco Networking Academy · 2026

Networking Essentials

Cisco Networking Academy · 2025

Interested in this developer?

Profile Score Breakdown

📷 Photo 10/10

📄 Resume 10/10

💼 Job Title 10/10

✍️ Bio 10/10

🛠️ Skills 20/20

🎓 Education 10/10

⏱️ Experience 5/15

💰 Rate 0/5

🏆 Certs 5/5

✅ Verified 5/5

Total Score 85/100

Profile Overview

Member sinceApr 2026

Availability Details

Visa Status

Citizen

Relocation

Open to Relocation

Skills (44)

Click a skill to find developers with the same skill

Splunk AWS Python ELK Stack IBM QRadar Metasploit Azure Nmap Impacket Enum4Linux +34 more

Similar Profiles

Ayush Vats

Soc

$200/hr

Santosh Ippili

Entry-level SOC Analyst (L1)

Desireddy Ramana Reddy

SOC Analyst

$30/hr

Nkanyiso Cele

Software Developer

View All Developers →