TIMELINE
Professional Experience
From physics lab to Blue Team. Each experience shaped my analytical approach to cyber defense.
Blue Team Security Specialist
TechCorp Security · Full-time
Lead defensive security operations including threat detection, incident response, and security monitoring. Design and implement detection rules, conduct threat hunting, and mentor junior analysts in Blue Team methodologies.
Key Achievements:
- ▸Designed and deployed 50+ custom SIEM detection rules reducing MTTD by 40%
- ▸Led incident response for 100+ security incidents with 98% successful resolution rate
- ▸Implemented automated threat hunting workflows using Python and Splunk SPL
- ▸Developed security playbooks for ransomware, phishing, and insider threat scenarios
- ▸Conducted regular purple team exercises to validate detection capabilities
- ▸Mentored 3 junior SOC analysts in threat detection and incident response
SOC Analyst Level 2
Global Finance Corp · Full-time
Advanced security monitoring and incident investigation in a 24/7 SOC environment. Performed deep-dive analysis of security alerts, threat intelligence integration, and coordination with security teams for incident containment.
Key Achievements:
- ▸Triaged and investigated 500+ security incidents across SIEM, EDR, and network tools
- ▸Reduced false positive rate by 35% through alert tuning and correlation rules
- ▸Integrated threat intelligence feeds (MISP, AlienVault OTX) with SIEM platform
- ▸Created comprehensive incident reports for management and compliance teams
- ▸Performed malware analysis and forensic investigation of compromised systems
- ▸Developed documentation and training materials for L1 analysts
SOC Analyst Level 1
CyberDefense Solutions · Full-time
First-line security monitoring and alert triage in enterprise SOC. Monitored security events from SIEM, firewalls, IDS/IPS, and endpoint protection platforms. Escalated confirmed incidents to senior analysts.
Key Achievements:
- ▸Monitored and triaged 1000+ daily security alerts across multiple platforms
- ▸Achieved 95% SLA compliance for alert response times
- ▸Identified and escalated 50+ confirmed security incidents
- ▸Performed initial containment actions for phishing and malware incidents
- ▸Maintained detailed incident documentation and tracking in SOAR platform
- ▸Completed SANS SEC401 training and applied learnings to daily operations
IT Support Specialist / Junior Security Analyst
Enterprise Tech Services · Full-time
Provided technical support while transitioning to security role. Gained hands-on experience with security tools, vulnerability management, and basic incident response. Supported security team with log analysis and security patching.
Key Achievements:
- ▸Resolved 200+ IT support tickets monthly with 98% satisfaction rating
- ▸Assisted security team with vulnerability scanning and patch management
- ▸Performed basic log analysis for security investigations
- ▸Deployed security agents (EDR, DLP) across 500+ endpoints
- ▸Created user security awareness training materials
- ▸Obtained CompTIA Security+ certification while working full-time