• Designed and executed custom analytics rules, incidents, playbooks, notebooks, and workbooks within Azure Sentinel to proactively detect security threats and anomalies.• Utilized KQL and additional tools for crafting advanced threat hunting queries, enabling proactive threat identification and in-depth security incident investigation.• Engineered and deployed Azure Logic Apps for automating 80% of Security Alerts mitigation, streamlining response time and reducing manual intervention.• Administer all SOC systems and tools.• Configured and maintained Microsoft Security Service Products, including Defender for Endpoints and Microsoft Defender for Cloud Apps, ensuring seamless integration with Azure Sentinel for optimal protection.• Established a vulnerability disclosure program via HackerOne, liaising with cross-functional teams to expedite remediation and minimize attack surfaces for web and mobile applications.• Designed data protection-focused compliance automations, mitigating the risk of data leakage or inadvertent exposure of sensitive information, and enhancing overall data security.• Fostered collaboration with Tier 2 analysts and mentored junior team members in incident response, vulnerability management, and engineering tasks to promote skill development and knowledge sharing.

• Assisted in the implementation of the Information Security Program by recommending comprehensive solutions, controls, policies, and procedures to safeguard globally distributed energy systems. Demonstrated hands-on expertise in managing security tools, including endpoint protection, data filtering (Web, Data, Email), and SIEM/log management technology.• Implemented and configured Azure Sentinel and related resources for seamless integration of InfoSec solutions logs and alert generation.• Delivered first and second level support and analysis during and post-security incidents, ensuring timely resolution and mitigation.• Evaluated security technologies, tools, and services, providing strategic recommendations to the broader security team.• Served as an Incident Response Manager, coordinating technical investigations, mitigation, and remediation, while ensuring proper detection, documentation, investigation, and resolution of Information Security incidents.• Performed forensic analysis of security-related incidents in compliance with guidance from the organization's counsel, human resources, or law enforcement, as applicable.• Participated in information security projects, encompassing security awareness, privileged information management, identity management, SOC services, and Penetration Testing.• Created tools, SOP playbooks, utilities, and reports for detecting, alerting, and reporting security issues and policy violations, enhancing overall security posture.• Developed an Incident Response process adhering to NIST/F3EAD frameworks, streamlining response and remediation efforts.• Collaborated with other security teams to design, deploy, and automate governance of security standards, fostering a unified approach to security management.

• Assisted with the migration from On-prem Active Directory to Azure Active Directory, transitioning from File shares to OneDrive, and enhancing overall cloud capabilities.• Conducted manual penetration tests, effectively communicating findings to Senior Management for informed decision-making.• Performed web application, mobile application, and network penetration tests to identify and mitigate vulnerabilities.• Assessed security awareness training effectiveness through social engineering techniques, promoting a security-conscious workforce.• Served as a CrowdStrike Falcon Administrator, providing advanced detection, prevention, monitoring, and search capabilities to defend against sophisticated threats and adversaries using a SaaS-based, next-generation endpoint protection solution.• Implemented security technologies to safeguard all EPES assets, strengthening the organization's security posture.• Enhanced developer productivity by upgrading and maintaining 350+ desktops and servers using imaging software (MDT), ensuring an efficient work environment.• Spearheaded efforts to ensure security updates, inventory, and compliance requirements were met, minimizing potential risks.• Diagnosed and resolved Windows processing problems, implementing solutions to increase company efficiency.• Established and managed a helpdesk ticketing system to effectively manage calls and track network issues.• Provided 3rd level technical support, supervision, project management, and assistance in managing the information technology infrastructure for over 300 employees in the transportation organization through analysis, diagnosis, and resolution of IT-related issues.• Collaborated with external/internal support organizations to address and resolve challenges with the organization's systems and infrastructure.• Troubleshot and resolved service desk cases related to information security issues, mitigating potential threats and vulnerabilities.