• Research and Backend Developing for in-house SIEM SayCure.• Engage in secure software development practices, conducting code reviews, and providing guidance to development teams on writing secure code.• Integrate threat modeling into the overall security strategy of the organization.• Implement security orchestration and automation to streamline repetitive tasks, allowing for faster and more consistent response to security events.• Use scripting and automation tools to enhance efficiency in security-related processes.• Create custom Docker images for each SOC tool based on lightweight base images.• Optimize Docker files for minimal image size and efficient resource utilization.• Utilize a container orchestration tool like Kubernetes or Docker Swarm for managing and scaling containerized SOC services.• Define clear interfaces and communication protocols between these containers.• Embrace a microservices architecture to enhance scalability, flexibility, and ease of maintenance.

• Implemented and configured SIEM solutions according to the client's specific needs.• Developed parsers and advanced rules to detect security threats. • Customized pre-existing SOAR scripts to align with particular use cases.• Executed effective proof-of-concepts (PoCs) that showcased the benefits and viability of proposed solutions.• Provided training to Engineering personnel to enhance their skill set. • Produced in-depth reports that summarized discoveries and offered practical suggestions to help managed service clients enhance their security stance. • Worked in a team of SOC engineers, ensuring the delivery of top-quality outcomes.• Customized, configured, and deployed both open-source SIEM products like Wazuh, ELK, Graylog and industry-standard solutions like LogRhythm and LogPoint to align with clients' specific requirements. • Analyzed security events to detect threats across network, endpoint, and other connected devices.• Developed and fine-tuned playbooks and automation to ensure reliable performance during analysis and incident response. • Utilized scripting in both bash and Python. • Explored a range of products to address various needs and stayed up-to-date with current security developments, evolving threats, and followed vendor training and industry certification.