Cyber Security Analyst
• Monitored and analyzed security events and alerts from various sources, including SIEM, IDS, and IPS.• Implemented secure cloud configurations using Azure Private Link, Network Security Groups, Microsoft Defender for Cloud, and Azure Regulatory Compliance for NIST 800-53, PCI DSS, and HIPAA/HITRUST, resulting and an 82% reduction in security incidents over the same time interval.• Troubleshoot and support Microsoft Azure services, including Microsoft Sentinel (SIEM), Virtual Machines, Azure Monitor, and Azure Active Directory, resolving 80% to 95% of the issues per week on average. • Developed KQL queries to support Log Analytics Workspace in Microsoft Sentinel, resulting in 20 to 30 new SIEM dashboards in workbooks.• Conducted log analysis and investigations to identify potential security incidents or breaches.• Utilized BashShell and SQL to extract and analyze data from logs and security systems.• Worked with virtual machines in a cloud environment to assess and secure systems and networks.• Collaborated with cross-functional teams to implement security measures, including the principle of least privilege, for protecting sensitive data and systems.• Participated in vulnerability assessments and penetration testing to identify infrastructure and application weaknesses.• Leveraged SOAR and SIEM aggregation tools to respond to incidents and monitor network alerts.• Assisted in incident response activities, such as containment, eradication, and recovery.• Stayed updated with the latest cybersecurity threats, vulnerabilities, and best practices.• Contributed to the development and implementation of security policies and procedures.• Provided recommendations for improving security controls and processes.