Security Operations Center Analyst
Current● Performed analysis of log files via Q-RADAR and SPLUNK SIEM solutions● Monitored and analyzed EDR CROWDSTRIKE alerts, performed root cause analysis ofsecurity incidents, created tickets for incidents with the JIRA ticketing system● Assisted in incident response activities such as host triage and retrieval, malware analysis,remote system analysis, end-user interviews, and remediation efforts● Performed phishing analysis for determination of the legitimacy of files/domains/emails usingtools such as VIRUSTOTAL, ANYRUN, VIEWS and MX Toolbox.● Investigated and resolved incidents of unauthorized access to sensitive information.● Utilized penetration testing skills using Kali Linux-METASPLOITABLE and Bee-Box onUTM.● Investigated PCAP files with Wireshark and triaged details with SENTINEL ONE todetermine infected hosts and composed IOC for executive summary reports.