Information Security Analyst
Current• Conducted comprehensive analysis and reporting of cyber threats, network incidents, and alert activities, employing security event correlation across multiple information sources.• Designed and implemented data loss prevention strategies to safeguard sensitive information against unauthorized access.• Developed and executed incident response plans and playbooks, including regular drills to ensure preparedness and responsiveness.• Performed security gap analyses and managed network security tools such as IDS/IPS and IBM QRadar to enhance security posture.• Monitored and analyzed insider threats and external data feeds, using automated systems for event detection, correlation, and triage.• Investigated threat intelligence to deduce techniques, tactics, and procedures (TTPs) of threat actors through detailed technical analysis.• Deployed and managed SIEM/SOAR solutions including Splunk SOAR, Log360, and Wazuh; supported SOC2 compliance initiatives.• Administered AWS cloud environments adhering to strict security protocols and standards, and broadened skills in Google Cloud Platform security management.• Led penetration testing and vulnerability assessment to evaluate and enhance security measures, and conducted internal phishing simulations and Cybersecurity awareness training for the organization.• Engaged in continuous professional development by keeping abreast of the latest cybersecurity trends, vulnerabilities, and remediation strategies, focusing on mastering the OWASP top 10 vulnerabilities.