Principal Cybersecurity Engineer
Current• Architected and deployed Microsoft Sentinel SIEM as the central SOC tool enabling analysts to protect, detect, and respond. Automated the integration of a diverse set of data sources & tools such as AWS (Guard Duty, WAF, etc.), Microsoft 365, CrowdStrike, Palo Alto firewalls, Okta, Zscaler, and multiple threat intelligence sources. • Integrated MDR vendor into our SOC, leveraging Cribl for log parsing and routing, Azure Data Explorer as our security data lake, and ServiceNow SIR module for security incident management.• Deployed Microsoft Purview Insider Risk Management to identify and mitigate malicious and inadvertent activities, incorporating pertinent HR data from Workday to enhance organizational security.• Contributed to compliance certifications by collaborating with our GRC team to provide evidence for multiple (HITRUST, NIST CSF, ISO) audits. Actively participated in addressing findings during and after independent reviews.