S*****u

Security Operations Center (SOC) Analyst with nearly 3 years of experience in IT security operations, specializing in real-time monitoring, log analysis, and incident response. Proven ability to analyze logs from SIEM tools including Splunk, QRadar, and Microsoft Sentinel, and troubleshoot logging issues. Experienced in handling and investigating alerts from EDR tools such as Microsoft Defender, SentinelOne, and CrowdStrike. Expertise in incident handling, threat detection, network traffic monitoring, identifying and classifying attempted compromises, and applying the MITRE ATT&CK framework to understand attacker behavior. Responsible for escalating security incidents to L2/L3 analysts and ensuring timely closure, contributing to effective threat hunting and security posture enhancement.