Monitored and analyzed security alerts generated by Elastic Kibana, Sentinel One, Box shield Cisco Umbrella and Proof point TAP/TRAP cases. Collaborated with cross-functional teams during incident response processes to conduct root cause analysis and prevent future occurrences. Handled endpoint security cases using sentinel One, performing malware analysis and remediation. Analyzed DNS security logs from Cisco Umbrella, Identifying and mitigating malicious domain activities and investigated Box Shield alerts to identify unauthorized access risks and sensitive data exposures Managed email threat cases from Proof point TAP/TRAP, including phishing, spoofing and malware attempts. Investigated and resolved Web Application Firewall (WAF) alerts using Kibana dashboards, ensuring secure application access. Proficient in leveraging the MITRE ATT&CK framework to analyze adversary tactics, techniques, and procedures (TTPs), enhancing threat detection, incident response, and security operations. Participated in Security awareness training sessions for employees to enhance awareness about potential threats and promote safe cyber security practices across the organization. Worked closely with SOC team members during high severity incidents, ensuring timely detection, analysis and containment of security threats.

Proactively monitored security offenses in IBM Qradar and prepared various Standard Operating Procedures /Work instruction for efficient investigation. Proficient in developing and implementing custom use cases in QRadar to enhance threat detection, improve security monitoring, and optimize correlation rules for effective incident response. Actively monitored the alerts that include the IDPS/WAF signatures, malware analysis, network traffic, incident response and other resources (Security News, Security Trends) that provide an insight to filter out suspicious activity and take counter-measures. Utilized expertise in QRadar to produce Use cases, fine tuning rules, and integrating log sources. Solved Security Incidents raised by team and client as per defined SLA with justified evidence.