Shehbaj Singh

Cyber Security Engineer | GRC Analyst | S+ | AWS CCP

New Brunswick, New Jersey, United States

About

🌐 Something for the Community: Sharing practical tips and knowledge through the #upskillyourself series, focusing on cyber sales, SOC monitoring, compliance, and more. Aiming to make cybersecurity interesting and engaging for all. Connect and explore posts on the journey to becoming a cybersecurity pro! As a SOC & GRC Analyst, skilled in continuous SIEM and EDR monitoring, procedure evaluations and Risk Assessments - NIST CSF. Expertise in managing cyber partnerships, integrating cutting-edge tools and solutions. Over 4 years of experience in the cybersecurity domain, working with MSP/MSSP data for SMBs and enterprise-level customers. Proficiency in security monitoring and incident response, creative threat intel research, and #upskillyourself advocacy. Conducting and participating in collaborative sessions across teams to enhance knowledge and add value. Belief in the power of the subconscious mind and the 3 C's: communication, collaboration, and creativity. Motto: Be the senior you wanted to have when you were a junior.

Experience

  • 22nd Century Technologies Inc. (3 yrs 8 mos)
    • Cyber Security Engineer
      Dec 2024 - Present · 1 yr 8 mos

      Staying current with cybersecurity trends and technologies to enhance system security. Collaboration with IT and cybersecurity teams to implement effective security policies. Implementing strong systems for enhanced security measures.

    • SOC Analyst
      Dec 2022 - Jan 2025 · 2 yrs 2 mos

      Specializing in Risk & Compliance Assessments using NIST Frameworks (800-53, CSF - 1.1, 2.0), SPRS, IT Resource Evaluations, CMMC and supporting FedRAMP, ISO 17020, SOC Readiness & certifications. Experienced in RFP technical writing, focusing on the technical methodology and approach, covering areas such as SOC operations, penetration testing, vulnerability assessments, firewall analysis, information security programs etc. Managing cyber partnerships, reviewing and integrating cutting-edge tools through POC/POV, and enhancing security stacks. Expertise in utilizing SOC tools to monitor internal and customer environments, creating and tuning custom SIEM use cases, and eliminating false positives. Advising Sales teams on best practices, providing technical training on SOC services, drafting targeted MSSP sales templates, and supporting technical proposal writing. Additionally, adept at promoting cyber presence on LinkedIn, updating websites with new services, and preparing for cyber conferences.

  • Security Consultant at Outline Systems India
    Oct 2022 - Oct 2022 · 1 mo

    Short interval engagement with the IT Team achieving ELK-Wazuh (Open Source Platform) implementation using Custom Dashboards and Use Cases.

  • SafeAeon Inc. (1 yr 7 mos)
    • Technical Sales Engineer
      Mar 2022 - Sep 2022 · 7 mos

      Elevated an increase in revenue by leading the discussion calls for product demonstration, technical presentation, and custom quotes/SOW. Trained and handled over 20 individuals/interns from the Technical and Sales teams.

    • SOC Analyst
      Sep 2021 - Mar 2022 · 7 mos

      Performed Rule Tuning and Triage and checked for abnormal activities based on event correlation. Researched on latest cyber-attacks, Attack Vectors, IOC's and IOAs – created Use cases and lists of malicious Hashes for blacklisting on the EDR Consoles.

    • SOC(Level 1) Analyst Intern
      Mar 2021 - Aug 2021 · 6 mos

      Supported 24/7 SOC by utilizing Security tools to assess threats, validate and escalate Alerts based on established escalation procedures on a strict SLA within 45+ client's environment.

  • Software Developer Internship at Auribises Technologies Pvt Ltd
    Jun 2019 - Aug 2019 · 3 mos

    Developed a Face Mask Detection system with a team of 5 members as part of final year project submission. Languages used – Python, ML, and AI