New Brunswick, New Jersey, United States
🌐 Something for the Community: Sharing practical tips and knowledge through the #upskillyourself series, focusing on cyber sales, SOC monitoring, compliance, and more. Aiming to make cybersecurity interesting and engaging for all. Connect and explore posts on the journey to becoming a cybersecurity pro! As a SOC & GRC Analyst, skilled in continuous SIEM and EDR monitoring, procedure evaluations and Risk Assessments - NIST CSF. Expertise in managing cyber partnerships, integrating cutting-edge tools and solutions. Over 4 years of experience in the cybersecurity domain, working with MSP/MSSP data for SMBs and enterprise-level customers. Proficiency in security monitoring and incident response, creative threat intel research, and #upskillyourself advocacy. Conducting and participating in collaborative sessions across teams to enhance knowledge and add value. Belief in the power of the subconscious mind and the 3 C's: communication, collaboration, and creativity. Motto: Be the senior you wanted to have when you were a junior.
Staying current with cybersecurity trends and technologies to enhance system security. Collaboration with IT and cybersecurity teams to implement effective security policies. Implementing strong systems for enhanced security measures.
Specializing in Risk & Compliance Assessments using NIST Frameworks (800-53, CSF - 1.1, 2.0), SPRS, IT Resource Evaluations, CMMC and supporting FedRAMP, ISO 17020, SOC Readiness & certifications. Experienced in RFP technical writing, focusing on the technical methodology and approach, covering areas such as SOC operations, penetration testing, vulnerability assessments, firewall analysis, information security programs etc. Managing cyber partnerships, reviewing and integrating cutting-edge tools through POC/POV, and enhancing security stacks. Expertise in utilizing SOC tools to monitor internal and customer environments, creating and tuning custom SIEM use cases, and eliminating false positives. Advising Sales teams on best practices, providing technical training on SOC services, drafting targeted MSSP sales templates, and supporting technical proposal writing. Additionally, adept at promoting cyber presence on LinkedIn, updating websites with new services, and preparing for cyber conferences.
Short interval engagement with the IT Team achieving ELK-Wazuh (Open Source Platform) implementation using Custom Dashboards and Use Cases.
Elevated an increase in revenue by leading the discussion calls for product demonstration, technical presentation, and custom quotes/SOW. Trained and handled over 20 individuals/interns from the Technical and Sales teams.
Performed Rule Tuning and Triage and checked for abnormal activities based on event correlation. Researched on latest cyber-attacks, Attack Vectors, IOC's and IOAs – created Use cases and lists of malicious Hashes for blacklisting on the EDR Consoles.
Supported 24/7 SOC by utilizing Security tools to assess threats, validate and escalate Alerts based on established escalation procedures on a strict SLA within 45+ client's environment.
Developed a Face Mask Detection system with a team of 5 members as part of final year project submission. Languages used – Python, ML, and AI