SOC Analyst (4+ years):
[+] Experienced SOC Analyst with 4+ years of experience.
[+] Skilled in monitoring, detecting, and responding to security incidents.
[+] Proficient in security tools such as SIEM, IDS/IPS, firewalls, and endpoint security tools.
[+] Knowledgeable in network security, protocols, and vulnerabilities.
[+] Capable of analyzing and interpreting security events and incidents.
[+] Experienced in Incident Response (IR) and Computer Security Incident Response (CSIRT) processes.
[+] Proficient in rules creation and rules optimization to improve threat detection capabilities.
[+] Experienced in working with Crowdstrike Falcon EDR, Symantec Endpoint Protection, Fortinet Firewall, and Pfsense for endpoint protection and network security.
[+] Skilled in infrastructure management, including fine-tuning and optimization.
[+] Proficient in visualization and dashboard creation to provide clear and concise security metrics to stakeholders.
[+] Experienced in Jira ticketing and TheHive case management for incident tracking and resolution.
[+] Familiarity with Shuffler SOAR Playbooks and Tines SOAR Playbooks for security orchestration and automation.
[+] Familiarity with Active Directory and its integration with security tools.
[+] Experienced in working with Wazuh for threat detection and response.
Elastic Stack Expert (3+ years):
[+] Proficient in Elasticsearch, Logstash, Kibana, SIEM, Beats, Wazuh, Elastalert, and other Elastic Stack products.
[+] Experienced with Elasticsearch since its version 7 and has implemented large-scale implementations dealing with billions of documents and TBs of data.
[+] Skilled in organizing, cleaning, visualizing, and securing data on a large scale using Elasticsearch.
[+] Expert in setting up fully functional, large-scale SIEM using Elastic Stack (ELK) and has implemented log ingestion, thread hunting, alerting, reporting, etc. for SIEM.
[+] Proficient with Beats, Wazuh, ElastAlert, and XPack for securing Elastic Stack.
[+] Offers services for implementing, upgrading, maintaining, optimizing, or providing proof of concept around ELK.
API/Integration Developer (2+ years):
[+]Developed and deployed custom Python-based integrations and Logstash ETL pipelines, facilitating seamless data ingestion into Elasticsearch for a diverse range of customer applications. This resulted in improved data availability and real-time monitoring capabilities, enhancing overall system reliability.
[+] Collaborated with customers to design and implement data ingestion solutions tailored to their specific requirements, demonstrating a deep understanding of Python scripting, Logstash, and Elasticsearch data modeling. These efforts contributed to optimizing application performance and enabling data-driven decision-making.
Linux Administration (4+ years):
[+] Proficient in Linux Administration with 4+ years of experience.
[+] Skilled in managing Linux servers, troubleshooting, and system optimization.
[+] Experienced in network configuration, security, and performance tuning.
[+] Knowledgeable in Shell Scripting, Bash Scripting, and Linux Command Line Interface (CLI).
[+] Proficient in Virtualization, Docker, Kubernetes, and Ansible.
[+] Capable of handling multiple tasks and projects simultaneously.