Skip to content
View ijaz-aj's full-sized avatar
🎯
Focusing
🎯
Focusing

Block or report ijaz-aj

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
ijaz-aj/README.md

Hi, I'm Ijaz 👋

SOC Analyst → Detection Engineer | SIEM · MITRE ATT&CK · Detection-as-Code

I'm a security analyst focused on detection engineering — writing, testing, and tuning detections so defenders catch real attacker behaviour, not just noise. I'm building my skills through hands-on, lab-based projects that mirror how modern SOCs actually work.


🔭 What I'm working on

  • Building a detection-as-code pipeline: Sigma rules, version control, and CI testing, mapped to MITRE ATT&CK.
  • Practising threat hunting and detection tuning in a home lab.
  • Documenting my detections so they're reproducible and reviewable.

🎯 Focus areas

Detection Engineering · Threat Hunting · SIEM · MITRE ATT&CK · Sigma · Log Analysis

🛠️ Tools & tech

  • SIEM / Detection: Elastic Security, Sumo Logic, Microsoft Sentinel
  • Detection-as-code: Sigma, Git, GitHub Actions (CI)
  • Scripting: Python
  • Frameworks: MITRE ATT&CK

🌱 Currently learning

Detection engineering workflows, CI/CD for detections, and KQL (Microsoft Sentinel)


📫 Connect

🔎 Featured project: detection-as-code — my hands-on detection engineering portfolio.

Pinned Loading

  1. detection-as-code detection-as-code Public

    Detection-as-Code portfolio: version-controlled Sigma rules mapped to MITRE ATT&CK, validated in a home lab with Atomic Red Team, and shipped through CI/CD.

    Python