π SOC Analyst I | Cybersecurity Professional | Threat Detection & Incident Response
I am a cybersecurity professional with hands-on experience in Security Operations, specializing in threat monitoring, alert triage, and incident response. I work closely with security tools, logs, and telemetry to identify malicious activity, reduce risk, and support secure business operations.
I possess a strong foundation in cybersecurity fundamentals, complemented by practical experience in SOC environments, IT support, and security tooling. Iβm passionate about continuous learning, security automation, and improving detection capabilities.
- Monitor, triage, and investigate security alerts across multiple sources
- Perform log analysis and correlate events to identify potential threats
- Escalate and support incident response activities following defined procedures
- Work with SIEM and endpoint security tools to support detection and response efforts
- Contribute to the continuous improvement of security monitoring and operational workflows
Security & Monitoring
- SIEM: Splunk, Microsoft Sentinel
- Endpoint Security: Microsoft Defender
- IDS/IPS, Threat Intelligence, Log Analysis
- Incident Response & Alert Handling
Systems & Infrastructure
- Windows & Linux
- Active Directory, Intune
- Networking fundamentals & security controls
Dev & Automation
- Python
- Built and configured a Splunk lab for log ingestion and analysis
- Deployed IDS/IPS solutions with live threat feeds
- Vulnerability scanning and analysis using open-source security tools
- Data analysis and visualization of cybersecurity incidents using PowerBI & Tableau
- Threat hunting and detection engineering
- Security automation and SOAR workflows
- Cloud and enterprise security best practices
- π§ Email: nisarg2198@gmail.com
- πΌ LinkedIn: https://linkedin.com/in/soni-nisarg
- π GitHub: https://github.com/nisargs
I am always open to learning opportunities, security discussions, and collaborations in cybersecurity and security operations.

