Skip to content
View rishipatelsec's full-sized avatar
  • Joined Oct 2, 2025

Block or report rishipatelsec

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 250 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Rishipatelsec/README.md

Rishi Patel | Security Operations Engineer

LinkedIn Email

πŸ‘¨β€πŸ’» About Me

Security Operations Engineer specializing in AI-driven threat detection and SIEM engineering. Building intelligent security systems that combine traditional detection methods with machine learning to protect hybrid cloud infrastructure.

Currently developing automated SOC capabilities that achieve sub-5-minute threat detection with 85% accuracy.

πŸŽ“ Certifications

πŸ” CompTIA Security+        βœ“ Certified
πŸ” CompTIA CySA+            βœ“ Certified  
πŸ›‘οΈ  ISCΒ² Certified in Cybersecurity (CC)  βœ“ Certified

πŸ› οΈ Technical Skills

SIEM & Security Platforms

  • Splunk Enterprise (Advanced SPL, Dashboard Design, Alert Engineering)
  • TheHive (Case Management & Incident Response)
  • AWS Security Services (CloudTrail, GuardDuty, Security Hub)

Security Operations

  • Detection Engineering (MITRE ATT&CK Mapping)
  • Incident Response & Forensics
  • Threat Hunting & Analysis
  • Log Analysis & Correlation

AI/ML for Security

  • Anomaly Detection (Isolation Forest, Unsupervised Learning)
  • Feature Engineering for Security Data
  • Python (pandas, scikit-learn, NumPy)

Infrastructure & Automation

  • Windows Security Monitoring (Sysmon, Event Logs)
  • Cloud Security (AWS IAM, S3, VPC)
  • Scripting (Python, PowerShell, Bash)
  • Docker & Containerization

πŸš€ Featured Project

Hybrid Anomaly Detection SOC

AI-Powered Security Operations Center with Real-Time Threat Detection

Enterprise-grade SOC implementation combining traditional SIEM with machine learning for automated threat detection and response.

Key Achievements:

  • ⚑ 3.2 min MTTD - 99.8% faster than industry average
  • 🎯 85% detection accuracy - Validated with Atomic Red Team
  • πŸ›‘οΈ 95% MITRE ATT&CK coverage - 151/159 techniques
  • πŸ€– 70% workload reduction - Through intelligent automation

Tech Stack: Splunk Enterprise | Python | Isolation Forest ML | TheHive | Sysmon | AWS CloudTrail

View Project β†’

πŸ”§ Technologies

SIEM          β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–‘  95%
Detection     β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–‘β–‘  90%
Python        β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–‘β–‘β–‘  85%
Cloud Security β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–‘β–‘β–‘β–‘  80%
AI/ML         β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–‘β–‘β–‘β–‘β–‘  75%

πŸ“« Let's Connect

Open to opportunities in Security Operations, Detection Engineering, and Threat Hunting roles.

"Building the future of automated security operations, one detection at a time."

Popular repositories Loading

  1. Rishipatelsec Rishipatelsec Public

  2. hybrid-anomaly-detection-soc hybrid-anomaly-detection-soc Public

    Shell