POOJA YG

Self discplined SOC Analyst with 2+ years of experience seeking a challenging position in a Security Operations Center (SOC). Seeking an opportunity to contribute my skills and knowledge to a dynamic organization focused on protecting critical assets and mitigating security incidents.

• Listening Music
• Cooking
• Travelling
• Laughing

• Splunk Fundamentals, Splunk User Behavior Analytics
• Qualys: Endpoint Detection and Response
• SOC Analyst certification from Cyber desk point
• Code Red: Ethical Hacking Essentials
• Aviatrix Certified Engineer: Multicloud Network Associate
• AWS: AWS Cloud Practitioner Essentials
• Cisco: Cyber security course
• Qualys: Basic concept of Vulnerability Management

• SIEM Tool: ProAct/Splunk
• Malware analysis tools: Any.Run, Anomali sandbox
• OSINT: Virus totral, AbuseIPDB, IPVoid,IBM X-Force Exchange, Paloalto URL filtering etc,.

• Security Information and Event Management (SIEM) Tools: Proficient in working with SIEM platforms such as ProAct to monitor and analyze security events and incidents.
• Log Analysis: Skilled in analyzing logs from various sources, including network devices, servers, firewalls, and intrusion detection/prevention systems, to identify security incidents and anomalies.
• Incident Response: Experienced in incident handling and response, including containment, eradication, and recovery following established procedures and best practices.
• Threat Detection: Proficient in identifying and investigating potential security threats including malware, unauthorized access attempts, data exfiltration and insider threats.
• Conducted investigations into security Incidents performing root cause analysis and recommending appropriate remediation actions.
• Malware Analysis: Basic knowledge of static and dynamic malware analysis techniques to identify and mitigate malicious software.
• Analytical Thinking: Strong problem-solving abilities and the capability to analyze complex security incidents, identify patterns, and make informed decisions.
• Incident Reporting and Documentation: Proficient in creating detailed incident reports, documenting findings, actions taken, and recommendations for process improvements.
• Security Tools: Familiarity with a range of security tools such as Antivirus, Endpoint Protection, Data Loss Prevention (DLP) and Network Traffic Analysis (NTA) tools.
• Security Awareness Training: Ability to deliver security awareness training to employees promoting best practices and raising awareness of potential threats.
• Incident Ticketing Systems: Proficient in using incident ticketing systems to track and manage security incidents ensuring timely resolution.