Summary
Overview
Work History
Education
Skills
Websites
Personal Information
Languages
Technical Skills
Timeline
Generic

Sanjay B

Bangalore

Summary

Senior SOC / Security Analyst with 6+ years of progressive experience across L1-L3 SOC operations in global 24/7 environments. Proven expertise in leading complex incident investigations, advanced threat hunting, detection engineering, and SIEM/XDR optimization. Strong background in root cause analysis, MITRE ATT&CK mapping, stakeholder communication, and mentoring junior analysts to improve SOC maturity and reduce organizational risk.

Overview

6
6
years of professional experience

Work History

Security Analyst II (L3 SOC)

Cyderes
Bengaluru
05.2024 - Current
  • Lead end-to-end investigations of high-severity incidents including ransomware, BEC, malware outbreaks, and targeted phishing campaigns.
  • Perform advanced root cause analysis to identify initial access vectors, lateral movement, privilege escalation, and persistence mechanisms.
  • Leverage SIEM, EDR, and XDR platforms (SentinelOne, Palo Alto XDR) for advanced log correlation, telemetry enrichment, and anomaly detection.
  • Develop, tune, and optimize detection rules, alerts, and dashboards to reduce false positives and improve MTTD.
  • Conduct proactive threat hunting across endpoint, network, cloud, and identity telemetry aligned to MITRE ATT&CK techniques.
  • Correlate internal telemetry with OSINT and commercial threat intelligence to identify emerging threats.
  • Identify detection gaps and recommend strategic improvements to security controls and monitoring coverage.
  • Contribute to the development and continuous improvement of SOC playbooks, SOPs, and response workflows.
  • Produce detailed incident reports, executive summaries, and post-incident reviews.
  • Act as escalation point and mentor for junior analysts.

Security Analyst

CISCO Meraki - TCS (Contract)
Bengaluru
05.2024 - 04.2025
  • Performed deep-dive analysis of triggered alerts using SIEM and endpoint security tools.
  • Investigated endpoint, network, and cloud-based security incidents.
  • Correlated logs from multiple sources to validate indicators of compromise (IOCs).
  • Supported IR teams with remediation guidance and evidence-based analysis.
  • Maintained SOC documentation including incident reports, SOPs, and playbooks.
  • Assisted in vulnerability scanning and remediation efforts.

Network Optimization Specialist / SOC Analyst

Yahoo
Bangalore
11.2021 - 01.2024
  • Monitored and investigated security alerts using SIEM and EDR tools.
  • Analyzed logs from web servers, application servers, databases, IDS/IPS, and email gateways.
  • Investigated malware, phishing, spam, and account takeover (ATO) incidents.
  • Conducted proactive threat hunting based on SOC hypotheses.
  • Participated in all phases of incident handling including containment, eradication, recovery, and post-incident review.
  • Performed root cause analysis of incidents and recurring security issues.
  • Generated daily, weekly, and monthly security reports for management.

Analyst

LinkedIn (Contract)
Bangalore
09.2019 - 09.2021
  • Monitored UEBA and SIEM alerts for suspicious activity.
  • Investigated security alerts using Splunk SIEM and EDR tools.
  • Escalated confirmed incidents according to incident response procedures.
  • Assisted IR and SME teams with remediation support.
  • Created shift handovers, investigation documentation, and SOC playbooks.

Education

Bachelor's Degree -

CVRU University
01.2017

Skills

  • Advanced Incident Response (L2/L3)
  • Complex Security Incident Investigation
  • SIEM Monitoring & Log Correlation
  • EDR / XDR Threat Detection & Response
  • Proactive Threat Hunting & IOC Development
  • MITRE ATT&CK, Kill Chain & TTP Mapping
  • Malware, Phishing & BEC Analysis
  • Network, Endpoint & Cloud Security
  • SOC Playbooks, SOPs & Process Improvement
  • Stakeholder Communication & Reporting
  • Mentoring & Knowledge Transfer
  • SIEM: Splunk
  • SIEM: Palo Alto XSOAR
  • SIEM: Google Chronicle
  • EDR / Security Tools: SentinelOne
  • EDR / Security Tools: Palo Alto XDR
  • EDR / Security Tools: Cisco AMP
  • Cloud & Platforms: AWS
  • Threat Intelligence: Recorded Future
  • Threat Intelligence: Talos
  • Threat Intelligence: BeeHive
  • Threat Intelligence: WildFire
  • Threat Intelligence: Proofpoint TAP
  • Ticketing & Workflow: Jira
  • Ticketing & Workflow: ServiceNow

Websites

Personal Information

Title: Security / SOC Analyst

Languages

  • English, Advanced
  • Hindi, Advanced
  • Kannada, Advanced

Technical Skills

Splunk, Palo Alto XSOAR, Google Chronicle, SentinelOne, Palo Alto XDR, Cisco AMP, SNORT, AWS, Recorded Future, Talos, BeeHive, WildFire, Proofpoint TAP, Jira, ServiceNow

Timeline

Security Analyst II (L3 SOC)

Cyderes
05.2024 - Current

Security Analyst

CISCO Meraki - TCS (Contract)
05.2024 - 04.2025

Network Optimization Specialist / SOC Analyst

Yahoo
11.2021 - 01.2024

Analyst

LinkedIn (Contract)
09.2019 - 09.2021

Bachelor's Degree -

CVRU University

Similar Profiles

CREATE PROFILE
Sanjay B