>// SANJAY
DIAGNOSTICS: PROFILE.CFG

ABOUT THE ANALYST

BIOGRAPHICAL READOUT

I am a SOC Analyst L2 and Security Automation Developer with 4+ years of experience across Big4 firms (PwC, Deloitte USI) and Orbit Technologies. I specialize in threat monitoring, incident response, and detection engineering, bridging the gap between security analysis and production-deployed AI automation.

My focus stands apart from standard SOC workflows: I design and build custom phishing ingestion systems and local LLM modules that eliminate repetitive manual logs triage and alert fatigue. By scripting API connectors and automating host system investigations, I help security teams save 30-40% of their incident triage cycle time.

I configure and query correlation rules on Microsoft Sentinel, IBM QRadar, and Splunk, testing indicators of compromise and aligning endpoint security controls against the MITRE ATT&CK attack taxonomy matrix.

SECURITY ALIGNMENT

Core Focus: Incident Response & Security Automation
SIEM / XDR: Microsoft Sentinel, QRadar, Splunk, IBM XDR
EDR / EPP: SentinelOne, Microsoft Defender XDR, Carbon Black
Clearance Level: L2 Primary Escalation Analyst

CORE CAPABILITY TELEMETRY

SIEM & ENDPOINT SECURITY

  • Microsoft Sentinel 92%
  • IBM QRadar AQL 90%
  • Splunk SPL Log Queries 88%
  • SentinelOne / Defender XDR 90%

AUTOMATION & AI SEC

  • Python (IOC extraction, APIs) 95%
  • SOAR Playbook Workflows 88%
  • LLM Fine-Tuning (LLaMA 2) 85%
  • Adversarial AI threat checks 80%

LANGUAGES & NETWORKS

  • Palo Alto / Network Firewalls 85%
  • Okta IAM / Azure AD policies 86%
  • Git & GitHub Workflows 92%
  • SQL (MySQL, PL/SQL) 85%

VERIFIED CERTIFICATIONS VAULT

Microsoft SC-100

Microsoft Cybersecurity Architect Expert credential validating enterprise security designs, cloud infrastructures, and zero trust models.

STATUS: ACTIVE VERIFIED

Microsoft SC-200

Microsoft Security Operations Analyst credential verifying log correlation skills, KQL queries, Sentinel alerts, and EDR containment triggers.

STATUS: ACTIVE VERIFIED

Cisco Cybersecurity

Validates understanding of core network operations, routing topologies, threat response pathways, and infrastructure security metrics.

STATUS: ACTIVE VERIFIED

Ethical Hacking & Pentesting

Validates practical offensive security skills, penetration testing routines, system vulnerability checks, and security risk auditing.

STATUS: ACTIVE VERIFIED

Python Automation

Validates advanced Python automation scripts, parsing APIs, security log extractions, and host telemetry scrapers.

STATUS: ACTIVE VERIFIED

Git & GitHub Certified

Certifies version control competency, build pipelines integrations, security secrets management, and team deployment models.

STATUS: ACTIVE VERIFIED