• Monitor and manage information security systems such as Cylance EDR, Rapid 7 IDR SIEM/FIM, Microsoft Active Directory and Azure Active Directory
• Led full i----------- response lifecycle, efficiently responding to and mitigating security attacks
• Created comprehensive i----------- response and gap analysis reports for continuous improvement
• Produced and utilized threat intelligence reports to stay ahead of emerging threats
• Conducted proactive threat hunting using SIEM and Velociraptor
• Created and refined detection rules to improve accuracy and reduce false positives
