Experience

NCC Group Ltd

• Lead a SOC team within a high-profile project, joining early to help define operational standards.
• Developed standard playbooks for out-of-hours coverage, escalation, and onboarding.
• Conduct regular 1:1s, providing mentorship and tracking analyst growth.
• Interview and onboard new analysts as the SOC expands.
• Collaborate across teams to align detection, incident response, and service management processes.

Adarma Security

• Acted as Shift Lead for a five-person team in a 24/7 MSSP SOC.
• Served as first responder to live client incidents, ensuring rapid containment and communication.
• Mentored and trained new hires on alert triage, threat hunting, and workflow efficiency.
• Created and maintained playbooks and use-case documentation for key client environments.
• Conducted proactive threat hunts and process reviews to improve SOC maturity.

Adarma Security

• Investigated and triaged alerts across multiple enterprise clients.
• Used Splunk, CrowdStrike Falcon, and Microsoft Sentinel for detection and response.
• Performed threat hunting and log enrichment to improve visibility.
• Supported escalation and case documentation for incident response workflows.

ClamXAV

• Shadowed a senior malware analyst focusing on macOS threats.
• Conducted static and dynamic analysis of malware samples.
• Developed a Python automation script using Venator-Swift and VirtualBox to streamline analysis.