Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Hari Pan

Langley,BC

Summary

Experienced Cyber Security Analyst specializing in SOC operations with a strong background in Endpoint Security Detection, Incident Response, Incident Management, Security operations, and maturity assessments. Skilled in conducting tabletop exercises and risk assessments to enhance overall security posture. Adept at identifying and mitigating security threats to protect critical assets and ensure compliance with industry regulations. Passionate about staying current on emerging cyber threats and implementing proactive measures to safeguard organizational data.

Overview

5
5
years of professional experience
1
1
Certification

Work History

Cyber Security Analyst

Iron Spear Information Security Ltd
10.2024 - 05.2025
  • Performed initial triage for alerts triggered on client's assets and coordinated with respective teams to perform further investigations based on initial triage data
  • Developed daily, weekly, and monthly reports on status of event feedback that also includes metrics that include feedback for improving security posture
  • Investigated alerts using defender for endpoint and Sentinel
  • Monitored and Investigated network and security alerts using Cisco Meraki and Armis
  • Played active role in developing technical and procedural documentation within Security Operations Center (SOC), promoting exchange of knowledge and establishment of standardized procedures
  • Conducted Vulnerability scans using Nessus Vulnerability scanning platform and prioritized vulnerabilities based on risk and Impact
  • Experience working with Wireshark for Network Analysis
  • Performed Root-cause analysis for Various Incidents and developed Incident mitigation strategies
  • Developed Unique SIEM Dashboards and Playbooks
  • Participated in 24/7 on-call rotation to provide support for incident escalation
  • Collaborated with third-party penetration testers to find risks and security threats
  • Performed phishing simulation to identify users who are prone to phishing and conducted security awareness training to report phishing emails.
  • Conducted NIST framework-based cyber security risk assessments and developed detailed reports to showcase detailed gaps, recommendations & a roadmap to improve cyber security postures
  • Developed risk exception documentation for OT systems as per the client requirements
  • Developed customized tabletop exercise scenarios to asses response readiness and improve incident response strategies
  • Reduced operational costs by automating repetitive tasks using scripting languages such as PowerShell or Python.
  • Participated in regular threat-hunting activities aimed at proactively identifying potential risks.

SOC Analyst

BluSapphire
01.2020 - 09.2023
  • Investigated and Performed root-cause analysis for different security Incidents as per SLA
  • Engaged in discussions to address cybersecurity issues and provided input
  • Assisted in creating playbooks for all typical cyber security incidents with SOC and IR team
  • Generated weekly status reports related to security events
  • Proficient in responding to security incidents and implementing necessary solutions
  • Utilized Security Information and Event Management (SIEM), Intrusion Detection & Prevention (IDS / IPS), Data Leakage Prevention (DLP), forensics, sniffers and malware analysis tools
  • Knowledge of Azure cloud and related technologies like Microsoft Defender, KQL, Sentinel, Vm, and Powershell
  • Triaged alerts using Microsoft Defender and Sentinel
  • Manage Splunk (SIEM) configuration files like input, props, transforms, etc
  • Centralizing storage and interpretation of logs using Splunk (SIEM) System
  • Capable of identifying, analyzing, and resolving vulnerabilities using Threat Hunting and MITRE ATT&CK framework
  • Assisted in various aspects of security, such as threat intelligence, threat hunting, EDR, email security, and cloud security.
  • Conducted Iso27001 control gap assessment to Identify gaps In Iso27001 controls across enterprise
  • Reduced false alarms by fine-tuning intrusion detection system configurations based on historical analysis of incidents.
  • Enhanced network security by monitoring systems for potential threats and vulnerabilities.
  • Collaborated with cross-functional teams to ensure seamless integration of IAM solutions into existing infrastructure.
  • Partnered with DevOps teams to integrate security testing into CI/CD pipeline early in development cycle.
  • Improved internal controls by identifying and addressing potential risk factors in business processes.
  • Improved operational efficiency by automating routine tasks using scripting tools such as PowerShell or Python.

Education

Bachelor of Technology (BTech) - Computer Science and Engineering

Christu Jyoti Institute of Technology And Science
Jangaon

Skills

  • Amazon Web Services, Microsoft Azure, Windows, Kali Linux, Ubuntu, Google Cloud Platform
  • Azure Sentinel, Elastic SIEM, Splunk, ArcSight ESM, logger, O365
  • Security, Nessus, Certificate Authority, SIEM, AWS Key Management
  • Splunk, Cloud app security, Proofpoint, Microsoft Defender, Azure Sentinel, Armis, Cisco Meraki
  • Nmap, S3, EC2, S3 Glacier, Wireshark, Zendesk, Service Now, BMC
  • Remedy, Office 365, CloudWatch, Exchange, SharePoint, Burp Suite, Metasploit Framework
  • Java, J2EE, HTML, CSS, XML, XSLT, Postman, web Services SOAP and
  • REST, SOAP UI, SQL, Agile Programming, SDLC
  • GDPR, ISO 27001, SOC2, NIST, PCI DSS, PIPEDA
  • Incident Response, Network Security, Phishing Detection, Digital Forensics, Vulnerability Assessment, Threat Intelligence
  • SIEM management, Penetration Testing, Application Security, Zero-Day Exploit Prevention
  • Risk assessment, maturity assessment, and tabletop exercise

Certification

Certified Ethical Hacker(CEH)

Microsoft Security, Compliance, and Identity Fundamentals (SC-900)


Timeline

Cyber Security Analyst

Iron Spear Information Security Ltd
10.2024 - 05.2025

SOC Analyst

BluSapphire
01.2020 - 09.2023

Bachelor of Technology (BTech) - Computer Science and Engineering

Christu Jyoti Institute of Technology And Science

Similar Profiles

CREATE PROFILE
Hari Pan