Hands-on experience in deploying and maintaining Wazuh-based SOC platforms, configuring log pipelines, optimizing detection workflows, and supporting penetration testing across web, API, and cloud environments.
SOC Platform & Security Engineer with experience in deploying and maintaining open-source SOC stacks including Wazuh, OpenSearch, TheHive, and Cortex. Skilled in SIEM pipeline configuration, agent deployment, log onboarding, detection tuning, and automation support. Contributed to client-focused SOC onboarding, secure log integration, and structured VAPT engagements aligned with OWASP and modern attack methodologies.
Supported deployment and configuration of Wazuh Manager, agent enrollment, OpenSearch index patterns, dashboards, and TheHive case workflows.
Integrated firewall, endpoint, Linux server, and cloud logs into SIEM. Troubleshot ingestion issues and validated parsing accuracy.
Assisted in performance tuning, alert noise reduction, log retention configuration, and backup policy validation for SOC stability.
Performed real-time alert triage, IOC validation, incident documentation, and escalation in structured SOC workflows.
Tuned detection rules mapped to MITRE ATT&CK, reduced false positives, and improved monitoring coverage across endpoints and cloud.
Assisted in implementing automation workflows and integrating threat intelligence feeds to streamline investigation processes.
Conducted OWASP Top 10 testing including injection, authentication bypass, IDOR/BOLA, and session validation using Burp Suite and structured testing methodology.
Supported infrastructure exposure assessment, firewall rule review, segmentation validation, and misconfiguration detection.
Assisted in reviewing AWS IAM policies, S3 exposure risks, and security group configurations aligned with least-privilege principles.
Available for SOC platform deployment, security operations, and VAPT engagements.
Dhaka, Bangladesh