Yogesh Mahajan
+91-7987691321
[email protected]
https://www.linkedin.com/in/yogesh-mahajan-14b10b169
3.75+ years of experience in cybersecurity with a specialization in the Security Operations Center
(SOC), where I worked in a fast-paced environment to investigate and perform deep analysis of
security incidents configured within SIEM and EDR solutions, I am seeking a more challenging role in
the field of cybersecurity where I can make a significant contribution towards the company's
immediate and future goals.
Skills:
❖ Endpoint Security (EDR/XDR): CrowdStrike, Microsoft Defender & Sophos
❖ SIEM: ArcSight & LogRhythm
❖ Email Security & WAF: O365 ATP & Cloudflare
❖ Ticketing Tool: ServiceNow & Core5
❖ Operating Systems: Windows & Linux
❖ Framework: MITRE ATT&CK & OWASP Top 10
Experience:
Security Analyst (SOC) | Sakon, Pune
February 2024 – Present
❖ Monitor and triage alerts in LogRhythm, analyse security incidents from Microsoft Defender,
O365 ATP, and Sophos XDR for proactive threat detection and mitigation.
❖ Investigated phishing emails, analysed headers, conducted phishing simulations and training, and
improved Microsoft Defender Secure Score.
❖ Optimized SIEM tool efficiency by reducing false alerts through rule fine-tuning and creating new
use cases.
❖ Collect and integrate IOCs from open-source tools and advisories into SIEM rules for real-time
threat intelligence and monitoring.
�❖ Contributed to threat hunting by analysing suspicious URLs and attachments in a sandbox, using
KQL scripts to delete phishing emails and enhance security.
❖ Prepared and presented weekly/monthly reports to upper management during scheduled calls
for review and discussion.
❖ Drafted SOPs and playbooks for SIEM/EDR alert management, along with documentation for
routine BAU reporting.
❖ Created customized reports, incident dashboards, shift handovers, health checks, SIEM device
reports, and Root Cause Analysis for True Positives.
❖ Ability in log sources onboarding, report scheduling, dashboard creation and their analysis, and
performing EDR administrative tasks to enhance cybersecurity.
❖ Facilitated smooth onboarding for new team members and provided knowledge transfer to
internal and external teams on processes and procedures.
Cyber Security Analyst (SOC) | Wipro, Pune
March 2021 – January 2024
❖ Monitored and triaged alerts in ArcSight Console 24/7, reporting security incidents via
ServiceNow ticketing tool.
❖ Conducting analysis of alerts generated in Microsoft Defender, O365 ATP and CrowdStrike EDR,
ensuring proactive threat detection and mitigation.
❖ Collaborated with cross-functional teams to escalate and resolve incidents and service requests,
ensuring SLA adherence and timely resolutions.
❖ Created Device Status Reports to identify non-reporting log sources, collaborating with
respective server teams for troubleshooting measures.
❖ Prepared daily, weekly, and monthly reports for client calls, collaborating with the risk team to
ensure accurate incident logging and resolution.
❖ Orchestrated shift management and acted as shift lead in the absence of L2s, ensuring smooth
operations and task execution.
Education:
❖ Bachelor of Engineering / SIRT College, Bhopal, MP
July 2016 – September 2020
Graduated in B.E. (Electronics and Communication Engineering) with 7.9 CGPA
�Certifications:
❖ Microsoft Certified Security Operations Analyst (SC-200), November 2024
❖ CompTIA Security+, July 2024
❖ Netskope Cloud Security Sales Associate (CC: 131740445)
Awards and Achievements:
❖ Received CRS High Flyer Award, 2023
❖ Received Inspiring performance award in recognition of excellent contribution to the CDC
Endpoint Security Projects, 2022.
Personal Profile:
❖ Languages: English, Hindi and Marathi
❖ DOB: 28 December 1997
❖ Hobbies: Singing and playing Cricket
❖ Address: House No.6, Behind Saint Paul School, Anand Nagar, Bhopal, Madhya Pradesh
