Cybersecurity professional with a strong foundation in network security, GRC, system administration, SOC analyst, and threat hunting. Experienced in real-time threat detection, incident response, and security monitoring using tools such as Splunk, CrowdStrike Falcon, and Microsoft Entra ID. Skilled at securing enterprise environments and aligning security practices with compliance frameworks. Currently deepening expertise in penetration testing, red teaming, cloud security, malware analysis, and reverse engineering, with a strong commitment to continuous learning and operational excellence in cybersecurity.
I am available for: Cybersecurity Roles & Internships (Threat Hunting, Security Monitoring, SOC Operations, Incident Response, GRC) Freelance & Contract Work (Security Hardening, Log Analysis, Compliance Audits, System Administration) Collaborative Projects & Research (Penetration Testing, Red Teaming, Malware Analysis, Reverse Engineering, Cloud Security) Content Creation & Technical Writing (Cybersecurity Blogs, Tutorials, Documentation, Tool Walkthroughs)
Nov 5, 2025 · 3 min read · By: Ashish — SOC Analyst, Louisiana State University Shreveport 🧩 Overview Data exfiltration remains one of the most serious threats a security operations center (SOC) can face. It involves unauthorized transfer of sensitive data from internal syst...
CChed commented
Nov 1, 2025 · 1 min read · This week, an escalated SOC Level II ticket landed on my desk: a login attempt from an IP with 100% confidence of abuse and a very poor reputation. The user entered the correct credentials but could not pass MFA, raising the risk of a potential compr...
Join discussion
Nov 1, 2025 · 1 min read · The other day, I spotted a sudden spike in outbound traffic on our Splunk dashboards. At first glance, it looked like possible data exfiltration — unusual volumes going out always raise alarms.Here’s how I broke it down: Top talkers & destinations → ...
Join discussion
Nov 1, 2025 · 1 min read · Last week, I investigated an incident where critical logs were disabled and deleted, raising red flags in the SOC. Using Splunk and targeted SPL queries, I zeroed in on Event IDs (like 1102 for log clearing and 7045 for service changes) to determine ...
Join discussion
May 18, 2025 · 3 min read · I'm excited to share that I recently passed the CompTIA Network+ (N10-009) certification exam! This achievement is part of my continued journey in the field of cybersecurity and networking, and in this post, I’ll break down how I studied, what materi...
Join discussion