Amran Hossain Hridoy

Soc analyst

Talent

DhakaMember since ২০ ফেব্রুয়ারি, ২০২৬

Alert TriageLog AnalysisIncident ResponseWazuhSplunkMicrosoft SentinelElastic StackSuricataSysmonWindows Event LogsTheHiveShufflePalo Alto Cortex XSOARMITRE ATT&CKCyber Kill ChainThreat HuntingWiresharkNetwork Traffic AnalysisVirusTotalAbuseIPDBAlienVault OTXURLhausURLscan.ioVulnerability ManagementCVE/CVSS ScoringLinux Logs (syslog, auth, auditd)JiraAWS EC2DockerNginxGitHub ActionsJenkinsPrometheusGrafanaPythonBashPowerShellTCP/IPDNSHTTP/HTTPSVPNFirewall ConfigurationIAM Policy ManagementSSL/TLS CertificatesBrute-Force DetectionFile Integrity Monitoring (FIM)

Hire this person

Send a job offer directly to this candidate

Alert TriageLog AnalysisIncident ResponseWazuhSplunk

সম্পর্কে

Aspiring SOC Analyst with hands-on lab experience in SIEM (Splunk, Wazuh, Microsoft Sentinel), IDS/IPS (Suricata), and endpoint monitoring (Sysmon, Windows Event Logs). Developed SOC automation workflows integrating Wazuh, TheHive, and Shuffle with VirusTotal API for IOC enrichment. Skilled in alert triage, log analysis, threat hunting, network traffic investigation (Wireshark), and incident response aligned with the MITRE ATT&CK framework and Cyber Kill Chain.

Continuously expanding expertise in advanced threat detection, incident analysis, and SOC automation to grow beyond L1 operations. Professional background in AWS infrastructure and DevOps with security hardening experience. Proficient in Python, Bash, and PowerShell.

CompTIA Security+ in progress, seeking SOC Analyst L1 role to transition into full-time Security Operations.

অভিজ্ঞতা

Junior DevOps Engineer (AWS) at Mediusware (2024-11 – 2025-09)

Deployed and maintained web applications on AWS EC2 using Docker and Nginx with security hardening.

Deployed and maintained web applications on AWS EC2 using Docker and Nginx, applying Security Groups, network ACLs, and OS hardening to minimize attack surface.
Implemented CI/CD pipelines via GitHub Actions and Jenkins with pre-deployment security checks, enabling rollback automation and zero-downtime deployments.
Configured SSL/TLS certificates (Let's Encrypt, Win-ACME) and Nginx reverse proxies with rate limiting to enforce encrypted communication and protect against brute-force and DDoS attacks.
Monitored infrastructure health and security events using Prometheus and Grafana, identifying anomalies and investigating alerts to maintain system availability.
Managed IAM policies, SSH key-based authentication, and firewall rules to enforce least-privilege access across cloud environments.
Automated log rotation, backups, and environment provisioning using Bash and Python scripts, reducing manual effort and human error.