Nilesh Methri

SOC Analyst | SIEM | Splunk | Threat Detection

Talent

HyderabadMember since 6 June 2026

SOC AnalystSIEMSplunkThreat DetectionSIEM MonitoringLog AnalysisLog CorrelationAlert TriageIncident ManagementThreat HuntingIncident ResponseSecurity MonitoringThreat IntelligenceSecurity Event InvestigationNmapVulnerability AssessmentSandbox AnalysisHybrid AnalysisVirusTotalAny.RunMalware Behavior AnalysisDNSWiresharkMITRE ATT&CKCyber Kill ChainNessus

Hire this person

Send a job offer directly to this candidate

SOC AnalystSIEMSplunkThreat DetectionSIEM Monitoring

About

SOC Analyst (Security Operations Center Analyst) experienced in SIEM monitoring, security event investigation, threat detection, incident response, phishing analysis, malware sandbox analysis, and packet-level network inspection. Hands-on experience with Splunk SIEM, Wireshark packet analysis, Nessus vulnerability scanning, and Nmap network discovery. Skilled in alert triage, log correlation, threat hunting, and incident management within enterprise SOC environments.

Strong background in network traffic analysis, vulnerability assessment, endpoint monitoring, and defensive security operations aligned with MITRE ATT&CK framework and Cyber Kill Chain methodology.

Experience

SOC Analyst (Security Operations Center Analyst) - Internship - NULLCLASS - Remote

(2025-11 - 2026-02)

Investigated 15+ phishing email campaigns using header analysis, IOC extraction, and spoofing detection, reducing triage time by 35% through structured investigation playbooks.
Analyzed 20+ malicious URLs and attachments via sandbox environments and threat-intelligence platforms (VirusTotal, Any.run), achieving 95%+ accurate threat classification.
Performed packet-level network traffic analysis using Wireshark across DNS, HTTP, and TCP protocols to identify suspicious outbound traffic, abnormal communication patterns, and potential data exfiltration attempts.
Conducted malware behavior analysis using VirusTotal and Hybrid Analysis sandbox environments to extract indicators of compromise including file hashes, registry modifications, and command-and-control activity.
Assisted SOC operations including alert triage, log correlation, threat detection, and security monitoring aligned with MITRE ATT&CK framework and enterprise incident management processes.