HimalayasHimalayas logo
AM
Open to opportunities

Ankit Mehta

@ankitmehta1

I build scalable Microsoft Sentinel detections with Detection-as-Code, KQL, and threat-hunting expertise.

India
Message

What I'm looking for

I want to build and tune scalable Microsoft Sentinel detections with Detection-as-Code, improve coverage mapped to MITRE ATT&CK, and support threat hunting and DFIR with measurable reductions in false positives.

I’m a Detection Engineer specializing in Microsoft Sentinel, KQL, and Detection-as-Code, focused on turning threat intelligence into reliable, deployable detections. I build detections aligned to MITRE ATT&CK and ship them in a scalable way using GitHub CI/CD for consistent rollouts.

I’ve built 120+ detections and reduced false positives by ~40–45% through detection tuning. I also create custom Sentinel workbooks and automate threat intel ingestion using Logic Apps to improve both coverage and operational efficiency.

On the investigation side, I’ve worked across M365, Entra ID, Intune, and Microsoft Defender, performing SOC investigations and DFIR. I lead threat hunting and malware analysis on real-world campaigns, mapping outcomes back to MITRE ATT&CK to strengthen detection coverage and visibility.

I bring a hands-on security mindset across detection engineering, incident response, and log analytics, using tools like SentinelOne and Velociraptor for endpoint and network telemetry. I aim to partner with security teams to improve detection maturity, response speed, and analytical clarity with measurable results.

Experience

Work history, roles, and key accomplishments

Education

Degrees, certifications, and relevant coursework

Shoolini University logoSU

Shoolini University

Bachelor of Technology, Computer Science Engineering

2024 - 2026

Grade: GPA: 7.73

Pursuing a Bachelor of Technology in Computer Science Engineering at Shoolini University (Jan 2024–Apr 2026). Analyzed security data, created reports, and collaborated with teams to support security operations and threat detection.

SA

SOC Triage Analyst (Apprenticeship)

SOC Triage Analyst (Apprenticeship), Security Operations Center (SOC)

2023 -

Managed Windows/Server security and performed SOC investigations across M365, Entra ID, Intune, and Defender as an SOC triage analyst (apprenticeship).

Tech stack

Software and tools used professionally

GitHub logo

GitHub

Gmail logo

Gmail

Windows logo

Windows

Windows Server logo

Windows Server

Qualys logo

Qualys

Mapped logo

Mapped

Enhance logo

Enhance

SentinelOne logo

SentinelOne

Availability

Open to opportunities

Location

India

Authorized to work in

India

Website

detections.ai/user/Secvyn

Portfolio

github.com/Secvyn

Job categories

Detection EngineerThreat HunterSecurity Incident ResponseSecurity Analytics EngineerSOC AnalystThreat Detection EngineerThreat Detection Systems EngineerMonitoring Engineer

Skills

Detection EngineeringDetection As CodeCI CDKusto Query Language (KQL)Logic AppsMicrosoft DefenderThreat HuntingIncident ResponseLog AnalysisSentinelOneVelociraptorEnhanceGitHubGmailMappedQualysWindowsWindows Server

Interested in hiring Ankit?

You can contact Ankit and 90k+ other talented remote workers on Himalayas.

Message Ankit

People also viewed

View all talent

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan