Skip to main content
Nisarg SoniNS
Looking for a job

Nisarg Soni

@nisargsoni

I am a Security Operations Analyst skilled in threat detection, incident response, and SIEM engineering.

Canada
Message

What I'm looking for

I want to work in a SOC environment where I can run proactive threat hunting, improve SIEM detections, and own incident response workflows end-to-end. I’m especially interested in security engineering, automation, and Azure-focused log and detection improvements.

I’m a Security Operations Analyst with hands-on experience in threat detection, incident response, and SIEM engineering across Microsoft Sentinel and ReliaQuest GreyMatter XDR. I use proactive threat hunting with the MITRE ATT&CK framework to identify lateral movement and advanced threats.

At Moneris, I manage end-to-end incident lifecycles—triage, severity classification, containment, root-cause analysis, and post-incident documentation—while tuning detections to reduce false positives and improve signal-to-noise. I also support Azure security operations (data collection rules, Arc integration, and Sentinel connectors) and onboard 5+ new log sources into Microsoft Sentinel to expand detection coverage.

I bring complementary endpoint administration and IT support experience from roles including Desktop Support Intern and Service Desk Technician Intern, including zero-trust aligned access work with Microsoft Intune and Entra ID. I’m security operations–minded, automation-focused (Python for SOC metrics and threat lookups), and grounded in certifications including CompTIA CySA+, Security+, and Microsoft SC-200.

Experience

Work history, roles, and key accomplishments

Moneris logoMO
Current

Security Operations Analyst II

Feb 2025 - Present (1 year 5 months)

Monitor and investigate security alerts across Microsoft Sentinel and Defender/ReliaQuest GreyMatter XDR, performing MITRE ATT&CK-based threat hunting. Lead incident lifecycle activities (triage through containment and root-cause analysis), tune detections, and support SOC automation and log onboarding.

Magnet Forensics logoMF

Desktop Support Intern

Sep 2024 - Dec 2024 (3 months)

Provide end-user IT support across Windows, macOS, and SaaS applications while administering endpoints using Microsoft Intune and Entra ID. Support device lifecycle activities and documentation in an Agile Scrum environment using Jira and Confluence.

Education

Degrees, certifications, and relevant coursework

Conestoga College logoCC

Conestoga College

Post-Graduate Certificate, Cybersecurity Response Planning

2024 - 2024

Grade: 3.84

Activities and societies: Cybersecurity Response Planning

Completed a Post-Graduate Certificate in Cybersecurity Response Planning at Conestoga College in 2024.

Conestoga College logoCC

Conestoga College

Post-Graduate Certificate, Computer Application Security

2023 - 2023

Grade: 3.87

Activities and societies: Computer Application Security

Completed a Post-Graduate Certificate in Computer Application Security at Conestoga College in 2023.

GM

Government Engineering College Modasa

Bachelor of Engineering, Computer Engineering

2016 - 2020

Earned a Bachelor of Engineering in Computer Engineering from Government Engineering College, Modasa from 2016 to 2020.

Get matched with your dream remote job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan