Open to opportunities

Omar Sherzai

@omarsherzai

Message

Cybersecurity analyst specializing in SOC operations, incident response, threat hunting, and cloud security.

United States

Message

What I'm looking for

I seek a hands-on SOC/incident response role where I can improve detections, automate playbooks, lead threat hunts, and mentor teams within a security-focused, collaborative organization.

Cybersecurity Analyst specializing in SOC operations, incident response, threat hunting, and cloud security. Experienced with Splunk Cloud ES, Cortex XSOAR, ExtraHop NDR, Tenable, CrowdStrike Falcon, AWS IAM Identity Center, RSA Archer, and enterprise email security. Skilled in cloud SIEM investigations, behavioral analytics, playbook automation, vulnerability management, and compliance-aligned documentation. Driven to improve detection fidelity, streamline response workflows, and reduce organizational risk in large environments.

Experience

Work history, roles, and key accomplishments

Current

Cybersecurity Analyst

Current

A-TEK Inc.

Nov 2023 - Present (2 years 1 month)

Monitored and investigated Splunk Cloud ES alerts across cloud/hybrid environments and executed Cortex XSOAR playbooks to automate enrichment and incident response, reducing false positives across 75,000+ endpoints.

Splunk Cloud XSOAR ProofPoint Threat Hunting SIEM Tuning Incident Response

Security Analyst

Neustar

Jan 2022 - Jan 2023 (1 year)

Conducted vulnerability assessments with Tenable/Nessus and analyzed suspicious activity via Splunk Cloud and packet captures, maintaining ServiceNow incident records to ensure audit readiness and drive remediation.

Tenable Nessus Nmap Splunk Cloud Wireshark ServiceNow Threat Intelligence Vulnerability Management

IT Support Specialist

Robert Half

Aug 2019 - Jan 2022 (2 years 5 months)

Provided IT support including DDoS investigation using Splunk and Arbor Peakflow telemetry, endpoint hardening and escalation of security anomalies to SOC teams, and created documentation and training materials to improve onboarding.

Splunk Arbor Peakflow Endpoint Security Documentation Escalations

Education

Degrees, certifications, and relevant coursework

University of Illinois Springfield

Master of Technology, Cyber/Electronic Operations and Warfare

Grade: GPA: 3.7

Completed a Master of Technology in Cyber/Electronic Operations and Warfare with a 3.7 GPA, focusing on advanced cyber operations and defensive/offensive techniques.

The George Washington University

Bachelor of Professional Studies, Cybersecurity

Grade: GPA: 3.5

Earned a Bachelor of Professional Studies in Cybersecurity with a 3.5 GPA, concentrating on cybersecurity principles, incident response, and risk management.

Northern Virginia Community College

Associate of Applied Science, Cybersecurity

Grade: GPA: 3.5

Completed an Associate of Applied Science in Cybersecurity with a 3.5 GPA, covering foundational cybersecurity skills and practical technical training.