Open to opportunities

Piyush Benia

@piyushbenia

Detection & response cybersecurity professional driving SOC maturity through SIEM/SOAR engineering and incident response excellence.

India

Message

What I'm looking for

I’m looking for a cybersecurity role where I can build and tune high-fidelity detections in SIEM/SOAR, run threat hunting, and lead incident response—partnering with stakeholders to continuously raise detection maturity aligned to MITRE ATT&CK and compliance.

I’m a seasoned cybersecurity professional with 6+ years of experience across SOC operations, threat detection engineering, and incident response within MSSP and enterprise environments. I focus on SIEM/SOAR enablement, detection rule engineering, threat hunting, and vulnerability management—grounded in MITRE ATT&CK and compliance-aligned workflows.

In my current role as a Detection Specialist at Cumulus Systems Pvt Ltd (Aug 2024–Present), I led end-to-end Microsoft Sentinel onboarding, including log-source integration, detection use-case design, and security coverage validation. I designed and optimized high-fidelity detection rules using KQL and regex, expanded SOC coverage by mapping SIEM use cases to MITRE ATT&CK, and led proactive threat hunting using SIEM and EDR telemetry.

I also lead incident investigations and response, analyzing attacker TTPs and executing containment with Microsoft Defender, Cortex XDR, Cybereason, and CrowdStrike. I’ve automated SOC workflows by building Cortex XSOAR playbooks (phishing triage, malware containment, endpoint isolation, alert enrichment) and improved operations with a Kanban-based Agile tracking dashboard—strengthening rule lifecycle management, validation rigor, and stakeholder visibility.

Experience

Work history, roles, and key accomplishments

Current

Detection Specialist

Current

Cumulus Systems Pvt Ltd

Aug 2024 - Present (1 year 10 months)

Led end-to-end Microsoft Sentinel onboarding, integrating log sources and validating detection coverage. Built high-fidelity KQL/regex detections, mapped use cases to MITRE ATT&CK, and led incident investigations using Defender and XDR tooling.

Detection Engineering Threat Hunting Incident Response Microsoft Defender Cortex XDR Malware And Phishing Triage

Information Security Specialist

Cumulus Systems Pvt Ltd

Dec 2022 - Jul 2024 (1 year 7 months)

Delivered security consulting and SOC optimization by designing automated Microsoft Sentinel use cases and combinational playbooks. Managed vulnerability management programs, coordinated remediation to meet SLA timelines, and supported tool integrations through PoCs and UAT.

SOC Optimization UAT Vulnerability Management Nessus

Information Security Analyst

Cumulus Systems Pvt Ltd

Mar 2021 - Dec 2022 (1 year 9 months)

Performed continuous SIEM monitoring and incident investigations in an MSSP environment, analyzing botnet activity, DDoS attacks, malware infections, and web application attacks. Conducted cloud security investigations, dark web threat monitoring, and forensic triage using Autopsy while managing vulnerability lifecycles.

SIEM DDoS Analysis WAF Forensic Triage (Autopsy)

Customer Service Executive

Tata Communications Transformation Services Limited

Aug 2016 - Dec 2017 (1 year 4 months)

Provided Level-2 technical support for TELUS Communications (Canada), resolving complex network issues within defined SLAs. Monitored customer network links for outages and utilization anomalies and supported security operations by analyzing logs and assisting with threat repository management.

Network Troubleshooting SLA Management Log Analysis Technical Documentation