Skip to main content
Satyam KumarSK
Open to opportunities

Satyam Kumar

@satyamkumar12

SOC Analyst specializing in SIEM monitoring, incident response, and threat detection to reduce false positives.

Zimbabwe
Message

What I'm looking for

I’m looking for a SOC role where I can own SIEM monitoring and alert triage, improve detection quality through rule tuning (Wazuh/Splunk/Suricata), and grow via Tier 2/3 collaboration—especially to reduce false positives and strengthen incident response.

I’m a SOC Analyst with hands-on experience in SIEM monitoring, incident response, and threat detection using Wazuh, Splunk, and ZeroHack. I’ve handled 30+ security incidents, including phishing and brute-force attacks, while keeping clear, evidence-based case records in OpenProject. I’m especially strong in log analysis, alert triage, and threat hunting.

In my current role, I classify alerts as true positive/false positive/benign with documented evidence, and I’ve driven a proven 20% reduction in false positives through detection rule tuning. I also tune Suricata IDS/IPS rules to improve detection accuracy. My workflow covers investigation and containment/recovery, including email header analysis, URL tracing, account compromise checks, and log correlation.

I apply MITRE ATT&CK concepts in SOC operations and focus on uncovering anomalous user activity and lateral movement. I build detection engineering confidence through SIEM lab projects (Wazuh + Suricata + Splunk stacks), where I simulate attacks like brute-force, suspicious PowerShell execution, privilege escalation, impossible travel, and log deletion, then validate alerts across endpoints and network logs. I bring a continuous-improvement mindset—turning findings into better signals, clearer dashboards, and stronger response readiness.

Experience

Work history, roles, and key accomplishments

AS
Current

Security Analyst L1

Aguna Solutions

Jan 2025 - Present (1 year 5 months)

Monitored and analyzed security alerts in Wazuh, Splunk, and ZeroHack, responding to 30+ incidents through triage, containment, and recovery. Reduced alert noise by 20% via detection rule tuning and performed phishing/brute-force investigation and threat hunting aligned to MITRE ATT&CK.

WazuhSplunkIncident ResponseThreat HuntingLog AnalysisPythonSQL

Education

Degrees, certifications, and relevant coursework

CU

CCS University

Master of Science (M.Sc.), Computer Science

Completed an M.Sc. in Computer Science at CCS University (2025).

CS

Craw Security

Diploma in Cyber Security, Cyber Security

Completed a Diploma in Cyber Security at Craw Security (2025).

CU

CCS University

Bachelor of Science (B.Sc.), Computer Science

Completed a B.Sc. in Computer Science at CCS University (2023).

Tech stack

Software and tools used professionally

Splunk logo

Splunk

Gmail logo

Gmail

PowerShell logo

PowerShell

AWS CloudTrail logo

AWS CloudTrail

Ubuntu logo

Ubuntu

Linux logo

Linux

Windows logo

Windows

OpenProject logo

OpenProject

SQL logo

SQL

Evidence logo

Evidence

Wazuh logo

Wazuh

Jan logo

Jan

Movement logo

Movement

Suricata logo

Suricata

Availability

Open to opportunities

Location

Zimbabwe

Authorized to work in

Zimbabwe

Job categories

SOC AnalystIncident Response AnalystThreat HunterDetection EngineerCybersecurity AnalystEntry Level SOC AnalystSecurity Operations Center (SOC) AnalystJunior SOC Analyst

Skills

WazuhSplunkLog AnalysisIncident ResponseThreat HuntingIOC AnalysisSuricataEDREmail SecurityCyber Kill ChainTCP IPDNSHTTP S Traffic AnalysisFirewallsWindowsLinuxPythonSQLOpenProjectPowerShellAWS CloudTrailEvidenceGmailJanMovementUbuntu

Interested in hiring Satyam?

You can contact Satyam and 90k+ other talented remote workers on Himalayas.

Message Satyam

People also viewed

View all talent

Find your dream job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan