Open to opportunities

Stanley Osuozah

@stanleyosuozah

Cyber Security Analyst specializing in security operations, incident response, and vulnerability management across enterprise and cloud environments.

United Kingdom

Message

What I'm looking for

I’m looking for a SOC/cyber security role where I can run SIEM-based detections, lead incident investigations, and support vulnerability management and governance—using Microsoft Sentinel, Defender, Purview, and KQL to improve response outcomes.

I’m a Cyber Security Analyst with 3+ years of experience supporting security operations, incident response, vulnerability management, and cyber governance across enterprise environments. I’m hands-on with SIEM monitoring and investigation workflows, using Microsoft Sentinel and Splunk Enterprise Security to detect suspicious activity and investigate authentication, endpoint, and network logs.

I strengthen detection and response by correlating telemetry with threat intelligence, mapping attacker behavior to MITRE ATT&CK techniques, and tuning KQL and SIEM correlation rules. In day-to-day incident work, I investigate PowerShell activity, phishing-linked compromises, and cloud identity anomalies—then support containment and workflow optimization to improve triage and escalation efficiency.

I also focus on reducing risk through vulnerability scanning and governance: leveraging Qualys/Nessus, supporting CVE analysis and remediation tracking, and using Microsoft Purview for compliance monitoring (DLP, Insider Risk, Audit, and information protection). I bring a strong foundation in ISO 27001, CIS Controls, GDPR, and the NIST Cybersecurity Framework, backed by Microsoft SC-200 and other security certifications.

Experience

Work history, roles, and key accomplishments

Current

Cyber Security Analyst

Current

CyberKashFox

Jan 2025 - Present (1 year 5 months)

Investigate 150+ weekly SIEM alerts across Splunk Enterprise Security and Microsoft security tools, including identifying a credential brute-force attack targeting privileged accounts. Correlate threat intelligence and enrich alerts with Microsoft Copilot for Security, while improving incident response workflows with SIEM playbooks and KQL correlation rules.

SIEM Incident Response Splunk Enterprise Microsoft Purview

Security Operations Analyst

Unideals

Jun 2023 - Dec 2024 (1 year 6 months)

Investigated 100+ security incidents across cloud and endpoint environments using Microsoft Sentinel and Microsoft Defender for Endpoint, including isolating affected devices to prevent further compromise. Developed and tuned KQL detections for suspicious authentication, privilege escalation, and phishing activity, and supported data protection and compliance monitoring via Microsoft Purview.

Microsoft Defender Conditional Access Phishing Microsoft Purview

IT Security Analyst

Topassured

Nov 2021 - May 2023 (1 year 6 months)

Monitored security alerts and system logs across Windows Server, Active Directory, and Azure AD (Entra ID), escalating potential incidents in line with SOC processes. Supported vulnerability and patch management using Qualys, coordinated remediation for critical CVEs, and helped enforce least-privilege access controls.

Windows Server Active Directory Azure Entra Vulnerability Management Qualys CVE

Education

Degrees, certifications, and relevant coursework

Birmingham City University (BCU)

Bachelor of Science (BSc), Computer Science

Completed a BSc in Computer Science with modules including Computer & Network Security, IoT System Security, Cyber Security Analytics, and Computer Programming.

Yaba College of Technology

Higher National Diploma (HND), Computer Science

Completed an HND in Computer Science with coursework including Computer Networking, Computer Programming (C++/Java), AI Expert Systems, Web Technology, and System Troubleshooting.