HARSHDEEP SINGH SALUJA Security+
*********.*******@*****.*** M: 224-***-**** Chicago, IL
linkedin.com/in/cyberdeHs
SUMMARY
As a SOC Analyst, I bring over 3 years of experience in monitoring and responding to security events within 24x7 operaRonal environments. I am adept at uRlizing SIEM systems (Splunk), threat intelligence plaUorms, and various security tools to idenRfy and miRgate risks across complex networks. I have led incident response efforts, handling invesRgaRons, triage, remediaRon, and documenRng every step in detail. In addiRon to my technical experRse, I ensure alignment with key regulatory frameworks such as HIPAA, PCI, and GDPR, safeguarding sensiRve data and ensuring compliance in all operaRons. My collaboraRve efforts with cross-funcRonal teams focus on threat hunRng, vulnerability management, and automaRng security tasks to opRmize SOC performance. I am proficient with security disciplines like Windows, Linux, DLP, and network security, providing a comprehensive approach to both proacRve and reacRve security measures. EDUCATION & TRAINING
• Master of Science in Cybersecurity
Lewis University, Romeoville, IL, December 2023
• Bachelor of Commerce, InformaCon Technology
Indore, India, July 2015
TECHNICAL SKILLS
Endpoint ProtecRon CrowdStrike, SenRnelOne, Microso` Defender Mobile Device Management (MDM) Microso` Intune, AcRon1 SIEM PlaUorms Splunk, Microso` SenRnel, Syslog Server Access Control Azure Privileged IdenRty Management (PIM), IdenRty and Access Management (IAM), Okta, Azure AcRve Directory (Entra ID)
Vulnerability Management Tenable, Qualys
Compliance Frameworks HIPAA, PCI DSS, SOX, and GDPR Data Loss PrevenRon (DLP) Experience with DLP soluRons to prevent unauthorized access to and transfer of sensiRve data
ScripRng & AutomaRon Python, PowerShell, Bash
WORK EXPERIENCE
• Highlight Health – InformaRon Technology Security and Support April 2024 – August 2024
Managed endpoint security using Sen2nelOne, Microso6 Defender, and IDS/IPS, handling threat detec2on, incident response, and vulnerability management. Secured mobile devices with Microso6 Intune, deployed updates via Ac2on1, and remediated Azure VM vulnerabili2es. Configured PC imaging for new hires and enforced encryp2on for PHI/PII. U2lized PowerShell scripts for endpoint management. Monitored security alerts, led incident inves2ga2ons, and resolved false posi2ves in SOC tasks. Supported NIST and HIPAA audits by maintaining compliance documenta2on and addressing security gaps. Implemented and worked in Splunk, SIEM and Mezmo for log monitoring and incident repor2ng. Managed VPNs and DNS filtering, and administered AWS/Azure VMs and IAM systems, ensuring cloud security and compliance.
• Agile Tech labs - Security OperaRons Center Analyst (Remote) March 2022 – February 2024
Monitored and analyzed security alerts to iden2fy incidents, responding promptly to cri2cal situa2ons. Conducted root cause analysis on security events and recommended remedia2on. Coordinated with teams across the organiza2on to resolve incidents, ensuring clear communica2on with management and business units. Executed comprehensive incident response procedures, using threat intelligence and best prac2ces. Developed and maintained incident response playbooks and SOPs, and led regular tabletop exercises to assess response effec2veness. Stayed updated on emerging threats, contributed to security policies, and maintained thorough documenta2on on all incident ac2vi2es and lessons learned.
• Agile Tech labs - Desktop Support Analyst (Remote) October 2015 – June 2021
Provided technical support for end-users, troubleshoo2ng hardware and so6ware issues, and managing network devices remotely using SSH tools like PuTTY. Configured updates through WSUS, ensuring systems were secure and compliant with company policies. Administered Ac2ve Directory for user management, handled permissions, and u2lized Wireshark to diagnose network connec2vity issues. Managed security updates with SCCM and deployed Windows Defender for endpoint protec2on. Supported backup and recovery processes using Carbonite Backup, monitored system health via Event Viewer, and maintained IT assets using Lansweeper. Collaborated with IT teams on infrastructure and security issues while maintaining thorough documenta2on of technical issues and solu2ons.