Security Analyst Incident Response

HEYDAR PASHAZADE

Tampa, FL • +1-617-***-**-** • ******.***********@*****.***

Professional Experience

Split First ATM

Cyber Security Analyst

Tampa, FL, USA

June 2021 – May 2025

Monitored and analyzed security alerts across enterprise systems using SIEM platforms (e.g., Splunk, Azure Sentinel, or QRadar) to detect and respond to threats in real-time.

Investigated suspicious activities such as phishing attempts, malware infections, brute force attacks, and unauthorized access incidents.

Performed in-depth log analysis of endpoints, firewalls, IDS/IPS, Active Directory, and cloud environments to identify Indicators of Compromise (IOCs).

Triaged and escalated incidents following established incident response procedures; documented findings and maintained detailed incident reports.

Collaborated with Tier 2/3 analysts, threat intelligence teams, and IT stakeholders to contain threats and prevent future attacks.

Utilized MITRE ATT&CK framework and threat intelligence feeds to enhance detection capabilities and understand attacker tactics and techniques.

Conducted vulnerability assessments and provided recommendations to improve overall security posture.

Developed and maintained use cases, detection rules, and dashboards to improve alerting and visibility. A2Z Technologies

Incident Response

Baku, Azerbaijan

Feb 2019 – May 2020

Monitored and analyzed security alerts using SIEM and EDR platforms to detect, investigate, and respond to cybersecurity incidents.

Conducted thorough incident triage, forensic analysis, and root cause investigations on malware infections, phishing attempts, and unauthorized access.

Coordinated with IT and security teams to contain threats, mitigate risks, and restore affected systems promptly.

Developed and maintained incident response playbooks and documentation to enhance response efficiency.

Prepared detailed incident reports and communicated technical findings and recommendations to management and stakeholders.

Participated in cybersecurity drills and tabletop exercises to improve incident response readiness.

Researched emerging threats and updated detection techniques to strengthen the organization’s security posture.

Automated repetitive tasks and log analysis through scripting in Python and PowerShell, improving efficiency in incident handling.

Utilized threat intelligence platforms and OSINT tools to enrich investigations and proactively identify emerging threats.

Continuously researched new attack vectors, vulnerabilities, and cybersecurity trends to adapt detection and mitigation strategies. Education

University of South Florida Tampa, FL

Bachelor’s degree in Cyber security, GPA: 3.3 2021 - 2025 Skills

Security Monitoring & Analysis: SIEM, EDR, Alert Triage, Threat Hunting, Root couse Analysis, Incident Documentation Security Frameworks & Standards:

Cloud Security:

Programming & Scripting:

Operating Systems & Platforms:

Soft Skills:

MITRE ATT&CK, NIST Cybersecurity Framework, Audit Log Review, CIS Controls Microsoft Azure, AWS (IAM, EC2, CloudTrail), DLP Rule management, Endpoint Bash, PowerShell, SQL,

Linux (Ubuntu, Kali), Windows Server, Network Protocols, Firewall Problem-solving, Critical thinking, Team collaboration, Incident reporting, Communication

Contact this candidate