Cybersecurity Analyst and Threat Hunter with SIEM Expertise

MIKAEL WELBECK

Arlington, ***** VA

********@*****.*** / 240-***-****

SUMMARY

Dedicated and seasoned Cyber-Security SOC Analyst with over 4 years of hands-on experience in monitoring, detecting, analyzing, and responding to security incidents. Proficient in utilizing SIEM platforms such as LogRhythm, Splunk, and ArcSight to correlate and investigate security events across diverse environments. Skilled in threat intelligence analysis, malware analysis, and conducting proactive threat hunting to identify and mitigate emerging threats. Possesses strong expertise in network protocols, packet analysis, and endpoint detection and response (EDR). Proven track record of successfully mitigating security risks, implementing effective security controls, and ensuring compliance with industry standards. Adept at communicating technical information to both technical and non-technical stakeholders, fostering collaboration, and contributing to the overall security posture of organizations.

SKILLS

●Python Programming

●Scripting Languages

●Application Security

●Intrusion Detection

●Incident Response

●Reverse Engineering

●Web Security

●Penetration Testing

●Access Control

●Compliance Standards

●Customer Service

●Security Information and Event Management (SIEM)

●Firewall Configuration

●Data Security

●Encryption

●Telecommunications Systems

●Monitoring Computer Viruses

●Managing Security Breaches

●Regulatory Compliance

●Protecting Networks

●Critical Thinking Skills

●Threat & Vulnerability Management & Analysis

●Microsoft Excel

●Python (Programming Language)

EXPERIENCE

Information Technology Service Desk Analyst / Red Cloud Cybersecurity – Remote/NY 08/2025

Provide support for hardware, software, application, and network problems submitted to the Helpdesk ticketing system, support calls, and emails.

Provide support for servers, desktops, laptops, printers, routers, switches, firewalls, and other peripheral devices.

Perform installation/troubleshooting of operating systems, software, and general applications.

Administer and support cloud-based email servers, email clients, and messaging services.

Troubleshoot problems reported by users.

Perform data backups, retention, and restores.

Cyber-Security Specialist / EXPEL.IO - Herndon, VA 08/2021 – 04/2022

Investigated phishing alerts and BEC incidents using Proofpoint, Microsoft O365, and Wireshark for email header/content analysis and packet inspection.

Investigated and resolved alerts across network and endpoint security technologies using Splunk and QRadar, reducing average dwell time by 35% and accelerating response time to under 15 minutes for priority incidents.

Analyzed phishing and BEC threats via email header/content inspection and correlated artifacts from firewall logs, endpoint telemetry, and anomalous cloud login data (user agents, geolocation, IPs) to determine scope of compromise.

Strengthened customer security posture by delivering tailored risk-reduction recommendations aligned with FedRAMP, FISMA, and NIST SP 800-53 guidelines.

Successfully completed 43% of an average 1,500+ daily alerts and investigations, contributing to a measurable reduction in alert fatigue and improved SOC throughput.

Cyber-Security SOC Analyst / EXPEL.IO - Herndon, VA 04/2022 – 07/2025

Led threat hunting and incident response using EDR platforms (CrowdStrike, SentinelOne, Microsoft Defender ATP, Endgame) and SIEM tools (Splunk, QRadar) to detect, investigate, and remediate malicious activity across enterprise and federal environments.

Delivered remediation guidance to clients and stakeholders, ensuring successful resolution and documentation aligned with NIST SP 800-53, FISMA, and FedRAMP requirements.

Authored custom YARA rules to enhance automated threat detection and alert suppression, reducing false positives and improving SOC efficiency.

Investigated phishing and BEC incidents via email header/content analysis, correlating findings across network and endpoint telemetry to assess scope and impact.

Analyzed security alerts across cloud-hosted SaaS platforms, triaged enterprise compromises, and managed critical vulnerabilities in a high-tempo, 24/7 SOC.

Mentored junior analysts on threat detection, incident response, and federal compliance protocols, fostering a culture of continuous improvement and operational excellence.

Researched emerging threat vectors and phishing techniques to proactively strengthen detection logic and response workflows in alignment with federal cybersecurity standards.

E-Commerce Supervisor / PARTS AUTHORITY - Washington, DC 12/2013 - 08/2021

Directed and mentored a team of 15 employees, driving revenue generation exceeding annual revenue.

Provided comprehensive oversight to a workforce of over 50 employees, ensuring smooth E-Commerce operations and maximizing online efficiency in a 30% improvement in order processing time.

Served as Internet Supervisor across multiple locations including Laurel and Hanover, overseeing E-Commerce productivity and internet operations. Implemented cross-location coordination strategies resulting in a 25% improvement in order fulfillment accuracy.

Implemented data-driven decision-making processes by analyzing customer trends and market demands to optimize product offerings and enhance customer satisfaction resulting in a 15% increase in customer retention.

Soccer Coach / JOUON FC - Washington, DC 01/2010 - 12/2013

Demonstrated leadership and coaching skills, guiding teams of 5-15-year-old players to victory in competitive league matches by instilling a value of teamwork and sportsmanship.

Organized and executed fundraising events and community outreach programs to support youth soccer development initiatives. Raised $10,000 in sponsorship and donations, providing financial assistance for underprivileged players and enhancing access to training resources and equipment.

EDUCATION AND TRAINING

Training

McKinsey & Company - Self-Leadership

McKinsey & Company - Team Leadership

McKinsey & Company - Business Leadership

Wildwest Hacking Training – Security With BHIS & MITRE ATT&CK

CompTIA Security+

CTI (Cyber Threat Intelligence)

Wildwest Hacking Training – Security SOC Core Skills

Education

Flatiron School – Washington, DC 2021

Cybersecurity Analyst

University of Lome – Lome, Togo 2013

Associate degree in Linguistics

WEBSITES

https://www.linkedin.com/in/mika%C3%ABl-welbeck-aa3b88202

Languages

French

Ewe

English

Contact this candidate