Post Job Free
Sign in

Entry-Level SOC Analyst with SIEM Expertise

Location:
Mesa, AZ
Posted:
June 30, 2026

Contact this candidate

Resume:

Seraphine Iteinjoh

Phone: 832-***-**** US citizen-Full Secret Clearance

Email: *******************@*****.***

Professional Summary

Detail-oriented SOC Analyst with foundational knowledge in cybersecurity monitoring, threat detection, and incident response. Skilled in analyzing security events, identifying vulnerabilities, and supporting security operations using SIEM tools. Strong understanding of network security, log analysis, and risk mitigation. Seeking to contribute to a security operations team to enhance the organizational security posture.

Skills and Tools

- Security Information and Event Management (SIEM) -Effective Communication

- Threat Detection & Analysis -Intrusion Detection

- Incident Response -Attention to details

- Log Analysis -ServiceNow

- Network Security Fundamentals -Splunk Enterprise Security

- Vulnerability Assessment -Active Directory

- Splunk -Azure Cloud Computing

- Wireshark -Critical Thinking

- IDS/IPS -Incident triage and escalation

- Risk Assessment -PowerShell

-SQL -ArcSight

-WAF(Akamai)

Professional Experience

L1 SOC Analyst Sep 2024-Present

KForce Phoenix, AZ

-Provide level 1 SOC Analyst support to GCC (Global Cyber Center)

-Monitored security alerts and events using Splunk and Microsoft Sentinel; performed initial triage and analysis of security incidents to determine severity level, either severity 1,2,3 or 4

-Investigated suspected phishing emails by analyzing URLs, domains, redirect reputation scores, and sandbox behavior using URLScan.io, ANY.RUN, Test-a-Site, VirusTotal, URLVoid, and domain lookup tools to identify malicious indicators, support incident triage, and recommend appropriate remediation actions

-Analyzed logs such as firewall logs, endpoints, and intrusion detection system logs and escalated to a level 2 SOC analyst or created a ServiceNow ticket for further investigation as needed.

-Identified and filtered false positives to reduce alert fatigue and improve SOC efficiency and escalated confirmed or high-risk incidents to Tier 2 analysts or system owners with detailed documentation

-Created and maintained incident tickets using the ServiceNow ticketing system,

- Stay up-to-date with emerging security threats, vulnerabilities, and mitigation techniques.

-Conducted basic threat intelligence lookups on IPs, domains, and file hashes using open-source tools (VirusTotal, AbuseIPDB, Scamalytics, and DNSlytics)

-Followed standard operating procedures (SOPs) and runbooks for incident response and ensured compliance with organizational security policies and procedures.

-Document findings, generate incident reports, update SOC playbooks and runbooks.

-Assisted in incident response activities including containment and remediation support, maintaining detailed documentation of incidents, investigations, and actions taken.

-Participated in shift handovers to ensure continuity of monitoring and incident tracking and collaborate with cross-functional teams to address and resolve security issues

MSSQL Server Database Administrator Dec 2019 – August 2024

TotalMed, Inc. Appleton, WI

Role and Responsibilities

-Installed, configured, and maintained SQL Server versions 2014-2019 using SQL Server Management Studio, enhancing system stability and security.

-Supported databases and their applications, patched database management systems and Linux-based systems, and carried out performance tuning, networking, and security Hardening

-Implemented robust security measures, including user role management, auditing, triggers, TDE, Dynamic Data Masking, and Always Encrypted to secure sensitive data.

-Managed daily operations of SQL Server databases, ensuring high performance and availability.

-Managed the upgrade and migration of substantial databases from SQL Server 2014 to SQL Server 2019, employing side-by-side migration techniques and log shipping protocols.

-Proactively identified and resolved issues related to database integrity, performance, blocking, replication, Log shipping, Always ON, and job failures

-Applied Security Technical Implementation Guides (STIGs) to track the DB's security compliance and troubleshoot.

-Monitored SolarWinds log ingestion and disk utilization metrics across the enterprise, preventing log pipeline disruptions and maintaining 99.9% visibility for security event correlation.

-Conducted network traffic analysis using Wireshark to detect anomalies.

Education

Bachelor of Science in Information Technology (BSIT)

University of Phoenix Graduation: 2026 Relevant Coursework: Cybersecurity, Network Security, Systems Analysis, Database Management, Incident Response, Cloud Computing

Associates degree

Certifications

- CompTIA Security+

- Splunk Core Certified User

-Azure Database Administrator Associate (DP-300)



Contact this candidate