• Designed, implemented, and tuned Splunk detections to identify malicious and anomalous activity across email, endpoint, identity, and cloud data sources (Proofpoint, CrowdStrike, PingID, AWS).

• Translated incident response learnings and emerging threat patterns into high-impact detection logic, improving coverage for phishing, malware, URL-based threats, and identity abuse.

• Partnered with SOC, Incident Response, and Automation teams to operationalize detections and refine response strategies.

• Continuously assessed detection performance, reducing false positives and identifying coverage gaps across critical assets.

• Built and maintained SOAR automations in Cortex XSOAR, supporting development, testing, deployment, and ongoing maintenance.

• Served as a Tier 2/3 escalation point for complex security investigations.

• Integrated Proofpoint Email Security with Splunk and led migration from on-prem TRAP to Proofpoint Cloud Threat Response, developing IR playbooks and procedures.

• Documented detection logic, workflows, and response procedures; mapped detections to MITRE ATT&CK.

• Perform daily operation of monitoring networks for security events/incidents to detect active threats, intrusions, and/or compromises.

• Respond to security alarms and analyze and escalate incidents by process or management.

• Engage on incident management and response efforts.

• Perform internal and external vulnerability assessments.

• Management of Endpoint Protection and Email Protection services.

• Tier one support of SIEM engineering.

• First line of operational support for requests with SKOUT's security services.

• Support general inquiries/requests relevant to security concerns and recommendations.

• Responsible for understanding the ever changing global threat landscape and tracking changes in this area, as well as understanding the direct or indirect impact to the customer base by publishing threat advisories on a regular basis.

• Perform customer management by understanding, identifying, and mitigating issues with customers security.

• Monitor, troubleshoot, escalate and/or remediate system health matters.

• Tier one support for firewall and mail filtering requests.

• Provide high quality editing and encoding services to our clients/partners and delivery within tight timeframes

• Troubleshoot complex video formatting issues

• Cultivate and maintain clear lines of communication with clients/partners

• Translate workflow details into simple comprehensible language when communicating with external clients/partners unfamiliar with our process

• Process video content and captions for near-live, live shows and special events/tent poles

• Perform Quality Control (QC) on all content before delivery

• Work in various internal Data/Content Management Systems (such as Alias, SAN, GSP, Bridge, Jira, MediaSilo, MediaShuttle, Reach Engine), as well as learn how to use new/emerging ones

• Adapt quickly to dynamic situations in the work environment

Design Automated Workflows in IBM/Aspera Orchestrator

• Manage information technology and computer systems

• Install and configure computer hardware, software, systems, networks, printers and scanners

• Install and maintain low voltage wiring

• Plan and undertake scheduled maintenance upgrades

• Communicate with others to determine the nature of issues as they arise

• Respond to breakdowns

• Troubleshooting, investigating, diagnosing, and solve computer software and hardware faults

• Repair equipment and replace parts

• Create and maintain software for several departments

• Set up third party service like internet, telephone lines, etc.

• Assist is maintaining company wireless account

• Design, develop, implement and coordinate systems, policies and procedures

• Act in alignment with user needs and system functionality to contribute to organizational policy

• Audit systems and assess their outcomes