GABY SAJI

IT and cybersecurity professional with over 2 years of experience in network security, SOC analysis, and IT administration, expert in digital forensics and incident response. My key achievements include reducing successful phishing attempts by 25% at Malayala Manorama using Splunk Phantom and implementing CrowdStrike for enhanced endpoint detection which contributed to the mitigation of brute force attacks in AWS environments. Seeking a new position, where I can bring my network security and SOC analysis skills to support your mission of safeguarding digital assets and infrastructure from evolving security threats.

• Cybersecurity Roles, Processes & Operating System Security, Coursera
• Technical Support Fundamentals, Google
• QualysGuard Certified Specialist, Qualys
• Risk Management Framework, National Institute of Standards and Technology (NIST)
• Android Bug Bounty Hunting: Hunt Like a Rat, EC-Council
• Microsoft Windows Defender and Firewall for Beginners, IBM
• Foundations of Cybersecurity, Google

• A Day In the Life of a Junior (Associate) Security Analyst - Created a custom SIEM dashboard, analyzed logs, tracked malicious IPs using AbuseIPDB and Cisco Talos, and blocked them.Enhanced security by creating a custom SIEM dashboard, identifying and blocking malicious IPs through in-depth log analysis and threat intelligence tools.
• Web Application Security - Identified and fixed a potential IDOR vulnerability, assessed its impact,and set up ongoing monitoring to prevent future issues.Enhanced data security by mitigating a potential breach, resulting ina 50% reduction in system vulnerabilities.
• Azure Sentinel (SIEM) - Created a custom PowerShell script to extract metadata from Windows Event Viewer for geolocation via a third-party API. Configured an Azure Sentinel workbook to display global RDP brute force attack data on a world map, showing locations and attack magnitudes.Improved cybersecurity posture by reducing threat response time by 45%, by mapping 200+ global RDP brute force attacks.
• Certificate pinning Bypass - Bypassed certificate pinning in Android apps using Genymotion, Frida, ADB, and Burp Suite, revealing vulnerabilities and underscoring the need for stronger mobile security measures. Enhanced mobile security by identifying and rectifying critical vulnerabilities in 6 Android apps through bypassing certificate pinning.
• Microsoft Windows Defender and Firewall - Implemented custom folder scanning, inbound and outbound rules in Microsoft Defender, and configured the Microsoft Firewall through an IBM-powered Coursera project. Enhanced system security by configuring custom antivirus scans, inbound and outbound rules in Microsoft Defender, and updating the Microsoft Firewall through an IBM-powered Coursera project.
• VMWARE ESXI - Successfully set up VMware ESXi on a USB, configured RAID 5, assigned a static IP, and accessed the network via SSH using PuTTY. Successfully deployed VMware ESXi with RAID 5 for data redundancy, configured network settings, and managed the server via SSH, demonstrating effective virtualization and network management skills.