Rumman Khan

About Me

I am a Security Operations Senior Analyst with 4+ years of experience in protecting enterprise environments through proactive monitoring, threat detection, and incident response. I work with tools like SentinelOne, Microsoft Defender for Endpoint, Splunk, and SIEM platforms to manage end-to-end incident lifecycles, perform phishing analysis, and conduct vulnerability assessments.

Beyond hands-on operations, I have experience inthreat hunting, SIEM use case design, penetration testing, and risk reporting. I also enjoy mentoring junior analysts and driving process improvements within SOC workflows to ensure both accuracy and efficiency.

I hold industry-recognized certifications including Blue Team Level 1 (BTL1), eJPT, Splunk Certified Core User, CEH, and IBM Cybersecurity Analyst, which reinforce my technical expertise and commitment to continuous learning.

Passionate about strengthening security posture and minimizing risks, I thrive in dynamic SOC environments and am dedicated to delivering resilient cybersecurity operations.