Intern
Cognizant Technology Solutions, CTS
02.2025 - 06.2025
- Gained hands-on experience with Splunk Enterprise Security (ES) and Splunk SOAR for real-time threat monitoring and response.
- Created detection rules for OWASP Top 10 vulnerabilities, including SQL Injection and Cross-Site Scripting (XSS).
- Developed automated playbooks in SOAR to respond to threats and simulate incident response workflows.
- Conducted threat hunting using indicators of compromise (IOCs) and anomaly-based detection mapped to the MITRE ATT&CK framework.
- Performed log analysis and digital forensics using system, application, and network logs to investigate security incidents.
- Built interactive dashboards and alerts for SOC teams to enhance visibility and reduce mean time to detect/respond.
- Tuned detection rules to reduce false positives, improving alert accuracy and operational efficiency.
