threat_hunter.sh

$ whoami

Sai Manish

$ cat role.txt

Threat Detection & Response Specialist

Detection Engineer | Threat Hunter

$ echo $EXPERTISE

KQL | Microsoft Sentinel | Cloud & Endpoint Defense

$ ls certifications/

SC-200 SC-100 AZ-500 ISC²-CC

Get In Touch LinkedIn

Scroll Down

01. About Me

profile.log

manish@soc:~$ cat about.txt

Experienced Threat Detection Engineer with 4+ years specializing in building and fine-tuning detections that strengthen enterprise defense against evolving threats.

I analyze telemetry across Microsoft Sentinel, Defender, and Azure environments to identify malicious patterns, automate responses, and improve SOC efficiency.

My approach combines data-driven investigation with an attacker's mindset to anticipate and neutralize threats before they escalate.

manish@soc:~$ ./list_strengths.sh

Threat detection engineering and alert optimization

Incident triage and rapid containment

Query development and telemetry analysis (KQL, Sentinel, Defender)

Collaboration, mentoring, and knowledge sharing within SOC teams

manish@soc:~$ echo $PASSION

Continuous improvement in detection logic and automation. Always open to connecting with fellow threat detection and hunting professionals to exchange insights and ideas.

0

Years Experience

0

Threats Hunted

0

Certifications

02. Experience

Nov 2025 - Present

Threat Detection Engineer

Resillion
  • Building and optimizing detection rules for enterprise environments
  • Advanced threat hunting using KQL and Microsoft Sentinel
  • Automating security responses and improving SOC efficiency
Jan 2025 - Nov 2025

Information Security Lead

Resillion
  • Led and managed SOC team, ensuring effective collaboration and mentoring
  • Prioritized and responded to high-severity (P1) incidents in real-time
  • Balanced leadership with hands-on investigation of critical alerts
  • Optimized processes through documented playbooks and detection rule tuning
  • Coordinated with cross-functional teams to drive incident response
Jun 2024 - Dec 2024

Information Security Analyst

Resillion
  • Managed threat detection across multiple client environments
  • Performed in-depth triage with focus on P1 incidents
  • Led monthly MDR review calls and prepared detailed reports
  • Executed vulnerability assessments and penetration testing
  • Maintained professional client communication and incident updates
Mar 2024 - May 2024

CTF Player

TryHackMe
  • Deep malware analysis and digital forensics using Wireshark and Autopsy
  • Advanced threat intelligence analysis and proactive threat hunting
  • File analysis expertise: OLE, PDF, HTML, HTA, VBS, JS, WSF, JAR, LNK
  • Expert in dynamic and static analysis of PE files
Dec 2022 - Mar 2024

Senior Security Analyst

Atech Cloud
  • Promoted from L1 to L2 within a year for excellent skills and leadership
  • Handled daily cybersecurity incidents using Microsoft Sentinel and Defender
  • Used advanced forensic tools and KQL for rapid threat detection
  • Created detailed incident response playbooks
  • Led proactive threat hunting with custom scripts and software
  • Developed KQL training program for team skill enhancement
Nov 2021 - Dec 2022

Jr Security Analyst

Atech Cloud
  • Focused on incident triage using Microsoft Sentinel
  • Managed email security and handled phishing attempts with Defender for Office 365
  • Handled Azure security settings for remote operations
  • Participated in early threat detection activities
  • Collaborated across teams to create robust security strategies

03. Skills & Expertise

Core Competencies

Threat Hunting
Alert Tuning
SOAR
Incident Response

Tools & Platforms

Microsoft Sentinel Defender for Endpoint Defender for Office 365 Azure Security KQL Wireshark Autopsy Nmap

Analysis & Detection

Malware Analysis Digital Forensics Threat Intelligence PE File Analysis File Analysis (OLE, PDF, JS) Detection Engineering

Security Testing

Vulnerability Assessment Penetration Testing Network Enumeration Email Security Phishing Analysis

04. Certifications

Microsoft SC-200

Security Operations Analyst

Microsoft

Microsoft SC-100

Cybersecurity Architect

Microsoft

Microsoft AZ-500

Azure Security Engineer

Microsoft

ISC² CC

Certified in Cybersecurity

ISC²

Additional Training & Certifications

Web Requests
Variables Python
Network Enumeration with Nmap

05. Get In Touch

contact_info.sh

$ cat contact.txt

I'm always open to discussing new opportunities, collaborations, or just connecting with fellow cybersecurity professionals.

Whether you have a question, job opportunity, or just want to say hi, feel free to reach out!

$ ./get_socials.sh