I will do soc automation with genai

India

I speak English, Hindi, Punjabi

CISSP ! Security Engineer ! AWS ! GCP ! Azure ! AI Security ! Automation

Cybersecurity expert | CISSP | 5+ years securing enterprises. What I do: - Cloud Security: AWS, GCP, Azure - DevSecOps: SAST, DAST, IaC, container scanning - AI/LLM Security: prompt injection, agenti...
About this Gig

Drowning in alerts? I'll make your SOC intelligent.


I build GenAI-powered security automation workflows that 

auto-triage alerts, enrich context, and classify True 

Positive vs False Positive - without a human touching it.


CISSP certified. Built this at enterprise scale.

100+ SIEM data sources. Real SOC. Real automation.


What I deliver:

- GenAI alert triage engine (Claude / GPT based)

- SIEM + XDR + ticketing integration via API/MCP

- Automated TP/FP classification workflow

- SOAR playbook design and implementation

- Incident enrichment from threat intel sources

- Jira / PagerDuty / Slack notification automation

- Full documentation and runbook


Deployment options:

- AWS Lambda (serverless, event-driven)

- Google Cloud Functions (GCP native)

- Azure Functions (Microsoft stack)

- Native SOAR (Palo Alto XSOAR, Splunk SOAR)

- Your own server or VM (Python scripts)


Tech stack I work with:

SIEM: Splunk, Coralogix, Sentinel, QRadar

XDR: CrowdStrike, SentinelOne, Defender

SOAR: Palo Alto XSOAR, Splunk SOAR, custom Python

GenAI: Claude, GPT-4, LangChain, MCP

Ticketing: Jira, ServiceNow, PagerDuty


Message me first - every SOC is different.

Device:

Server

Operating system:

Linux

My Portfolio