Asad Noor SOC • SIEM • Detection
Download CV Hire / Contact
Open to: SOC • SIEM • Detection Engineering • Infrastructure Security

I build detection-first security operations for fintech and enterprise teams.

SOC monitoring, SIEM engineering, threat hunting, and infrastructure security — with a focus on measurable outcomes, clean documentation, and recruiter-friendly presentation.

View Projects Download CV

Designed to help recruiters find the right keywords fast, while giving managers and clients the proof they need to trust your work.

SOC / SIEM EngineeringDetection EngineeringThreat HuntingIncident ResponseVulnerability ManagementInfrastructure Security

Built for recruiters, clients, managers, and directors

Each audience scans for different signals. This portfolio is structured to serve all four without losing technical depth.

Recruiters

Clear titles, ATS-friendly keywords, measurable impact, and quick proof of relevance.

Hiring Managers

Tools, architecture, logs, detections, and the exact work behind the outcomes.

Clients

Trust-building case studies that explain the problem, approach, and business result.

Directors

Scope, consistency, uptime, risk reduction, and documentation discipline.

Featured work

Highlight the strongest evidence first: SIEM engineering, detection rules, hardening, and automation.

All projects
SIEM & Detection

On-Prem SIEM Architecture

Built a production SIEM with ELK, Wazuh, Elastic Defend, and n8n to centralize telemetry across 500+ endpoints and network devices.

Read case study
Threat Detection

Detection Engineering Program

Created a reusable detection library and playbook set for SOC operations, improving consistency across triage and escalation.

Read case study
Hardening

Vulnerability Assessment & CIS Hardening

Ran recurring vulnerability scans and hardening cycles to reduce attack surface across Linux and Windows systems.

Read case study

Core capabilities

  • SIEM engineering with ELK, Wazuh, Splunk, and endpoint telemetry.
  • Threat hunting, incident response, and structured escalation.
  • Vulnerability assessment, CIS hardening, and attack-surface reduction.
  • MikroTik routing, VLAN segmentation, firewall policy, and secure connectivity.

Why this portfolio is different

  • It combines infrastructure, detection, and operations in one story.
  • It uses real metrics instead of generic adjectives.
  • It is built for both keyword matching and human trust.
  • It is easy to update from Git as your work evolves.

Skills and certifications

Use recognizable tools, frameworks, and credentials near the top of the page to improve scanning speed and confidence.

SIEM & Detection

ELK StackWazuhSplunkElastic DefendMITRE ATT&CKLog Correlation

SOC Operations

Alert TriageIncident InvestigationRoot Cause AnalysisEscalationPlaybooks

Infrastructure

LinuxWindows ServerActive DirectoryProxmox VEVMwareZimbra

Networking

MikroTik RouterOSOSPFBGPL2VPNVLANsFirewall ACLs

Security Tools

OpenVASNmapBurp SuiteWiresharkCIS BenchmarksOWASP Top 10

Automation

n8nBashPowerShellTelegram AlertsEmail AlertsDocumentation

Certifications

Cisco CyberOps AssociateCisco CCNACisco Ethical HackerCisco Cybersecurity EssentialsPalo Alto SOCPalo Alto Network SecurityPalo Alto Cloud SecurityTryHackMe: Advent of Cyber 2025TryHackMe: Jr. Penetration TesterEC-Council: Hands-on Web Application Security

Ready to review in one page

Use the resume page for the full ATS-ready version, and the project pages for deeper technical proof.

Resume Contact