Dhruv Patel
Lebanon
Summary
I am a seasoned Security Analyst transitioning into a Detection Engineering role. Throughout my career, I have focused on threat monitoring, incident response, and threat hunting, using platforms like Elastic SIEM and Microsoft Defender. My expertise in creating and optimizing detection rules aligns with the MITRE ATT&CK framework, helping organizations quickly pinpoint and remediate security threats. I also have experience developing and refining data ingestion pipelines, collaborating with cross-functional teams to ensure accurate log collection, and mentoring new SOC members. With a background that spans SIEM management, custom alert configuration, and advanced threat detection, I bring a results-driven approach to building robust, efficient security detection mechanisms.
Overview
5
5
years of professional experience
1
1
Certification
Work History
Security Operations Center Analyst II
Total Quality Logistics
01.2025 - Current
- Continuously monitored Elastic SIEM and Microsoft Defender for security threats and developed threat hunting workflow from scratch.
- Collaborated with cross-functional security teams, including Application Security and Infrastructure Security, to ingest logs and event data into Elastic SIEM.
- Developed alerts leveraging the MITRE ATT&CK framework for rapid threat detection.
- Created and implemented structured threat-hunting workflows for the SOC.
- Trained and mentored new SOC analysts in threat hunting and incident response best practices.
Security Operations Center Analyst
Total Quality Logistics
07.2023 - 01.2025
- Acted as the primary first line of defense for the organization.
- Monitored email traffic through Proofpoint and evaluated user-reported messages in PhishER.
- Created and implemented custom email firewall rules in Proofpoint to block or allow emails as needed.
- Project: Designed and developed an SOC metrics dashboard, including selecting critical metrics, engineering data pipelines, and integrating data from multiple security tools and the Jira ticketing system into Elastic SIEM.
Network Operations Center Technician
Connectria
08.2021 - 04.2022
- Monitoring customer environments using multiple enterprise monitoring tools like SolarWinds.
- Ensuring all alerts generated during the shift are handled promptly and escalated if needed to Engineers.
- Completing scheduled daily tasks like maintenance of AWS instances, cloud hosting devices, VMware, etc.
- Communicating with customers and engineers.
- Thoroughly documenting all aspects of daily activities.
EUS Service Desk Analyst
Bell Techlogix, Inc.
06.2020 - 01.2021
- Assist clients to leverage technology to solve business problems by being the first point of contact for all technology related problems, escalating unresolvable transactions to the next level.
- Compliance with customers' technical and quality standards and procedures.
- Answer user inquiries regarding computer software or hardware operation to resolve problems using technical manuals, confer with users, or conduct computer diagnostics to investigate and resolve problems or to provide technical assistance and support.
Education
Graduate Certificate Program - Purple Team Operations
SANS Technology Institute
12.2026
Bachelor of Science - BS - Computer Science
Indiana University Bloomington
05.2023
Skills
- Proactive Threat Hunting (EDR & SIEM)
- Anomalous-Behavior & TTP Detection
- Threat Intel Consumption & Enrichment
- Emerging Threat Research & Trend Analysis
- Cross-team Collaboration
- Log Pipeline & Parsing (Elastic Stack / Logstash / Beats)
- Endpoint, Network & Identity Controls
- Cloud & SaaS Security Posture
- Forensic Log Analysis (Windows, Linux, macOS, SaaS & Cloud sources)
Certification
- Connect and Protect: Network and Network Security
- Play it Safe: Manage Security Risks
- Foundations of Cybersecurity
- Elastic Certified Observability Engineer
- MITRE ATT&CK Fundamentals Certification
Timeline
Security Operations Center Analyst II
Total Quality Logistics
01.2025 - Current
Security Operations Center Analyst
Total Quality Logistics
07.2023 - 01.2025
Network Operations Center Technician
Connectria
08.2021 - 04.2022
EUS Service Desk Analyst
Bell Techlogix, Inc.
06.2020 - 01.2021
Bachelor of Science - BS - Computer Science
Indiana University Bloomington
Graduate Certificate Program - Purple Team Operations
SANS Technology Institute
Similar Profiles
Trey BuehlerTrey Buehler
Customer Account Specialist at Total Quality Logistics Inc.Customer Account Specialist at Total Quality Logistics Inc.
Quinn FashingbauerQuinn Fashingbauer
Logistics Account Executive at Total Quality Logistics Inc.Logistics Account Executive at Total Quality Logistics Inc.
Jose I. MontesJose I. Montes
Operations Manager – Carrier Sales & Mexico Department at Total Quality Logistics (TQL)Operations Manager – Carrier Sales & Mexico Department at Total Quality Logistics (TQL)
Kelton EdwardsKelton Edwards
Logistics Account Executive at Total Quality LogisticsLogistics Account Executive at Total Quality Logistics
Anna Grace FergussonAnna Grace Fergusson
Volunteer at Mobile MealsVolunteer at Mobile Meals