May Sofiia Emelicheva

• Investigated and triaged security alerts and incidents by analyzing SIEM logs, endpoint activity, and network traffic using Splunk, SentinelOne, and firewall tools
• Conducted incident response actions including isolating endpoints, resetting credentials, blocking malicious domains/IPs, and initiating system scans
• Performed threat intelligence analysis using tools such as VirusTotal and IP-based intelligence platforms to validate indicators of compromise
• Monitored and analyzed security events within Microsoft Defender and Azure environments to identify suspicious or unauthorized activity
• Created and tuned detection rules to improve alert accuracy and reduce false positives across multiple platforms
• Investigated authentication anomalies including brute-force attempts and suspicious login activity
• Remoted into endpoints to collect forensic data, analyze system activity, and support incident investigations
• Evaluated and tested security tool integrations to assess effectiveness before deployment into the enterprise environment

• Led onboarding and training for new co-op analysts, guiding them on SOC workflows, security tools, and incident response procedures

• Designed and executed phishing simulations to assess and improve user security awareness
• Supported compliance efforts with COPPA and GDPR regulations to ensure proper data protection practices
• Assisted in security awareness initiatives including newsletters and training materials

• Supervised daily store operations and coordinated team workflow in a fast-paced environment
• Trained and mentored new employees, improving team performance and efficiency
• Managed cash handling, inventory processes, and store security procedures