Ridwan Asaolu

• Monitored and triaged security alerts using SIEM tools (Crowdstrike, Splunk, Sentinel, QRadar), validating true positives vs. false positives and escalating high-severity incidents to L2.

* Performed malware triage by detonating suspicious files and URLs in sandbox environments (Any.Run, Hybrid Analysis, Joe Sandbox) to extract IOCs, behavioral patterns, and command-and-control indicators.

• Performed initial investigations on suspicious activities, including failed logins, malware detections, phishing attempts, and anomalous network traffic.

• Conducted IP, URL, and file reputation analysis using tools such as VirusTotal, AbuseIPDB, OTX, Shodan, and WHOIS.

• Analyzed authentication logs, endpoint alerts, and network events to determine impact, scope, and source of alerts.

• Executed L1 containment actions such as blocking malicious IPs, isolating endpoints, disabling compromised accounts, and notifying IT/IR teams when required.

• Monitored real-time security events across SIEM, EDR, firewall, IDS/IPS, and cloud security dashboards to detect potential threats.

• Investigated phishing alerts by analyzing email headers, sender reputation, attachment behavior, and user activity logs.

• Performed user behavior analysis to identify unusual login patterns, privilege misuse, or suspicious access attempts.

• Generated daily, weekly, and monthly SOC reports summarizing incidents, threat trends, and operational metrics.

• Mapped alerts, malware behavior, and investigation findings to MITRE ATT&CK techniques to identify adversary TTPs, validate attack stages, and improve detection coverage.

• Documented all investigations thoroughly, including alert details, root cause findings, actions taken, and recommendations for SIEM tuning.

• Followed established incident response procedures and playbooks to ensure consistent and timely handling of security events.

• Ensured all SOC activities followed security policies, incident response procedures, and compliance requirements (SOC2, HIPAA, ISO27001).

• Collaborated with senior analysts to improve detection rules, reduce false positives, and strengthen overall SOC operations.

• Provided technical support for hardware and software issues, ensuring minimal downtime for end-users.
• Diagnosed and resolved network connectivity problems, enhancing user experience across multiple departments.
• Provided Tier 1 IT support to non-technical internal users through desk side support services.
• Assisted in the implementation of IT policies and procedures, promoting best practices among staff members.
• Mentored junior technicians, fostering skill development and improving team efficiency in troubleshooting processes.
• Coordinated with cross-functional teams to address complex technical issues, streamlining communication channels for resolution.
• Analyzed recurring support tickets to identify trends and recommend system improvements for enhanced performance.

• Delivered outstanding technical support to customers, resolving hardware and software issues related to mobile devices, operating systems, and network configurations.
• Diagnosed technical problems, offered troubleshooting solutions, and assisted in resolving issues efficiently, ensuring customer satisfaction and loyalty.
• Engaged customers in a professional manner, identifying their needs, addressing their concerns, and recommending solutions tailored to their requirements.
• Met or exceeded call volume and sales goals, leveraging technical knowledge to upsell services and products while maintaining the highest standards of customer service.
• Collaborated with the technical team to stay up-to-date on new products, services, and troubleshooting techniques, ensuring high levels of expertise and knowledge.
• Analyzed customer feedback to identify recurring issues, recommending product or process improvements to management to enhance customer experiences.
• Utilized CRM tools to document, track, and resolve customer issues, ensuring all customer interactions were properly logged for follow-up and future reference.

• Conducted research on emerging cybersecurity threats, including malware, ransomware, and phishing campaigns, to enhance proactive threat detection strategies.
• Assisted in the development of cybersecurity awareness materials, including training manuals and presentations for both technical and non-technical audiences.
• Participated in penetration testing and vulnerability scanning activities, identifying weaknesses in test environments and providing actionable remediation advice.
• Worked with the research team to analyze attack vectors and document findings, contributing to the development of new threat intelligence tools.
• Supported the creation of whitepapers and research reports on the latest cybersecurity trends and risk mitigation techniques.