Hi there

My name is Himanshu Gidwani, I'm a results-driven cybersecurity professional with hands-on experience in SOC operations, incident triage and investigation, rule tuning, documentation, web application security, and client collaboration.

Based in Mohali, Punjab, I stay up to date through daily learning from sources like LetsDefend, Medium, TryHackMe, industry certifications, and technical literature.

Below is a summary of my technical skills, professional experience, education, and certifications.

Skills

DLP

• Policy Setup
• Incident Investigation
• 7000+ Endpoints
• Client Reporting

Expertise in setting up DLP policies, investigating incidents across 7000+ endpoints, creating weekly security summaries, and handling client queries.

SIEM

• Rapid7 InsightIDR
• Elastic SIEM
• Azure Sentinel
• Cortex

Expertise in setting up detection rules, investigating incidents and handling client queries across Rapid7 InsightIDR, Elastic, Azure Sentinel, and Cortex platforms.

Email Security

• Avanan
• Phishing Analysis
• Header Analysis
• Malicious Email Triage

Expertise in the analysis of malicious email incidents, leveraging tools like Avanan for phishing detection, header analysis, and threat attribution.

Malware Analysis

• Static Analysis
• Dynamic Analysis
• Home Lab
• LetsDefend

Hands-on experience in static and dynamic malware analysis in a home lab environment and on platforms like LetsDefend.

EDR / XDR

• SentinelOne
• Cylance
• Cortex XDR

Experience with SentinelOne, Cylance, and Cortex for incident investigation, threat hunting, and endpoint health checks.

Other Skills

• Python Scripting
• Autopsy
• Volatility3
• OSINT
• Jira (ITSM)
• AI / ML

Forensic investigation using Autopsy and Volatility3, Python scripting for automation, OSINT platform usage, ITSM tooling with Jira, and applied AI/ML knowledge. Also an active technical article writer.

Experience

SOC Analyst – SafeAeon

Apr 2024 – Present  |  Mohali, Punjab

• SIEM
• EDR
• DLP
• Incident Response
• Client Communication

Administer, fine-tune, and create detection rules; investigate incidents across SIEM, EDR, and DLP platforms to reduce false positives and enhance actionable alerts. Handle parsing and exclusion management, contributing to seamless client support.

Present weekly security summaries and follow-ups, enhancing client communication and operational transparency.

Cybersecurity Intern – VIEH Group

Aug 2022 – Oct 2022  |  Remote

• Vulnerability Assessment
• Ethical Hacking
• Penetration Testing

Enhanced expertise in vulnerability assessment and ethical hacking. Proactively identified and reported vulnerabilities, playing a vital role in fortifying the organization's security posture and protecting sensitive data.

Cybersecurity Intern – Cyber3ra

May 2022 – Jul 2022  |  Remote

• Vulnerability Assessment
• Cross-functional Teams
• Security Reporting

Collaborated in cross-functional teams for vulnerability assessments. Identified vulnerabilities and contributed to actionable reports, enhancing the organization's security posture for data protection and threat mitigation.

Education

Chandigarh University

Jun 2020 – Jun 2024

• Computer Science
• Honors in AI & ML
• CGPA: 7.87 / 10.0

Bachelor of Engineering in Computer Science with Honors in Artificial Intelligence and Machine Learning.

Certifications

CompTIA Security+

Jan 2025

• CompTIA
• Security
• Industry Standard

One of the most widely recognized cybersecurity certifications, validating core security skills across threat management, cryptography, identity management, and network security.

TryHackMe – SOC Level 2

Oct 2024

• TryHackMe
• SOC Operations
• Threat Intelligence

Advanced SOC analyst learning path covering threat intelligence, incident response, malware analysis, and advanced SIEM operations.

Google Cybersecurity Professional Certificate V2

Jun 2023

• Google
• Cybersecurity Fundamentals
• Coursera

Comprehensive professional certificate covering cybersecurity fundamentals, network security, Python automation, and SIEM tools.

TCM Security – Practical Ethical Hacking

May 2022

• TCM Security
• Ethical Hacking
• Penetration Testing

Hands-on penetration testing course covering network exploitation, Active Directory attacks, web application testing, and professional report writing.

DHS – Attack Methodologies in IT and ICS

Oct 2022

• U.S. Dept. of Homeland Security
• ICS Security
• OT / IT

Certificate from the U.S. Department of Homeland Security covering attack methodologies in both IT and Industrial Control Systems (ICS) environments.

Contact

Reach out via Email  or connect on  LinkedIn