Mark Carlo Molato

• Incident Investigation and Analysis: Conduct in-depth analysis of escalated security incidents from Level 1 SOC analysts, identifying root causes and potential impacts.
• Threat Hunting: Proactively search for undetected threats within the organization's network by analyzing logs, traffic patterns, and user behavior.
• Communicate to clients regarding to the suspicious detections and provide security recommendation to prevent
• Advanced Log Analysis: Review and analyze system, application, and network logs to detect anomalies and unauthorized activities.
• SIEM Tuning and Optimization: Optimize Security Information and Event Management (SIEM) alerts to reduce false positives and improve detection accuracy.
• Training and Mentorship: Provide guidance and training to Level 1 analysts, helping them improve their skills and knowledge.
• Cyber Intelligence - IOC (Indicators of Compromise) vetting and disposition
• Cyber hunt - monitor and assess complex security devices for patterns and anomalies, using manual search queries to identify threats reported via an alert or manual hunt.

• Responsible for the day-to-day corporate security operation of the company and assist in investigating security incident with issues raised by both internal users and external security researchers.

• Responsible for identity and access management for the organization and endpoint security management.

• Monitored systems for indications of threats, security breaches or intrusions.

• Made recommendations to improve security procedures and systems.

• Implemented cloud policies, managed technology requests and maintained service availability.

• Process the on-boarding and off-boarding of the employees to make sure all corporate access and security tools are provisioned or removed.

• Reviewed security bulletins and vulnerability patch releases.

• Used basic penetration testing tools to identify weaknesses in security systems.

• Handles Trendmicro SaaS and On-premise's incident tickets, escalation tickets and

POC tickets for SMB and Enterprise customers.

• Performs threat investigation and basic malware analysis

• Provided effective resolutions to issues and escalated problems with knowledgeable support and quality service.

• Employed critical-thinking skills in solving customer's problems.

• Handled Endpoint Detection and Response tickets

• Deploy Virtualization to help with the replication of the issue