Cybersecurity Analyst — Pune, India

MAYUR MAHAJAN

SOC L1 Analyst specialising in incident response, phishing detection & SIEM-driven threat hunting. Deployed on the Microsoft Anti-Phishing project at LTIMindtree.

View Experience → ⬇ Download Resume Get In Touch
2+
Years Active
60+
Daily Alerts
25%
FP Reduced
100+
URLs Blocked/Mo
Scroll
01 — Identity

Who Is
Mayur?

I'm a Cybersecurity Analyst with 2+ years of hands-on SOC experience, focused on phishing analysis, malware investigation, and end-to-end incident lifecycle management.

Embedded in the Microsoft Anti-Phishing project at LTIMindtree, I operate across Splunk SIEM and Microsoft Defender — detecting, triaging and containing enterprise-scale threats across 40–60+ daily alerts.

My expertise covers the complete PICERL lifecycle — detection through root-cause analysis, containment, eradication, and post-incident reporting. Results: ~25% false positive reduction and 100+ malicious URLs blocked monthly.

Actively upskilling for SOC L2 and advanced SIEM roles using MITRE ATT&CK, OWASP Top 10, and Zero Trust principles in live environments.

ANALYST PROFILE
ACTIVE
RoleSOC Analyst L1
EmployerLTIMindtree
ClientMicrosoft
LocationPune, Maharashtra
Contactmayurmahajan.020@gmail.com
AvailabilityOpen to New Opportunities
FP Reduction~25% Achieved
02 — Arsenal

Technical
Capabilities

01
Security Operations
SOC L1/L2Alert TriageIncident ResponseThreat HuntingPICERLPhishing AnalysisMalware Analysis
02
SIEM & Endpoint
SplunkMicrosoft DefenderEDR / XDRSophosLog AnalysisSandboxing
03
Analysis Tools
WiresharkBurp SuiteVirusTotalHybrid AnalysisNmapOSINT Tools
04
Frameworks
MITRE ATT&CKOWASP Top 10NIST CSFDiamond ModelPyramid of PainZero Trust
05
Network & Protocols
TCP/IPDNSHTTP/SSPF/DKIM/DMARCIDS/IPSPacket AnalysisFirewall/DHCP
06
Platforms & Process
WindowsLinux CLIMicrosoft AzureServiceNowIOC IdentificationSOP/SLA
03 — Mission Log

Work
Experience

LTIMindtree · Client: Microsoft
Cybersecurity Analyst — SOC Operations
Dec 2024 – Present · Pune, India
  • Handle 40–60+ security alerts daily — phishing, spam, and malware incidents — performing real-time monitoring, triage, investigation, and escalation across enterprise environments.
  • Use Splunk SIEM to detect security breaches, correlate events, and perform root-cause analysis per client SOPs.
  • Conduct email header analysis, URL/domain analysis, and sandbox malware investigation using VirusTotal and Hybrid Analysis via static and dynamic techniques.
  • Analyse phishing emails and malicious URLs using OSINT tools; classify phishing techniques (credential harvesting, BEC, spear phishing) and document IOCs.
  • Reduced false positives by ~20–25% through refined detection rules; blocked 100+ malicious URLs monthly.
  • Manage incident tickets in ServiceNow; prepare daily, weekly, and monthly incident reports in client-specified format.
  • Report phishing URLs for Microsoft SmartScreen filter updates; monitor global phishing trends.
LTIMindtree
Cybersecurity Analyst
May 2024 – Dec 2024 · 7 months · Pune
  • Supported cloud security monitoring, identity protection, and security event triage across Microsoft Azure environments.
  • Transitioned from cloud infrastructure to dedicated SOC operations, strengthening detection and incident response capabilities.
  • Assisted in threat correlation, alert investigation, and SIEM rule management.
LTIMindtree
Graduate Engineer Trainee
Mar 2024 – May 2024 · 3 months · Pune
  • Completed cybersecurity domain onboarding covering SOC workflows, SIEM platforms, and enterprise security tooling.
  • Gained foundational exposure to threat detection processes, ticketing systems, and incident response procedures.
  • Handle 40–60+ security alerts daily — phishing, spam, malware — performing real-time monitoring, triage, investigation and escalation.
  • Use Splunk SIEM to detect breaches, correlate events, and perform root-cause analysis per client SOPs.
  • Conduct email header, URL/domain analysis and sandbox malware investigation using VirusTotal and Hybrid Analysis.
  • Classify phishing techniques (credential harvesting, BEC, spear phishing); document IOCs.
  • Reduced false positives ~25%; blocked 100+ malicious URLs monthly via proactive threat intel.
  • Manage ServiceNow tickets; prepare daily, weekly and monthly reports in client format.
  • Supported cloud security monitoring, identity protection, and security event triage across Azure environments.
  • Transitioned from cloud infrastructure to dedicated SOC operations.
  • Assisted in threat correlation, alert investigation, and SIEM rule management.
  • Completed cybersecurity onboarding covering SOC workflows, SIEM platforms, and enterprise security tooling.
  • Gained foundational exposure to threat detection, ticketing systems, and incident response.
04 — Field Ops

Key
Projects

// PROJECT ALPHA — CLIENT: MICROSOFT
Anti-Phishing Intelligence &
Threat Detection

End-to-end investigation of phishing emails, malicious URLs and suspicious domains using OSINT and third-party intel tools. Performed email header and sandbox-based URL analysis using Burp Suite, VirusTotal and Hybrid Analysis; identified IOCs and phishing infrastructure. Classified phishing techniques including credential harvesting, BEC and domain spoofing. Reported URLs for Microsoft SmartScreen updates and monitored global phishing trends, updating internal SOPs and collaborating with the client on escalated campaigns.

Burp SuiteVirusTotalHybrid AnalysisOSINT ToolsEmail Header AnalysisIOC IdentificationURL BlocklistingMicrosoft SmartScreen
05 — Cleared Levels

Certifications
& Credentials

01
Microsoft Azure AI Fundamentals
Microsoft Certified
02
Generative AI
Coursera
03
Programming for Everybody — Python
Coursera
04
SQL
Certified
05
Full Stack Development Bootcamp
Certified
06
Decentralized Voting System — Blockchain
Copyright Holder
06 — Recognition

Awards &
Achievements

🏆
Super Crew Award
LTIMindtree — iWkn
Recognised for exceptional initiative, accuracy and high-impact execution in SOC operations.
Hi-Five Spot Award
LTIMindtree
Awarded for taking initiative and completing all tasks with impeccable accuracy and speed.
🤝
Team Player Award
LTIMindtree
Formally recognised for collaborative excellence and consistent contribution to SOC team goals.
💡
Creative Award
LTIMindtree
Awarded for innovative problem-solving and creative contributions to security detection workflows.
07 — Education

Academic
Background

Bachelor of Engineering — Computer Engineering
Dr. D.Y. Patil Institute of Engineering, Management & Research
Savitribai Phule Pune University
GRADUATED 2023
B.E.
Computer
Engineering
Let's
Connect.

Looking to bring a sharp SOC analyst onto your team? I'm open to conversations.

✉ Email ⟐ LinkedIn ◈ Portfolio ⬇ Resume