ARNOB ROY

Dedicated cybersecurity professional with a Master's degree in IT specializing in Cybersecurity. Experienced in vulnerability management, threat intelligence, and OSINT. Strengthened organizational security during a Cyber Threat Intelligence internship at La Trobe University, conducting vulnerability assessments, phishing simulations, and comprehensive threat analysis. Currently expanding expertise through a Security Operations Center (SOC) project and completing the Google Cybersecurity Certification. Proficient in tools like Nessus, Nmap, Splunk, Maltego, and Google Dorking, demonstrating a proven ability to effectively identify and mitigate security threats. Skilled in problem-solving, collaboration, and employing innovative approaches to tackle complex security challenges.

• Designed and implemented advanced Detection and Response (D&R) rules in LimaCharlie to identify and mitigate simulated ransomware attacks and memory-based threats.
• Developed and tested YARA rules to detect file-based and in-memory malware, ensuring precise tagging and efficient threat categorization.
• Configured automated responses for malicious processes (e.g., vssadmin delete shadows) to enhance incident response capabilities.
• Conducted simulations using tools like ransomware simulators to validate detection mechanisms and refine response strategies.
• Improved organizational visibility into threat behaviors by leveraging telemetry data, process execution monitoring, and memory analysis.
• Demonstrated expertise in creating flexible and scalable rulesets, resulting in real-time threat detection and mitigation.

Successfully designed and implemented a robust detection and response (D&R) strategy using LimaCharlie for identifying and mitigating malicious activity, including simulated ransomware attacks and YARA-based detections.

Developed advanced rules to differentiate between file-based and memory-based threats, enabling precise tagging and streamlined threat intelligence. Demonstrated the ability to simulate and monitor malicious behaviors creating effective D&R rules that enhanced the organization's incident response capabilities while ensuring real-time visibility into process execution and memory activities.

Google cyber security cert