Alejandro Avina

Security Analyst focused on SOC Operations, SIEM Monitoring, and Threat Detection.

About

Security Operations Analyst with a strong foundation in SIEM management, incident response, and log analysis. Experienced in deploying monitoring solutions (Wazuh) and tuning detection rules to catch adversarial techniques mapped to MITRE ATT&CK.

Work Experience

Sage Cleanings LLC
Remote
SOC
Wazuh
Incident Response
Log Analysis

2024 - Present

Security Analyst (Contract)

Managed security operations for a service-based business, establishing continuous monitoring and incident response procedures.

Deployed and monitored Wazuh SIEM to aggregate logs from distributed endpoints, enabling real-time threat visibility.
Conducted alert triage and investigation, filtering out false positives and escalating valid threats for remediation.
Performed vulnerability assessments and patch management, reducing the attack surface by eliminating high-risk CVEs.

Remote
SOC
Wazuh
Incident Response
Log Analysis

Education

California State University, East Bay

2022 - 2026

Bachelor of Science in Computer Science

Skills

SOC Operations
SIEM (Wazuh)
Log Analysis
Incident Response
Packet Analysis (Wireshark)
Linux CLI
MITRE ATT&CK
Python Scripting
Vulnerability Management

Side projects

SIEM & Detection Lab

Built a home lab to simulate real-world attacks (using Atomic Red Team) and practice the full SOC lifecycle: Detection, Investigation, and Remediation.

Wazuh
Sysmon
Atomic Red Team
SOC

pokiSEC Malware Sandbox

A Multi-Architecture, Containerized Malware Detonation Sandbox. Demonstrates ability to safely handle and analyze malicious artifacts.

Malware Analysis
Docker
Research

Automated Threat Intel Feed

Created an automated workflow to aggregate open-source threat intelligence (OSINT) and alert on indicators of compromise (IOCs) relevant to infrastructure.

Python
n8n
APIs
Automation

Alejandro Avina's Resume