Kamil Abdullayev
CyberSecurity Blue Team | Junior SOC Analyst | Threat Detection & Monitoring
I monitor, detect, and respond — turning noisy telemetry into clear, actionable security decisions.
The analyst behind the alerts
Highly motivated Junior SOC Analyst candidate with a solid background in software development and systems administration.
I'm actively developing practical skills in malware analysis, threat detection, and security monitoring using SIEM and XDR solutions — built and tested across infrastructure I've architected myself, not just theory.
I bring strong analytical and problem-solving skills, driven by a genuine passion for defending systems against real-world cyber threats — and I mentor the next generation of Blue Team and Helpdesk analysts along the way.
Education
- Incoming PhD CandidateDoctoral StudiesUpcoming
- Cyber-Security Blue TeamMillisec2025 - 2026
- Master's Degree, Computer ScienceAzerbaijan Technical University2024 - 2026
- Full-Stack Web DevelopmentCode Academy2022 - 2023
- Bachelor's Degree, Computer ScienceBaku State University2020 - 2024
Certifications
- Blue Team Junior Analyst (BTJA)Security Blue Team2026
- Blue Team Level 1 (BTL1)In ProgressCentri (centri.org)
- IELTS — Band Score 7Barratson Education Center2024
Languages
- EnglishC1
- AzerbaijaniNative
- RussianA2
- TurkishB2
Tools of the trade
A blend of defensive security depth and hands-on infrastructure work — from SIEM tuning to endpoint defense.
Networking & Fundamentals
SIEM & XDR Platforms
Frameworks & Detection
Threat Intelligence
Security Tools
Systems & Scripting
Projects & Builds
Real infrastructure and training environments designed with security-first thinking.
MilliSec MetaWEB
Cybersecurity & SOC Infrastructure Engineer
Architected and deployed a full-scale SOC infrastructure and secure web environment — spanning domain services, network defense, SIEM, threat intelligence, and vulnerability management.
Deployed a synchronized dual Domain Controller (DC01, DC02) Active Directory environment secured via BitLocker, with an isolated Nginx web server (Intranet/Public) accessed over WireGuard VPN.
Installed Splunk Enterprise to centralize logs from Nginx, Cloudflare WAF, Suricata, and Bitdefender XDR. Authored custom detection rules for OWASP Top 10 attacks (XSS, SQLi, LFI) with real-time Telegram alerting.
Deployed Bitdefender GravityZone XDR fleet-wide and integrated OpenCTI with MISP, AbuseIPDB, and AlienVault, automating malicious IP/hash blocking across WAF and XDR.
Configured Cloudflare WAF geo-blocking, routed malicious traffic into a T-Pot honeypot via an Nginx reverse proxy, and enforced Suricata IDS/IPS rules.
Implemented GPOs for LAPS, strict password policy, and removable-storage blocking; deployed an on-prem Zammad ticketing system with SLA parameters and Blue Team IR templates.
Ran automated Nessus scans and patched critical flaws like outdated TLS/SSL. Built a custom C# ransomware sample and tested XDR bypass with Cobalt Strike.
Technical Projects
Custom Security Monitoring System
Automated PowerShell script that continuously monitors Windows environments for malicious activity, integrating a Telegram bot API for real-time security alerts.
Splunk SIEM Lab Implementation
Configured a custom Splunk index ("millisec") and fine-tuned inputs.conf to ingest Windows Security logs, with custom regex field extraction for threat analysis.
Cross-Platform Infrastructure & Authentication Lab
Engineered a network lab integrating Windows Server 2022 AD/LDAP with a Linux-based Nginx + MySQL environment to test cross-platform authentication security.
Server-Client Notification Application
Built a prototype enterprise notification app in C# (.NET 8) using a server-client architecture to securely manage and log company-wide alerts.
Where I've put in the work
Cybersecurity Instructor & Mentor
MilliSec
Mentoring Helpdesk and Blue Team students, translating real-world SOC workflows into structured, hands-on training.
- Prepare practical, scenario-based tasks aligned with MITRE ATT&CK
- Manage and maintain complex multi-machine lab architectures
- Conduct live Q&A sessions to reinforce Blue Team fundamentals
- Co-designed and deployed a 6-hour practical Blue Team examination lab to test students' defensive skills
IT Technical HelpDesk Intern
AzerEnerji OJSC
Provided frontline IT support across Windows systems, workstation peripherals, and office network equipment for the organization.
- Troubleshot and maintained Windows OS, peripherals, and office network equipment
- Used remote desktop and diagnostic tools to identify vulnerabilities and resolve infrastructure issues
- Collaborated with senior IT staff to diagnose hardware issues and deploy software updates
- Documented technical solutions for recurring infrastructure problems
Backend Developer Mentor
Garage Academy
Mentored junior developers in backend architecture, code quality, and problem-solving as part of a software bootcamp.
- Guided students through complex technical concepts and backend architecture
- Fostered strong communication and technical leadership skills
- Assisted students with their final graduation projects
- Created new practical tasks for the program's curriculum
Let's talk security.
Open to Tier 1 SOC Analyst and Cybersecurity opportunities. Reach out — I usually reply within a day.