Available for Tier 1 SOC Analyst & Cybersecurity roles

Kamil Abdullayev

CyberSecurity Blue Team | Junior SOC Analyst | Threat Detection & Monitoring

I monitor, detect, and respond — turning noisy telemetry into clear, actionable security decisions.

Scroll
01About

The analyst behind the alerts

Highly motivated Junior SOC Analyst candidate with a solid background in software development and systems administration.

I'm actively developing practical skills in malware analysis, threat detection, and security monitoring using SIEM and XDR solutions — built and tested across infrastructure I've architected myself, not just theory.

I bring strong analytical and problem-solving skills, driven by a genuine passion for defending systems against real-world cyber threats — and I mentor the next generation of Blue Team and Helpdesk analysts along the way.

Focus
SOC Analytics & Threat Detection
Certification
Blue Team Junior Analyst (BTJA)
Role
Cybersecurity Mentor @ MilliSec
Target Roles
Tier 1 SOC Analyst · Cybersecurity

Education

  1. Incoming PhD Candidate
    Doctoral Studies
    Upcoming
  2. Cyber-Security Blue Team
    Millisec
    2025 - 2026
  3. Master's Degree, Computer Science
    Azerbaijan Technical University
    2024 - 2026
  4. Full-Stack Web Development
    Code Academy
    2022 - 2023
  5. Bachelor's Degree, Computer Science
    Baku State University
    2020 - 2024

Certifications

  1. Blue Team Junior Analyst (BTJA)
    Security Blue Team
    2026
  2. Blue Team Level 1 (BTL1)
    In Progress
    Centri (centri.org)
  3. IELTS — Band Score 7
    Barratson Education Center
    2024

Languages

  • EnglishC1
  • AzerbaijaniNative
  • RussianA2
  • TurkishB2
02Skills

Tools of the trade

A blend of defensive security depth and hands-on infrastructure work — from SIEM tuning to endpoint defense.

Networking & Fundamentals

TCP/IPDNSDHCPNATVLAN

SIEM & XDR Platforms

SplunkWazuhELK StackQRadarBitdefender XDR

Frameworks & Detection

MITRE ATT&CKOWASP Top 10Windows Event Logs & Sysmon

Threat Intelligence

OpenCTIMISPAbuseIPDBAlienVault

Security Tools

Honeypot (T-Pot)NessusSuricata IDS/IPSWAF

Systems & Scripting

Active Directory SecurityLinux (SELinux)PowerShell / BashPython, C++, C#, JS
03Projects

Projects & Builds

Real infrastructure and training environments designed with security-first thinking.

MilliSec MetaWEB

Cybersecurity & SOC Infrastructure Engineer

Architected and deployed a full-scale SOC infrastructure and secure web environment — spanning domain services, network defense, SIEM, threat intelligence, and vulnerability management.

Infrastructure & Network Management

Deployed a synchronized dual Domain Controller (DC01, DC02) Active Directory environment secured via BitLocker, with an isolated Nginx web server (Intranet/Public) accessed over WireGuard VPN.

SIEM & Log Monitoring

Installed Splunk Enterprise to centralize logs from Nginx, Cloudflare WAF, Suricata, and Bitdefender XDR. Authored custom detection rules for OWASP Top 10 attacks (XSS, SQLi, LFI) with real-time Telegram alerting.

Threat Management & Endpoint Security

Deployed Bitdefender GravityZone XDR fleet-wide and integrated OpenCTI with MISP, AbuseIPDB, and AlienVault, automating malicious IP/hash blocking across WAF and XDR.

Network Defense & Honeypot

Configured Cloudflare WAF geo-blocking, routed malicious traffic into a T-Pot honeypot via an Nginx reverse proxy, and enforced Suricata IDS/IPS rules.

Policy & Incident Management

Implemented GPOs for LAPS, strict password policy, and removable-storage blocking; deployed an on-prem Zammad ticketing system with SLA parameters and Blue Team IR templates.

Vulnerability Analysis & Simulation

Ran automated Nessus scans and patched critical flaws like outdated TLS/SSL. Built a custom C# ransomware sample and tested XDR bypass with Cobalt Strike.

Technical Projects

Monitor.ps1

Custom Security Monitoring System

Automated PowerShell script that continuously monitors Windows environments for malicious activity, integrating a Telegram bot API for real-time security alerts.

Splunk

Splunk SIEM Lab Implementation

Configured a custom Splunk index ("millisec") and fine-tuned inputs.conf to ingest Windows Security logs, with custom regex field extraction for threat analysis.

AD / LDAP

Cross-Platform Infrastructure & Authentication Lab

Engineered a network lab integrating Windows Server 2022 AD/LDAP with a Linux-based Nginx + MySQL environment to test cross-platform authentication security.

C# / .NET 8

Server-Client Notification Application

Built a prototype enterprise notification app in C# (.NET 8) using a server-client architecture to securely manage and log company-wide alerts.

04Experience

Where I've put in the work

Cybersecurity Instructor & Mentor

MilliSec

Current

Mentoring Helpdesk and Blue Team students, translating real-world SOC workflows into structured, hands-on training.

  • Prepare practical, scenario-based tasks aligned with MITRE ATT&CK
  • Manage and maintain complex multi-machine lab architectures
  • Conduct live Q&A sessions to reinforce Blue Team fundamentals
  • Co-designed and deployed a 6-hour practical Blue Team examination lab to test students' defensive skills

IT Technical HelpDesk Intern

AzerEnerji OJSC

May 2025 - October 2025

Provided frontline IT support across Windows systems, workstation peripherals, and office network equipment for the organization.

  • Troubleshot and maintained Windows OS, peripherals, and office network equipment
  • Used remote desktop and diagnostic tools to identify vulnerabilities and resolve infrastructure issues
  • Collaborated with senior IT staff to diagnose hardware issues and deploy software updates
  • Documented technical solutions for recurring infrastructure problems

Backend Developer Mentor

Garage Academy

August 2023 - February 2024

Mentored junior developers in backend architecture, code quality, and problem-solving as part of a software bootcamp.

  • Guided students through complex technical concepts and backend architecture
  • Fostered strong communication and technical leadership skills
  • Assisted students with their final graduation projects
  • Created new practical tasks for the program's curriculum
05Contact

Let's talk security.

Open to Tier 1 SOC Analyst and Cybersecurity opportunities. Reach out — I usually reply within a day.