Microsoft Certified Security Operations Analyst (SC-200)
Cybersecurity Analyst | SOC Analyst | Detection Engineering | Threat Hunting | Digital Forensics (DFIR) | Incident Response | Python Automation
Microsoft Certified Security Operations Analyst (SC-200) with hands-on experience building Security Operations Center (SOC) projects focused on Microsoft Sentinel, Detection Engineering, Threat Hunting, Incident Response, Digital Forensics (DFIR), Network Traffic Analysis, Windows Event Analysis, Sigma Rules and MITRE ATT&CK mapping.
My cybersecurity portfolio demonstrates practical investigations and blue-team workflows using Microsoft security technologies, Linux, Python, Bash, Sysmon, Velociraptor and GitHub.
Areas of interest include:
• Security Operations Center (SOC)
• Microsoft Sentinel
• Detection Engineering
• Threat Hunting
• Incident Response
• Digital Forensics (DFIR)
• Security Monitoring
• MITRE ATT&CK
I am currently seeking opportunities as a SOC Analyst, Cybersecurity Analyst, Detection Engineer, Threat Hunter, or Blue Team Analyst where I can apply my technical skills, investigative mindset, and commitment to continuous learning.
- Microsoft Certified Security Operations Analyst (SC-200)
- Google Cybersecurity Professional Certificate
- Career Essentials in Cybersecurity
- Career Essentials in Generative AI
- Microsoft Digital Literacy
Simulates Microsoft Sentinel alert triage, incident investigation, MITRE ATT&CK mapping, and SOC workflows.
Repository
https://github.com/thabosakonta-wq/microsoft-sentinel-lab
Development of Sigma rules for Windows Security Events, detection engineering workflows, and professional security reporting.
Repository
https://github.com/thabosakonta-wq/detection-engineering-lab
Proactive threat hunting using Linux authentication logs, detection engineering, and MITRE ATT&CK mapping.
Repository
https://github.com/thabosakonta-wq/threat-hunting-lab
Digital Forensics and Incident Response (DFIR) investigation demonstrating endpoint artifact analysis and forensic workflows.
Repository
https://github.com/thabosakonta-wq/velociraptor-investigation-lab
Investigation of DNS, HTTP, and suspicious network communications with MITRE ATT&CK mapping.
Repository
https://github.com/thabosakonta-wq/network-traffic-analysis-lab
Python automation scripts for SOC investigations, log analysis, alert generation, and incident reporting.
Repository
https://github.com/thabosakonta-wq/python-soc-automation-lab
- Microsoft Sentinel
- Threat Hunting
- Detection Engineering
- Incident Response
- Digital Forensics (DFIR)
- Security Monitoring
- MITRE ATT&CK
- Sigma Rules
- Python
- Bash
- PowerShell (Fundamentals)
- Windows
- Linux
- Android
- Microsoft Sentinel
- Git
- GitHub
- Termux
- Velociraptor
- MITRE ATT&CK
- Sigma
I continue expanding my expertise in:
- Microsoft Defender XDR
- Advanced Microsoft Sentinel Analytics
- Threat Intelligence
- Detection Engineering
- Cloud Security
- Security Automation
- AI for Cybersecurity
My goal is to build a career in Security Operations where I can contribute to protecting organizations through threat detection, incident response, detection engineering, digital forensics, and continuous security improvement.
I am actively developing practical blue-team skills through hands-on cybersecurity projects that simulate real-world SOC environments.
https://www.linkedin.com/in/thabo-sakonta-377a3748
GitHub
https://github.com/thabosakonta-wq
✔ Microsoft Sentinel Investigations
✔ Detection Engineering
✔ Threat Hunting
✔ Digital Forensics (DFIR)
✔ Network Traffic Analysis
✔ MITRE ATT&CK Mapping
✔ Windows Event Analysis
✔ Python SOC Automation
✔ Sigma Rule Development
✔ Professional Security Documentation
✔ Incident Investigation
✔ Security Reporting