Information Security Leader | SOC Operations | Threat Intelligence
Information Security leader with 10+ years driving Security Operation, Cloud Security, and Threat Intelligence programs across enterprise and startup environments. Currently pioneering AI agent-based security automation at Dreamsports building intelligent orchestration workflows, LLM-powered incident response, and autonomous threat detection systems. Deep expertise in SIEM/SOAR platforms, shift-left security practices, and scalable log pipeline architecture across AWS and GCP. Proven track record transforming security operations through automation, reducing MTTR, and operationalising threat intelligence at scale.
A unified web-based explorer for 4,100+ security detection rules aggregated from 9 major SIEM platforms — Elastic, Splunk, Sigma, Google Chronicle, OpenSearch, Wazuh, and more. Rules are normalized for easy browsing, filtering by MITRE ATT&CK tactics, techniques, platforms, and data sources. Updated weekly from official public repositories.
A CLI tool that orchestrates TruffleHog, Gitleaks, and Semgrep under a single interface to scan local files, GitHub repos, and AWS S3 buckets for exposed secrets and credentials. Features live API credential validation, deduplication of findings across tools, and Claude-powered NLP investigation mode for incident response Q&A — all from one command.
Expiring June 2026
Let's connect! Feel free to reach out for collaboration, opportunities, or just to say hello.
shah.dhawal.s@gmail.com