Cybersecurity AnalystSIEM Deployment · Endpoint Monitoring · Threat Detection

I design and implement security monitoring systems focused on endpoint visibility, log analysis, and practical threat detection. My experience includes deploying Wazuh-based SIEM infrastructures, conducting vulnerability assessments, and performing application security testing across Windows and Linux environments.

View ProjectsContact Me

Professional Profile

Cybersecurity professional focused on practical detection engineering, SIEM deployment, and endpoint security operations. I specialize in designing monitoring infrastructures using Wazuh and the ELK stack, integrating threat intelligence, and performing structured vulnerability assessments across Windows and Linux environments.

My experience spans cloud-based SIEM deployment on Azure, log correlation tuning, penetration testing in controlled lab environments, and corporate endpoint management. I approach security with an operational mindset—prioritizing visibility, accuracy, and measurable detection improvements.

Professional Experience

Cybersecurity Intern — Cyforce Technologies

Abuja, Nigeria · May 2024 – Oct 2024

  • Deployed and configured a full SIEM stack using Wazuh and the ELK (Elasticsearch, Logstash, Kibana) stack from scratch, including agent installation and log ingestion pipelines.
  • Configured endpoint security agents across Windows and Linux systems for centralized monitoring and event correlation.
  • Analyzed host-based telemetry and network traffic to identify anomalies, malware indicators, and unauthorized access attempts.
  • Assisted in IDS rule tuning and firewall configuration to improve detection accuracy and reduce false positives.

Cybersecurity Intern — Hactify (Remote)

Feb 2025 – Mar 2025

  • Conducted Vulnerable Application Penetration Testing (VAPT) in structured lab environments targeting web and desktop applications.
  • Identified and exploited vulnerabilities including SQL injection (SQLi), Cross-Site Scripting (XSS), and Cross-Site Request Forgery (CSRF).
  • Documented exploit methodology and provided remediation guidance to strengthen application security posture.

Head, Technical Department — Royalty Shopping Mall

Abuja, Nigeria · Jan 2023 – Present

  • Manage and secure corporate endpoints, POS systems, and internal network infrastructure.
  • Implement baseline security configurations, patch management processes, and user access control policies.
  • Investigate hardware, software, and connectivity incidents to minimize operational downtime and maintain business continuity.

Technical Projects

Scalable Cloud-Based SIEM Deployment

Azure Infrastructure · Wazuh · ELK Stack

Designed and deployed a scalable Security Information and Event Management (SIEM) system on Microsoft Azure with centralized log collection, endpoint monitoring, and advanced threat detection.

  • Provisioned and configured Wazuh manager with Elasticsearch, Logstash, and Kibana on Azure.
  • Implemented Elasticsearch index sharding to improve log scalability and query performance.
  • Configured custom detection rules for anomaly detection and suspicious activity monitoring.
  • Integrated threat intelligence feeds for IOC enrichment and correlation.
  • Deployed and monitored Windows and Linux endpoint agents for centralized telemetry ingestion.
AzureWazuhElasticsearchLogstashKibanaLinuxThreat Intelligence

AGEIS — AI-Powered SOC Automation Platform

Multi-Agent Security Analysis System

Developed an AI-driven Security Operations Center (SOC) assistant designed to emulate multi-tier analyst workflows for threat validation and incident reporting.

  • Implemented a multi-agent architecture (Analyst → Auditor verification loop) to reduce false positives.
  • Integrated generative AI for structured incident report generation and severity classification.
  • Designed role-based dashboards simulating Tier-1 to Tier-4 SOC operations.
  • Implemented IOC enrichment and confidence scoring mechanisms.
PythonFlaskSQLiteGenerative AISOC Automation
View Source Code

ISO 27001 Compliance Gap Analysis & Risk Assessment

Information Security Governance

Conducted a structured ISO 27001 compliance gap analysis identifying control weaknesses and recommending risk mitigation strategies.

  • Performed asset identification and risk assessment using qualitative risk scoring.
  • Mapped organizational controls against ISO 27001 requirements.
  • Identified control deficiencies and proposed remediation roadmaps.
  • Produced structured compliance and risk documentation.
ISO 27001Risk AssessmentInformation Security Governance

ATHA — AI-Powered Threat Hunting Assistant

AI-Driven Threat Hunting Concept

Designed a conceptual multi-agent threat hunting assistant focused on persistent memory, SOC-tiered workflows, and automated investigative reasoning.

  • Architected modular agent design for hypothesis generation and log correlation.
  • Focused on improving contextual memory and automated investigation flow.
  • Planned integration with SIEM tools for real-time detection support.
Threat HuntingAI AgentsSOC Workflow Design

Certifications

Certified in Cybersecurity (CC)

ISC2

Blue Team Junior Analyst (BTJA)

Security Blue Team

Certified Social Engineering Defense Practitioner (CSEDP)

SECOPS Group

Vulnerable Application Penetration Tester (VAPT)

Hactify Cybersecurity

Certified QUALYS Specialist – VDMR & EDR

Qualys Training Platform

Certified Cybersecurity Education Professional (CCEP)

Issuer: CCEP

Core Competencies

Detection & Monitoring

SIEM Deployment (Wazuh)Log AnalysisElasticsearch Indexing & ShardingThreat Intelligence IntegrationAnomaly DetectionEndpoint Monitoring

Vulnerability Assessment & Testing

VAPT (Lab Environments)SQL Injection (SQLi)Cross-Site Scripting (XSS)Cross-Site Request Forgery (CSRF)IDORNessusOWASP ZAPMetasploit

Cloud & Infrastructure

Microsoft AzureLinux AdministrationWindows Security ConfigurationFirewall ConfigurationNetwork SegmentationTCP/IP & DNS

Incident Response & Analysis

Host-Based Telemetry AnalysisLog CorrelationDigital Forensics (Autopsy)IDS Rule TuningSecurity Event Investigation

Security Platforms & Tools

WazuhElasticsearchLogstashKibanaQualys VDMRQualys EDRWireshark

Programming & Automation

PythonCJavaSQLFlaskSOC Automation Concepts

Contact

I am currently open to cybersecurity internship opportunities and collaborative security research engagements.

Email: ijudigajarafu@gmail.com

GitHub: github.com/jarafu

LinkedIn: linkedin.com/in/ijudiga-jarafu-748165211