CompTIA Cybersecurity Analyst (CySA+)

Current Project
As part of my ongoing commitment to strengthening my defensive cybersecurity skills, I am currently preparing for the CompTIA Cybersecurity Analyst (CySA+) certification. This project reflects my focus on the practical skills needed in Security Operations Center (SOC) and blue team environments — from analyzing alerts to responding to incidents.

About CySA+:
The CompTIA CySA+ certification validates the ability to detect, analyze, and respond to threats using a mix of behavioral analytics, vulnerability management, and incident response. It bridges the gap between entry-level certifications (like Security+) and more advanced professional roles, emphasizing hands-on threat detection and mitigation.

Why CySA+ Matters:
Today’s organizations need cybersecurity professionals who can go beyond recognizing vulnerabilities — they need analysts who can actively hunt threats, investigate incidents, and respond effectively. CySA+ demonstrates readiness for SOC and threat analyst positions, proving I can apply detection and defense skills to protect systems and data.

What I’m Learning:
Through my CySA+ preparation, I am gaining practical experience in:

  • Log analysis and anomaly detection

  • Writing and tuning detection rules in SIEM platforms (e.g., Wazuh)

  • Vulnerability scanning with tools like Nessus and OpenVAS

  • Investigating phishing attempts through email header analysis

  • Packet capture analysis with Wireshark to identify malicious traffic

  • Mapping findings to the MITRE ATT&CK framework

  • Developing incident response workflows for triage and escalation

Goal:
My goal is to complete the CySA+ certification to demonstrate mid-level SOC analyst readiness. This project not only represents an exam pursuit but also reflects hands-on training in detection, investigation, and response, which I bring into both my lab environment and professional work.