Cybersecurity & Technology Risk Analyst • Tokyo, Japan
GRC | IT Risk | Incident Response | Security Operations
I am a cybersecurity analyst with a background in financial risk, currently building hands-on experience in security operations, incident response, and technology risk.
My work focuses on alert triage, investigation, and escalation workflows, as well as translating technical findings into structured risk and control improvements.
- Incident Response & CSIRT support
- SIEM investigation, alert triage & threat hunting
- Technology Risk & IT Governance (GRC)
- Control design and remediation tracking
Cybersecurity Analyst (Intern)
Cyber Range (LOG(N) Pacific) | Feb 2026 – Present
- Conducted SIEM-based investigations and alert triage using Microsoft Sentinel and Defender for Endpoint (MDE)
- Performed threat hunting using Advanced Hunting (KQL) aligned with MITRE ATT&CK
- Analyzed endpoint telemetry (process, file, network) to identify suspicious activity
- Documented investigation findings and supported escalation decisions based on severity and risk
- Performed vulnerability assessment and remediation using Tenable Nessus, including system hardening
Focus: Endpoint telemetry analysis & SOC workflow
- Conducted end-to-end investigation including alert triage, timeline reconstruction, and severity assessment
- Analyzed Tor Browser download, execution, and network activity using Microsoft Defender Advanced Hunting (KQL)
- Identified Tor relay communication over port 9001
- Assessed activity as non-malicious but potentially policy-violating and escalated for review
- Mapped findings to MITRE ATT&CK techniques
➡️ https://github.com/dan-chui/Threat-Hunt-Tor-Browser-Investigation
Focus: Security monitoring & incident investigation
- Analyzed exploitation and data exfiltration scenarios
- Correlated alerts and logs to produce structured incident reports
- Demonstrates alert triage, investigation workflow, and escalation decision-making
➡️ https://github.com/dan-chui/SIEM-Incident-Analysis-Report
Focus: Incident response workflow & escalation
- Designed SOC Tier-1 escalation logic based on severity and SLA thresholds
- Built communication and documentation standards
- Demonstrates structured incident handling and coordination
➡️ https://github.com/dan-chui/Incident-Escalation-Playbook-Report
Focus: Risk-based remediation workflow
- Designed vulnerability prioritization and tracking methodology
- Defined remediation workflows and accountability structure
- Demonstrates practical technology risk management
➡️ https://github.com/dan-chui/Vulnerability-Management-Program
Focus: Risk identification & control mapping
- Developed structured risk register using likelihood-impact scoring
- Mapped risks to Annex A controls
- Demonstrates governance and control awareness
➡️ https://github.com/dan-chui/Risk-Register
Security Operations & Investigation
SIEM Analysis · Alert Triage · Threat Hunting · Incident Response · MITRE ATT&CK
Technology Risk & Governance
ISO/IEC 27001 · NIST CSF · IT Controls · Risk Assessment · Vulnerability Management
Tools & Platforms
Microsoft Defender for Endpoint (MDE) · Advanced Hunting (KQL) · Microsoft Sentinel · Splunk · Tenable · Wireshark · Azure
- LinkedIn: https://www.linkedin.com/in/danchui/
- Blog: https://happy-bytes.vercel.app/
Open to Analyst-level roles in Cybersecurity, IT Risk, GRC, and CSIRT (Tokyo / Hybrid / Remote)
サイバーセキュリティ・テクノロジーリスクアナリスト|東京
金融リスクのバックグラウンドを持ち、現在はサイバーセキュリティおよびテクノロジーリスク分野で実務経験を積んでいます。
アラートトリアージ、インシデント調査、エスカレーション判断を含むSOC業務フローに基づいた実務対応に強みがあります。技術的な事象をリスクおよび統制へと落とし込むことを重視しています。
- インシデント対応(CSIRT)
- SIEM分析・アラートトリアージ・脅威ハンティング
- テクノロジーリスク・ITガバナンス
- 統制設計・是正対応
サイバーセキュリティアナリスト(インターン)
Cyber Range(LOG(N) Pacific)
- Microsoft Sentinel / Defender for Endpointを用いたログ調査およびアラートトリアージ
- MITRE ATT&CKに基づく脅威ハンティング
- エンドポイントログ分析(プロセス・ファイル・ネットワーク)
- インシデント対応およびエスカレーション判断の実施
- Tenableを用いた脆弱性管理およびハードニング
セキュリティ運用
SIEM分析 · アラートトリアージ · 脅威ハンティング · インシデント対応
テクノロジーリスク
ISO27001 · NIST CSF · IT統制 · リスク評価
ツール
Microsoft Defender for Endpoint(MDE)・KQL(Advanced Hunting)・Sentinel・Splunk・Tenable・Wireshark
サイバーセキュリティ、ITリスク、GRC、CSIRT関連のアナリストポジションを志向しています。