# Selected Work & Highlights — Valerii Serkin

## Built the TradingView SOC from zero
Established a full Security Operations Center for a global trading-platform company
— monitoring, detection, and response capabilities plus an embedded Threat
Intelligence function driving intelligence-led operations.

## Shadow-AI detection & prevention
Pioneered methods and internal tooling to detect and prevent unsanctioned "shadow
AI" usage across the organization, mitigating data-exposure and compliance risks
from ungoverned AI services.

## SOAR automation at scale
Architected and deployed SOAR automation and cross-tool integrations, unifying a
fragmented security stack into a single workflow and significantly reducing mean
time to detect and respond.

## Led a 20+ analyst Cyber Defense Center
Ran daily security operations, DFIR, and threat detection for a managed-security
provider across diverse client environments in the UAE.

## Detection engineering with SIGMA
Designed and deployed customized detection rules and automated detection workflows
across on-premise, AWS, and Azure infrastructures.

## Built Kaspersky's SOC core tooling
Helped build a SOC's core processes and tooling from scratch using open-source
solutions (Elasticsearch, TheHive, Cortex) and custom microservices in Python, Go,
and .NET Core.