About
Cybersecurity professional with experience in SOC monitoring, incident investigation, and threat detection using SIEM and EDR tools. Skilled in analyzing security alerts, log correlation, and endpoint investigation using Splunk SIEM, Seceon SIEM, SentinelOne EDR, and CrowdStrike EDR. Experienced in Fortinet firewall monitoring, threat hunting, malware analysis, and incident response to detect, contain, and remediate security threats. Strong understanding of attacker techniques such as lateral movement, privilege escalation, and data exfiltration aligned with the MITRE ATT&CK framework.
Skills & Expertise (63)
Work Experience
Cybersecurity Analyst
Teksky
Oct 2024 - May 2025
Implemented and monitored security controls to protect organizational systems, networks, and data from cyber threats. Performed vulnerability assessments and security analysis to identify weaknesses in systems, applications, and network infrastructure. Analyzed security logs and alerts from multiple security tools including SIEM platforms, EDR solutions, and firewall systems to detect suspicious activity. Assisted in the implementation and monitoring of endpoint protection solutions such as SentinelOne and CrowdStrike EDR. Designed and simulated secure network architectures using Cisco Packet Tracer to understand network security concepts, attack scenarios, and defense mechanisms. Performed risk assessments and security evaluations to recommend improvements for strengthening the organizationʼs security posture. Reviewed threat intelligence reports and vulnerability advisories to stay informed about emerging cyber threats. Assisted in maintaining security documentation, policies, and incident response procedures.
SOC Analyst
BlueCloudSofTech Solutions
May 2025 - Present
Monitored and analyzed security alerts using Splunk SIEM and Seceon SIEM, performing log correlation across multiple data sources including endpoints, firewalls, and network devices. Investigated escalated alerts from L1 analysts to determine the scope, root cause, and impact of security incidents. Conducted endpoint threat investigations using SentinelOne and CrowdStrike EDR. Performed incident response activities including containment, eradication, and recovery of compromised systems to minimize business impact. Performed threat hunting activities using MITRE ATT&CK framework to detect advanced threats, abnormal user behavior, and hidden malicious activity. Analyzed malware behavior and suspicious files using EDR telemetry, sandbox analysis, and threat intelligence platforms. Integrated threat intelligence feeds and IOC enrichment into SIEM to improve alert accuracy and reduce false positives. Investigated suspicious activities such as lateral movement, privilege escalation, persistence mechanisms, and data exfiltration attempts. Documented incident investigation findings, evidence, and response procedures in accordance with SOC documentation standards. Collaborated with L2/L3 analysts, IT teams, and security stakeholders during major security incidents for effective containment and remediation.
Education
Bachelor of Technology (B.Tech) - Electronics and Communication Engineering - Malla Reddy College of Engineering & Technology
- 2023 · Afghanistan
