AHAMMED IRFAN M P IRFAN M P

SOC Analyst

Bengaluru, India 0+ yrs exp 82 · Excellent

About

Cyber Security Analyst with hands-on experience in a 24x7 Security Operations Center, specializing in SIEM monitoring, incident response, log analysis, and threat investigation. Experienced in analyzing security events across servers, endpoints, and network devices using Splunk and QRadar. Strong understanding of malware, phishing, ransomware, and network-based attacks with working knowledge of Linux and Windows security. Adept at vulnerability identification, risk assessment, and maintaining detailed incident documentation.

Skills & Expertise (42)

Splunk Intermediate

8.3/10

Years Exp

IBM QRadar Intermediate

8.3/10

Years Exp

Nessus Intermediate

7.8/10

Years Exp

OpenVAS Intermediate

7.8/10

Years Exp

Python Beginner

6.5/10

Years Exp

ANY.RUN Ansible CVE IOC Enrichment MITRE ATT&CK Navigator TheHive Playbook Execution Incident Documentation Vulnerability Management Lifecycle Risk Prioritization NIST CSF ISO 27001 PowerShell Bash VirusTotal API Terraform Wazuh HTTPS ELK Stack SentinelOne CrowdStrike Falcon Sysmon Windows Event Logs TCP IP DNS HTTP VirusTotal Firewalls Fortinet Checkpoint IDS IPS WIRESHARK Network Traffic Analysis AWS CloudTrail Azure Security Monitoring

Work Experience

SOC Analyst Intern

TerraEagle Technologies Pvt. Ltd.

Jul 2025 - Present

Monitored and analyzed 700+ security alerts in a 24x7 SOC using SIEM (Splunk/QRadar), performing in-depth log analysis across servers, endpoints, and network devices. Investigated and responded to incidents including malware infections, phishing attempts, brute-force attacks, and suspicious lateral movement activities. Assisted in incident response activities including containment support, impact assessment, and escalation to L2/L3 teams with detailed technical documentation. Performed vulnerability review using Nessus/OpenVAS reports and supported remediation tracking with internal teams. Conducted basic risk analysis of detected threats and ensured proper documentation of findings in accordance with SOC procedures and SLA requirements.

Security Engineer Intern

BlackPerl DFIR

Apr 2025 - Jun 2025

Automated AWS-based lab deployment to support cloud security monitoring, SIEM testing, and vulnerability assessment workflows. Built browser-based secure access solution using Apache Guacamole for auditable, controlled SIEM lab access — supporting GRC-aligned access control and remote investigation workflows. Supported security testing and vulnerability assessment activities to identify misconfigurations and security gaps in cloud lab environments.

Education

Master of Computer Applications (MCA) - Manipal University Jaipur

2025 - · Afghanistan

Bachelor of Computer Applications (BCA) - University of Calicut

2021 - 2024 · Afghanistan

Certifications

No certifications added yet

Interested in this developer?

Profile Score Breakdown

📷 Photo 10/10

📄 Resume 10/10

💼 Job Title 10/10

✍️ Bio 10/10

🛠️ Skills 20/20

🎓 Education 10/10

⏱️ Experience 7/15

💰 Rate 0/5

🏆 Certs 0/5

✅ Verified 5/5

Total Score 82/100

Profile Overview

Member sinceApr 2026

Skills (42)

Click a skill to find developers with the same skill

Splunk IBM QRadar Nessus OpenVAS Python ANY.RUN Ansible CVE IOC Enrichment MITRE ATT&CK Navigator +32 more

Similar Profiles

Ayush Vats

Soc

$200/hr

Manoj p

SOC Analyst

Santosh Ippili

Entry-level SOC Analyst (L1)

Nkanyiso Cele

Software Developer

View All Developers →