About
Cybersecurity Analyst with 2 years of hands-on experience in Security Operations Center (SOC) environments, specializing in security monitoring, alert triage, incident investigation, threat analysis, and incident response. Experienced in analyzing security events, identifying potential threats, and supporting incident response activities using SIEM, SOAR, EDR/XDR, Email Security, and Data Loss Prevention (DLP) solutions. Skilled in threat detection, phishing investigations, IOC analysis, log analysis, Cyber Kill Chain analysis, MITRE ATT&CK mapping, and DLP monitoring. Strong analytical and problem-solving abilities with a passion for continuous learning in cybersecurity.
Skills & Expertise (41)
Work Experience
Cybersecurity Analyst L1
Sattrix Information Security | Onsite at Concentrix
Jun 2024 - Present
Monitored and triaged security alerts using Cortex XSIAM, Cortex XDR, CrowdStrike Falcon, Netskope, Cortex XSOAR, Proofpoint Email Gateway, and DLP solutions. Performed alert triage and investigated suspicious activities to identify potential threats and security incidents. Conducted initial incident analysis and escalated security events based on severity, impact, and business risk. Investigated endpoint, network, authentication, phishing, DLP, and email security-related alerts. Performed log analysis and event correlation across endpoint, network, proxy, authentication, and email security platforms. Investigated Indicators of Compromise (IOCs), suspicious endpoint activities, authentication anomalies, and phishing campaigns. Performed threat analysis and mapped observed activities to the MITRE ATT&CK framework. Analyzed security incidents using the Cyber Kill Chain methodology to understand attack progression and support incident response activities. Monitored Windows authentication events and investigated failed logons, suspicious login attempts, and process execution events. Investigated and monitored DLP alerts using Microsoft Purview, Proofpoint DLP, and Clearswift DLP to identify potential data leakage and policy violations. Analyzed email, endpoint, and data movement activities to identify sensitive data exposure and support compliance requirements. Assisted in incident response, threat validation, containment, and root cause analysis activities. Created, managed, and tracked incident tickets through BMC Helix until closure. Collaborated with internal teams for timely resolution and containment of security incidents.
Education
Bachelor of Science, Information Technology - Mumbai University
2020 - 2023 · Afghanistan
Higher Secondary Certificate, Information Technology - Swami Vivekanand International School and Junior College
2018 - 2020 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Not Open to Relocation
Skills (41)
Click a skill to find developers with the same skill
