About
Cyber Security Analyst with 4+ years of experience in Security Operations Center (SOC) environments. Skilled in security monitoring, log analysis, incident investigation, and vulnerability management across enterprise environments. Experienced with SIEM platforms, endpoint security tools, and cloud security monitoring. Strong ability to analyze security alerts, perform incident triage, and support incident response activities while collaborating with IT and security teams.
Skills & Expertise (11)
Work Experience
Senior Associate
WIPRO
Jun 2019 - May 2022
Monitored and triaged security alerts from SIEM platforms such as IBM QRadar and Microsoft Sentinel to identify potential security incidents. Performed log analysis and security alert triage, escalating suspicious activities to the appropriate teams for further investigation. Supported vulnerability scanning and remediation activities in Windows environments by identifying, analyzing, and reporting security weaknesses. Assisted in investigation and resolution of cyber security incidents, collaborating with senior analysts and SOC team members. Maintained incident documentation, reports, and case notes to ensure proper tracking and knowledge sharing within the SOC team. Performed basic threat hunting activities by analyzing logs and endpoint alerts to identify potential malicious behavior. Escalated security incidents based on client SLA requirements by performing detailed analysis of event payloads and providing relevant information for remediation. Collaborated with IT and security teams to support implementation of security controls aligned with NIST and ISO 27001 standards. Assisted in monitoring cloud security alerts and logs in AWS and Azure environments to identify potential security threats.
Security Operations Center Analyst
Trellix
Jul 2022 - Apr 2024
Hands-on experience in Security Monitoring, Threat analysis and SOC Operations. Experience working with SIEM tools such as Splunk Enterprise Security to monitor and analyze security events and alerts. Performed log analysis, malware analysis, vulnerability assessment, phishing email analysis, DLP monitoring, and incident analysis, ensuring rapid investigation and response to critical security alerts to minimize potential threats. Performed phishing email investigations using email security tools such as Proofpoint, analyzing sender reputation, attachments, and embedded URLs to identify malicious emails. Monitored organizational networks for suspicious activities and investigated potential security incidents. Supported the incident response process by assisting in investigation, documentation, and coordination with security teams to ensure timely resolution of security incidents. Investigated security alerts, created incident cases, and escalated verified threats to the onsite SOC team for further analysis and remediation. Analyzed and validated security alerts to identify false positives and genuine threats. Experienced in Endpoint Detection and Response (EDR), Endpoint Security monitoring, Threat Hunting, and SOC Incident Response activities. Performed vulnerability assessments to identify security weaknesses and supported remediation efforts to mitigate risks in business systems.
Education
B.Tech - Avanthi Engineering College
- 2016 · Afghanistan
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Relocation
Open to Relocation