About
Results-driven SOC Analyst with 1.5+ years of hands-on experience in threat detection, SIEM-based log correlation, and end-to-end incident response in 24×7 security operations environments. Demonstrated ability to design detection rules targeting real-world attack techniques (MITRE ATT&CK), draft incident response playbooks, and reduce alert triage time through SIEM tuning. Proficient in Splunk, Nessus, IDS/IPS, and EDR platforms. Ethical Hacking and CCNA holder with a strong foundation in network security, Active Directory, and scripting automation. Eager to leverage hands-on SOC expertise to strengthen enterprise security posture in a Tier 1 analyst role.
Skills & Expertise (36)
Work Experience
SOC Analyst (L1)
A&T Engineering Pvt Ltd
Sep 2024 - Present
Monitored security events daily across Splunk SIEM, performing alert triage and severity-based escalation in compliance with NIST Incident Response Framework, maintaining an average response time under 15 minutes for P1 incidents. Designed and tuned custom SIEM detection rules targeting brute-force attacks, phishing campaigns, credential stuffing, and lateral movement techniques, contributing to a measurable reduction in false-positive alerts. Conducted in-depth log correlation across network firewalls, endpoint, and server sources to identify unauthorised access attempts, anomalous behaviour, and potential data exfiltration indicators. Authored and maintained SOC playbooks for 5+ common attack scenarios (phishing, ransomware, privilege escalation), streamlining analyst response workflows and reducing mean-time-to-respond (MTTR). Drafted comprehensive incident response reports, root-cause analyses (RCA), and post-incident review documentation to support stakeholder briefings and regulatory compliance activities. Collaborated with L2/L3 analysts during critical incident escalations and participated in based security monitoring rotations, ensuring continuous operational coverage. Built a fully functional simulated SOC environment using SIEM tools, ingesting log data from Windows, Linux, and network devices to develop and validate custom detection use-cases.
Customer Support Engineer (L1/L2)
Sysnet Technology Pvt Ltd
Mar 2023 - Jun 2024
Resolved 100+ software, hardware, and network issues per month via ITSM ticketing Achieving consistent SLA adherence across L1/L2 support tiers. Administered Active Directory for a multi-user environment: provisioned user accounts, managed groups, enforced GPOs, and controlled access permissions across Windows Server infrastructure. Diagnosed and resolved LAN/WAN connectivity issues, including IP addressing conflicts, DNS resolution failures, DHCP misconfigurations, and VLAN segmentation problems. Configured and hardened desktops, laptops, and mobile endpoints (iOS/iPadOS), including OS deployment, email setup, and application configuration for end users.
Education
Master of Computer Applications (MCA) - Jamia Millia Islamia
2025 - Present · Afghanistan
Bachelor of Arts - Mangalayatan University
2017 - 2020 · Afghanistan
Certifications
Certified Ethical Hacking (CEH)
WsCube-Tech · 2026
CCNA – Cisco Certified Network Associate
Simpli-Learn · 2026
Hardware Networking
Katha Institute · 2023
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (36)
Click a skill to find developers with the same skill
