About
SOC Analyst with 3.8 years of experience in security incident detection, triage, investigation, and response within a large enterprise managed security services environment. Experienced in supporting vulnerability management activities and coordinating remediation with infrastructure, application, and third-party vendor teams. Skilled in handling security operations within a multi-client delivery model while consistently maintaining 99%+ SLA compliance across all incident severity levels.
Skills & Expertise (21)
Work Experience
Senior System Engineer (SOC Analyst/Vulnerability Management)
Infosys Ltd
Aug 2022 - Present
Monitored and analyzed security alerts across Splunk, NGSIEM, CrowdStrike Falcon, and Palo Alto firewall logs, investigating phishing attempts, malware detections, suspicious logins, endpoint threats, and anomalous network activity while ensuring SLA compliance. Performed endpoint, DLP, and cloud security investigations using CrowdStrike Falcon, Broadcom DLP, Netskope, and Microsoft O365 Security to identify potential security incidents, policy violations, and suspicious user activities. Investigated phishing campaigns, malicious attachments, and Business Email Compromise (BEC) attempts using Proofpoint and Abnormal Security, coordinating with internal teams for containment and remediation actions. Conducted vulnerability assessments across infrastructure assets using Tenable Nessus, prioritized findings based on CVSS severity, and coordinated with infrastructure teams for remediation and closure. Improved vulnerability management operations by streamlining scan execution and remediation tracking processes, enabling faster identification and resolution of critical vulnerabilities. Performed IOC enrichment and threat validation using VirusTotal, Talos, AbuseIPDB, WHOIS, and Palo Alto AutoFocus to support incident investigation and threat analysis activities. Supported security monitoring and investigation activities across enterprise and cloud-integrated environments, with basic understanding of Azure/AWS security concepts and cloud security monitoring workflows. Created detailed incident reports, operational documentation, threat summaries, and knowledge-sharing materials to support SOC processes and team awareness. Coordinated with internal cross-functional teams across infrastructure, application, and network domains for incident response and vulnerability remediation activities. Monitored and reviewed investigations handled by fellow L1 SOC analysts, providing guidance on alert validation, escalation quality, and adherence to SOC operational procedures. Worked with security and engineering teams to reduce repetitive false positives through alert analysis, tuning recommendations, and operational feedback.
Education
B.Tech, Computer Science Engineering - Andhra Loyola Institute of Engineering and Technology
2018 - 2022 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (21)
Click a skill to find developers with the same skill
