About
Cybersecurity professional with experience in threat detection, incident response, threat hunting, attack surface management, threat intelligence, and offensive security validation. Skilled in SIEM, EDR, and cloud security, with interests in detection engineering, purple teaming, and security research.
Skills & Expertise (37)
Work Experience
Security Operations Engineer
Qualys
Apr 2024 - Present
Managed endpoint detection and response operations across 2,000+ endpoints using Qualys EDR and Cisco AMP, improving visibility into malicious activity across enterprise environments. Increased detection efficiency by 30% through threat hunting, SIEM analysis, and log correlation across 10+ integrated sources including Microsoft 365 (O365), Okta, VPNs, firewalls, proxies, and EDR platforms. Collaborated with SIEM engineers during purple team exercises to tune 50+ detection rules, reducing false positives by 25% and strengthening detection coverage. Investigated and mitigated 500+ incidents involving phishing, malware, suspicious logins, endpoint compromise attempts, and email-based threats, reducing response turnaround time by 20%. Built ELK dashboards and analyzed 80+ daily SIEM/EDR alerts through telemetry correlation and indicator validation. Utilized threat intelligence feeds, OSINT platforms, and IOC enrichment techniques to accelerate investigations and improve malicious indicator validation. Developed Python scripts to automate IOC parsing, log analysis, and repetitive SOC workflows, reducing manual investigation effort by 20%. Performed External Attack Surface Management (EASM) assessments using Shodan and Censys to identify exposed services, configuration weaknesses, and attack vectors, reducing attack surface risks by 25%. Worked with Qualys ETM TrueRisk, VMDR, SecurityScorecard, and BitSight to assess internet-facing risk posture, perform on-demand vulnerability scans, support patch remediation efforts, and assist with audit-aligned vulnerability management activities. Validated and reproduced findings reported by penetration testers and bug hunters using Burp Suite and reconnaissance methodologies, accelerating remediation turnaround time by nearly 30%. Assisted in security validation activities involving web applications, Active Directory, AWS, and Azure environments by analyzing authentication weaknesses, privilege-related findings, and suspicious cloud activity. Evaluated Cyble, Flare, and Outseer for brand abuse monitoring, takedown efficiency, and threat intelligence coverage, improving response effectiveness by 20%.
Java SDET
Persistent Systems
Sep 2021 - Dec 2021
Developed automated Selenium testing scripts, increasing test coverage by 40% and reducing manual testing time by 60%. Executed API testing with Postman and Karate Framework, identifying and reporting 25+ critical bugs during sprint cycles. Collaborated with cross-functional teams to optimize testing workflows, improving deployment speed by 15%.
Education
PG Diploma Cyber Security and Forensics - C-DAC
2023 - 2024 · Afghanistan
Bachelor of Computer Science - Savitri Bai Phule Pune University
2017 - 2021 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (37)
Click a skill to find developers with the same skill
