About
Security Operations Center (SOC) Analyst with hands-on experience in monitoring, triaging, and responding to cyber threats using tools like Microsoft Sentinel, Microsoft Defender for Endpoint, CrowdStrike Falcon, and SOAR platforms. Skilled in incident response, log analysis, threat detection, and alert enrichment. Proficient in using KQL for investigations, automating response actions with playbooks, and escalating threats in a 24/7 environment. Strong foundation in cybersecurity best practices, with a proactive approach to reducing false positives, and ensuring timely threat mitigation.
Skills & Expertise (14)
Work Experience
SOC Analyst L1
Inspira Technologies Pvt Ltd
Nov 2023 - Present
Monitored and triaged security alerts using Microsoft Sentinel for real-time threat detection. Investigated incidents with Kusto Query Language (KQL) across Azure AD and Microsoft Defender. Responded to phishing, brute-force, and suspicious login activity alerts. Conducted endpoint detection and response (EDR) using CrowdStrike Falcon, analyzing malware and suspicious behavior. Assisted in SIEM rule tuning and log source onboarding to improve coverage and visibility. Email header analysis and basic threat intelligence checks for phishing investigations. Continuous 24/7 SOC operations, shift handovers, weekly and monthly reports.
Intern
KPIT Technologies
Jul 2022 - Jan 2023
Gained hands on experience with Java, C, and C++
Education
B.E IT - Pune University
2018 - 2022 · Afghanistan
