About
SOC Analyst with 1+ year of experience in 24/7 security operations, monitoring SIEM and EDR alerts, performing incident triage, and escalating confirmed threats. Experiencing log analysis, threat intelligence workflows, vulnerability management, and security incident documentation. Strong understanding of malware, phishing, brute force attacks, ransomware indicators, and MITRE ATT&CK techniques. MSc in Cyber Security with exposure to Microsoft Sentinel, Microsoft Defender for Endpoint, IDS/IPS, and cloud security environments (Azure, AWS). Seeking to contribute as a SOC Engineer by strengthening monitoring operations, developing detection rules, supporting CTI efforts, and continuously improving SOC processes.
Skills & Expertise (44)
Work Experience
Trainee SOC Analyst
Empirical Training
Nov 2024 - Feb 2025
Configured Microsoft Sentinel SIEM with Log Analytics Workspace and Data Collection Rules. Monitored and triaged alerts from multiple log sources including Windows Security Events. Conducted log analysis using KQL queries to detect suspicious patterns. Collected and enriched threat intelligence using VirusTotal, AlienVault OTX, and AbuseIPDB. Mapped observed attack techniques to MITRE ATT&CK framework. Applied SOC playbooks during investigations and maintained detailed case notes. Participated in shift-style investigation handovers with clear communication of ongoing cases. Performed rule tuning and alert suppression to improve detection accuracy.
IT Security Analyst
ADJOAA Ltd
Nov 2023 - Dec 2023
Resolved IT and security-related incidents through Jira. Supported secure authentication configurations and access controls. Assisted with system monitoring, documentation, and operational support tasks.
Cyber Security Support Analyst
Log(N) Pacific
Mar 2025 - Present
Monitor and analyze security alerts from Microsoft Sentinel and Defender for Endpoint. Perform initial triage of security events using documented investigation procedures. Escalate confirmed incidents to senior security teams with complete incident documentation. Conduct vulnerability assessments using Tenable across Windows and Linux environments. Automate remediation tasks using PowerShell scripts. Develop and maintain SIEM dashboards for monitoring logon failures, brute force attempts, and malicious traffic. Support threat hunting activities by identifying Indicators of Compromise (IOCs). Document investigations, response actions, and recommendations clearly for reporting and audit purposes. Contribute to process improvements and detection rule refinement to reduce false positives.
IT Security Customer Service Specialist
Emunah Promotions
Dec 2023 - Feb 2024
Provided Tier 1 IT and security support for endpoint, account, and access-related issues. Logged, tracked, and resolved incidents using a ticketing system while maintaining response SLAs. Escalated unresolved or security-relevant issues to senior analysts. Educated users on basic security hygiene and acceptable-use practices.
Education
MSc. in Cyber Security - University of Birmingham
2022 - 2023 · Afghanistan
B.Tech in Computer Science with specialization in Information Security - VIT University
2018 - 2022 · Afghanistan
Certifications
BTJA - Blue Team Junior Analyst
Security Blue Team · 2023
AWS Cloud Training (Foundations)
· 2023
Cyber Security Hands-On Training
· 2023
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Need Sponsorship
Relocation
Open to Relocation
Skills (44)
Click a skill to find developers with the same skill
