About
SOC Analyst with 4 years of experience in Incident Response, Information Security, with security operations including Incident management, Endpoint security and logs analysis through SIEM. Experience on working in 24x7 operations of SOC team, offering log monitoring, security information management.
Skills & Expertise (32)
Work Experience
SOC Analyst
Tata Consultancy Services (TCS)
Jul 2022 - Present
Furnished operations support for Microsoft Azure Sentinel at the Security Operations Center (SOC) across multiple member firms. Proficient in SIEM tools (Azure Sentinel, IBM Q-Radar) for real-time monitoring, threat detection, and incident response. Participated in weekly and monthly review meetings with customers to discuss security posture and improvements. Delivered security incident response and resolved incidents within SLA using ServiceNow. Analyzed phishing and spam activities, notified affected users, and recommended preventive measures. Prepared daily, weekly, and monthly dashboards and threat reports for stakeholders. Administered and managed security alerts and incidents triggered by SIEM tools, ensuring timely triage and escalation. Performing Real-Time Monitoring, Investigation, Analysis, Reporting and Escalations of Security Events from multiple log sources. Optimized SIEM performance by refining correlation rules, adjusting dashboards, and tuning alerts to enhance threat visibility and reduce false positives. Troubleshot SIEM dashboard/reporting issues to restore functionality and data availability. Administered and configured Endpoint Detection & Response (EDR) solutions to strengthen endpoint defenses and proactively detect potential risks. Carried out daily health checks for security tools such as EDR and IDS/IPS to ensure optimal functionality and readiness. Prepared ad-hoc and scheduled reports for multiple event sources based on client and management requirements. Troubleshot SIEM dashboards and log collection issues, ensuring data visibility and consistent report generation. Investigated logs from firewalls, proxies, antivirus, EDR, and network devices to identify and mitigate anomalies. Demonstrated strong knowledge of OWASP Top 10 vulnerabilities, IDS/IPS, threat modeling, and cyberattacks (DoS, DDoS, MITM, SQL Injection, XSS, CSRF). Created custom alerts, detection rules, and correlation searches in SIEM for early incident detection and response. Collaborated with onsite teams for escalation and resolution of critical incidents within defined SLAs. Applied understanding of security frameworks including MITRE ATT&CK and Cyber Kill Chain for effective threat analysis.
Education
Bachelor of Technology in Electronics Engineering - JNTUH
- 2020 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
Skills (32)
Click a skill to find developers with the same skill
