About
Results-driven SOC Analyst and Support Engineer with experience in 24x7 security monitoring, SIEM analysis, incident triage, IAM operations, and technical support across enterprise environments. Skilled in IBM QRadar, Microsoft Sentinel, CrowdStrike, AWS IAM, and endpoint security technologies. Experienced in handling escalated security incidents, phishing investigations, malware analysis, cloud log monitoring, and incident response procedures. Strong understanding of cybersecurity concepts, network infrastructure, Windows environments, cloud security, and compliance-focused security operations. Experienced in Microsoft 365 administration, Microsoft Entra ID (Azure AD), Active Directory, Intune, RMM tools, user and access management, and support for Office 365 services including Outlook, Exchange Online, SharePoint, and Microsoft Teams. Proven ability to support global users across APAC, EMEA, and AMER regions while maintaining SLA and operational excellence.
Skills & Expertise (53)
Work Experience
SOC Associate
UST Global
Jun 2023 - May 2026
Performed Level SOC monitoring and analysis of security alerts using IBM QRadar and Microsoft Sentinel in a 24x7 enterprise environment. Investigated and handled escalated security incidents from Level 1 analysts following SOC playbooks and incident response procedures. Conducted threat triage, IOC analysis, phishing investigations, and malware analysis using CrowdStrike, Microsoft Defender, VirusTotal, and threat intelligence platforms. Hands-on experience in Splunk Enterprise SIEM monitoring, security event correlation, incident investigation, threat detection, log analysis, and alert management using Google Cloud Platform security logs within 24x7 SOC environments. Proficient in GCP security operations, Splunk integration, Cloud Audit Logs, IAM security monitoring, ServiceNow incident management, real-time security alert creation, incident response, and cloud security monitoring aligned with SOC and cybersecurity best practices. Monitored endpoint, identity, and cloud security events to identify suspicious activities and unauthorized access attempts. Executed SOAR playbooks for automated alert enrichment, investigation, and response activities. Supported incident escalation and coordination with cybersecurity and infrastructure teams during critical security events. Created and maintained security incident documentation, investigation reports, and operational records. Assisted in improving SOC operational processes, detection use cases, and response procedures, email administration, Exchange Online support, phishing investigation, mail flow troubleshooting, email security operations, incident management. Followed security compliance standards and documented remediation activities for audit and operational tracking. Supported endpoint security operations using CrowdStrike Falcon, Defender, and Trend Micro security tools. Participated in alert tuning and false-positive reduction activities to improve SOC efficiency.
IT Support Engineer | AWS IAM Support
HARMAN International
Jan 2023 - Jun 2023
Managed 50+ daily IT support and IAM-related tickets while maintaining 98% SLA compliance. Performed user access provisioning, de-provisioning, and permission management for enterprise users. Supported MFA, SSO, and authentication troubleshooting activities for secure access management. Managed Active Directory user lifecycle operations aligned with organizational security policies. Troubleshot Citrix Workspace, VDI, and remote access issues for global users. Supported VPN connectivity troubleshooting using GlobalProtect VPN. Maintained accurate documentation and compliance records for IAM and support operations. Collaborated with infrastructure and security teams to resolve access-related incidents. Assisted in onboarding and offboarding activities while ensuring secure access governance.
IT L2 Service Support & Team Lead
Unisys
Sep 2021 - Jun 2022
Led a team of 8–12 L1/L2 support engineers and improved SLA compliance from 92% to 98%. Managed daily ticket queues and ensured timely resolution of incidents and service requests. Acted as escalation point for high-priority technical incidents and major operational issues. Conducted technical training sessions to improve team productivity and support quality. Oversaw ServiceNow and JIRA ticket lifecycle management while ensuring process compliance. Managed onboarding and offboarding activities including access provisioning and user account management. Resolved complex technical issues related to Windows systems, VPN connectivity, enterprise applications, and network environments. Implemented process improvements that reduced repeat incidents and improved operational efficiency. Coordinated with internal support teams to ensure timely incident resolution and service continuity.
IT Support Engineer
Popular Medicals
Jan 2020 - Feb 2021
Provided L1/L2 technical support for 70+ users across business operations. Resolved firewall, antivirus, POS, printer, and network-related issues within SLA timelines. Managed support tickets and maintained accurate incident documentation. Performed troubleshooting for Windows systems, Office applications, and remote support activities.
Education
Bachelor of Computer Applications (BCA) - Calorx University
- 2016 · Afghanistan
Certifications
Certified Ethical Hacker (CEH)
EC-Council · 2026
ITIL® 4 Foundation
SkillUp Academy · 2025
ITSM Certification
Udemy · 2025
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Not Open to Relocation
Skills (53)
Click a skill to find developers with the same skill
