About
Results-driven SOC Analyst with 2+ years of hands-on experience in Security Operations, Threat Intelligence, and Incident Response. Proficient in Splunk SIEM, Microsoft Defender EDR, CrowdStrike Falcon, and Symantec DLP. Demonstrated ability to reduce false positives by optimizing SIEM correlation rules aligned to the MITRE ATT&CK framework and improving incident response time by 30%. Experienced in vulnerability management, phishing analysis, malware triage, and SOAR automation in enterprise SOC environments.
Skills & Expertise (34)
Work Experience
Security Analyst (SOC – Tier 1)
Augur Cyber X Private Limited
May 2024 - Present
Monitored and analyzed real-time security events across Windows and Linux environments using Splunk SIEM, detecting and triaging anomalies for multiple client infrastructures. Triaged and resolved 20+ medium/high-priority security incidents daily; escalated critical threats with complete documentation to senior analysts, maintaining SLA compliance. Conducted end-to-end vulnerability assessments using Tenable Nessus; tracked vulnerabilities through the full remediation lifecycle in coordination with IT and asset owners. Performed phishing analysis and malware triage by investigating suspicious URLs, email attachments, and headers using sandbox and threat intelligence tools (VirusTotal, ANY.RUN). Created, tuned, and modified SIEM correlation rules and detection use cases aligned with MITRE ATT&CK TTPs, reducing false positives by 20% and improving detection accuracy. Developed and maintained SOAR automation playbooks to streamline repetitive SOC tasks, reducing manual effort and improving mean time to respond (MTTR) by 30%. Conducted post-incident Root Cause Analysis (RCA) reviews, identified detection and visibility gaps, and recommended SOC process and tooling improvements. Collaborated within a 10-member SOC team on threat intelligence briefings, security hardening initiatives, and tabletop incident response exercises. Managed endpoint security events via Microsoft Defender EDR and CrowdStrike Falcon; investigated alerts, isolated compromised hosts, and performed threat containment. Administered Tier-1 IT support for Windows OS and enterprise applications — software installations, OS upgrades, patch management, and SLA-bound troubleshooting.
Education
Bachelor of Technology (B.Tech) – Computer Science - ISBM University
- 2024 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
Skills (34)
Click a skill to find developers with the same skill
