About
Dedicated Cybersecurity professional with 2 years of hands-on experience in SOC Monitoring, Incident Response, and Information Security. Proficient in Microsoft Sentinel, Splunk, Microsoft Defender for Endpoint, and KQL query development. Adept at real-time threat detection, alert triage, phishing analysis, and incident escalation within 24x7 SOC environments. Seeking an L2 SOC Analyst role to leverage analytical skills in a growth-oriented organization.
Skills & Expertise (37)
Work Experience
SOC Analyst
InknowTech Private Limited
Jul 2024 - Present
Operate in a 24x7 Security Operations Center (SOC) environment to monitor and respond to security alerts across multiple client infrastructures. Monitor customer security events using SIEM tools — Microsoft Sentinel and Splunk — ensuring timely detection and response. Investigate and analyze security alerts from SIEM and EDR tools, including Microsoft Defender for Endpoint, to identify true positives vs. false positives. Write and analyze KQL (Kusto Query Language) queries in Microsoft Sentinel for advanced threat detection, investigation, and log analysis. Perform real-time monitoring, investigation, analysis, reporting, and escalation of security events from multiple log sources. Conduct phishing email analysis and suspicious indicator investigations using OSINT tools such as VirusTotal, Cisco Talos, IBM X-Force, and MXToolbox. Create and manage incident tickets in ServiceNow; assign to respective teams and follow up until closure per client SLAs. Escalate security incidents with detailed analysis and mitigation recommendations aligned with client SLA requirements. Assist in onboarding log sources and integrating security devices into SIEM platforms; support dashboard and detection rule creation. Coordinate with network, system, and security teams to investigate and remediate security incidents.
Cybersecurity Intern
VisionQuest Solutions
Feb 2024 - May 2024
Gained practical exposure to SOC processes and security monitoring workflows in a live environment. Assisted in reviewing security event logs and identifying suspicious activities for escalation. Performed basic analysis of IP addresses, domains, and URLs using threat intelligence tools. Supported documentation of security incidents and maintained detailed investigation records.
Education
Bachelor of Engineering – Electronics & Communication (ECE) - Siddharth Institute of Engineering & Technology
- 2022 · Afghanistan
Board of Intermediate Education - Vivekananda Junior College
- 2018 · Afghanistan
Board of Secondary Education - Sree Bhanodhaya English Medium School
- 2016 · Afghanistan
