About
Cybersecurity Analyst with 3+ years of experience in SOC operations, security monitoring, incident response, vulnerability management, and threat analysis. Skilled in using SIEM tools, vulnerability scanners, threat intelligence platforms, IDS/IPS, endpoint security tools, and log analysis to detect, investigate, and respond to security threats. Strong understanding of security incident handling, alert triage, risk assessment, compliance support, and cybersecurity best practices. Adept at collaborating with technical and business teams to strengthen security posture, reduce risk, and support continuous improvement in security operations. Quick learner with the ability to adapt to fast-paced environments and emerging cyber threats.
Skills & Expertise (19)
Work Experience
Cybersecurity Analyst / SOC Operations Analyst
Deutsche Bank
Aug 2024 - Jan 2026
Utilized CrowdStrike Falcon to investigate endpoint detections, suspicious processes, and containment activities. Monitored and analyzed security events through Devo SIEM and Splunk platforms. Conducted phishing investigations using email header analysis, URL inspection, attachment review, and sandbox results. Performed vulnerability management activities using Rapid7 Nexpose and tracked remediation efforts. Leveraged Tanium Live Endpoint Connection to perform endpoint investigations and remote remediation. Collected and validated Indicators of Compromise (IOCs) from threat intelligence sources. Managed security incidents through ServiceNow while maintaining SLA compliance. Developed SOC operational procedures, incident response runbooks, and documentation. Generated security dashboards, incident metrics, and management reports. Collaborated with infrastructure, network, and application teams to remediate security findings.
SOC Analyst
Big Lots
Oct 2022 - Aug 2024
Performed continuous monitoring of security alerts generated from SIEM, EDR, and email security platforms. Investigated and triaged alerts from Devo, Splunk, CrowdStrike, Carbon Black, and Tanium. Managed Carbon Black policies, file exclusions, application whitelisting, and endpoint configuration changes. Executed scheduled and ad-hoc vulnerability scans using Rapid7 Nexpose. Analyzed phishing emails through email header analysis, URL inspection, and attachment review. Supported MDR operations by validating threats and assisting with containment activities. Assisted with Sectigo certificate lifecycle activities, including enrollment, renewal, and revocation. Prepared operational reports, security metrics, and knowledge transfer documentation. Worked with cross-functional teams to improve monitoring effectiveness and security posture.
Education
Master's Degree - Cleveland State University
2021 - 2022 · Afghanistan
Bachelors Degree - CVR College of Engineering
2015 - 2019 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (19)
Click a skill to find developers with the same skill
