About
SOC Analyst (L2) with 4.2 years of hands-on experience in security monitoring, log analysis, alert triage, threat detection, and incident response. Skilled in SIEM (Splunk, QRadar) and EDR (CrowdStrike) for investigating and responding to complex security incidents including phishing, malware infections, and endpoint security threats. Experienced in threat hunting, vulnerability management, and leveraging the MITRE ATT&CK framework within SOC workflows.
Skills & Expertise (24)
Work Experience
SOC Analyst L2
Brillioz Infotech Pvt.Ltd
Dec 2021 - Present
Monitored and analyzed 5000+ daily security events and led end-to-end investigations of escalated alerts from L1, handling complex incidents such as account compromise, malware infections, phishing campaigns, C2 communication and network-based attacks. Developed and fine-tuned 25+ SIEM detection rules, reducing false positives by 30% and improving Mean Time to Detect (MTTD). Conducted detailed log analysis across Windows event logs, Sysmon, Linux logs, Active Directory, DNS and DHCP etc. Utilized EDR solutions (CrowdStrike) for endpoint triage and host-based isolation. Contained and remediated threats by isolating hosts, blocking IPs/URLs/domains disabling compromised accounts, removing malicious changes, enabling MFA, restoring affected systems. Analyzed suspicious emails including header analysis (SPF, DKIM, DMARC validation) and content analysis (URL, Attachments). Conducted malware analysis (Static/Dynamic) using Any.Run to determine malicious behavior. Performed threat hunting and IOC analysis using MITRE ATT&CK framework and threat intelligence feeds to detect emerging threats. Reduced Mean Time to Respond (MTTR) by improving alert triage workflows and implementing standardized investigation procedures. Proficiency in SOAR platforms and automation of incident response workflows. Conducted root cause analysis (RCA) of incidents and updated SOPs and response procedures based on lessons learned. Communicated incident findings, impact assessments and remediation steps clearly to stakeholders and management through detailed reports and verbal briefings. Collaborated with cross-functional teams including network, server, IT helpdesk, forensic, DLP to ensure timely response and mitigation of the security threats and vulnerabilities. Provided technical leadership during critical security incidents by mentoring junior analysts and guided them through effective investigation and response processes. Ensure alignment with industry standards such as ISO 27001, NIST, PCI-DSS and GDPR. Participate in audits and provide technical evidence for compliance reporting.
Education
Graduation - Padmashri Vikhe Patil College, Pravaranagar
2014 - 2018 · Afghanistan
HSC - Dyanganga Vidyaniketan Junior College Manchi Hills
2012 - 2014 · Afghanistan
