About
SOC Analyst with 3.9 years of Hands-on experience with SIEM tools (QRadar) for real-time event monitoring, log analysis, alert triage, and rule correlation. Strong knowledge of OSI Model, TCP/IP, protocols, WAN/LAN, routing, firewall policies, VPN, and core security concepts. Experience in IDS/IPS (Check Point, HP Tipping Point), firewall monitoring, and network security products. Worked on incident management lifecycle, threat investigation, case management, and escalation to onsite SOC teams. Handling alerts from CrowdStrike EDR, Symantec Endpoint Protection (SEPM), IDS events, and performing malware analysis and remediation. Identifying malicious URLs/IPs and blocking via proxies to prevent threats. Experience in vulnerability management using Tenable Nessus and Qualys Guard, including assessment reporting and remediation tracking. Proficient in ServiceNow ticketing, phishing & spam analysis, security reporting (daily/weekly/monthly). Strong understanding of Windows/UNIX systems, packet-level analysis, and intrusion detection concepts.
Skills & Expertise (16)
Work Experience
Engineer - Cloud & Infra Engg (SOC Analyst)
Birlasoft
Apr 2022 - Jan 2026
Performed 24x7 SOC monitoring and real-time threat detection using IBM QRadar, Splunk, and Azure Sentinel. Investigated and triaged high-severity security alerts, ensuring timely containment and resolution as per SLA. Conducted in-depth log analysis, event correlation, and rule tuning to improve detection accuracy and reduce false positives. Led incident response activities including analysis, containment, eradication, and closure aligned with the incident management lifecycle. Analyzed and responded to phishing and spam email threats using Proofpoint and Symantec Email Security. Managed vulnerability assessments using Nessus and Qualys; tracked remediation and coordinated with infrastructure teams. Monitored and optimized security controls across Firewalls, IDS/IPS technologies, and network security devices. Investigated endpoint threats using Symantec EPP and Trend Micro, performing malware analysis and remediation. Performed threat hunting and IOC analysis to proactively identify suspicious IPs, URLs, and malicious domains. Handled security incidents and change requests through ServiceNow and Jira, maintaining proper documentation and audit trails. Correlated multi-source security events to detect advanced threats and lateral movement attempts. Prepared detailed security reports (daily/weekly/monthly) for stakeholders and client leadership. Escalated critical incidents to Tier-2/Tier-3 teams with comprehensive analysis and recommended actions. Continuously fine-tuned SIEM use cases and detection rules to enhance SOC operational efficiency and security posture. Analyzed IDS/IPS alerts to detect network intrusions and anomalous behavior. Leveraged threat intelligence feeds to validate indicators of compromise (IOCs). Maintained detailed incident documentation and SOC reports for management review.
Education
B.Tech - Mech - Avanthi Research and Technological Academy
- 2021 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
Skills (16)
Click a skill to find developers with the same skill
