About
6+ years of experience in Information Technology and 4 years 5 months of relevant experience in Cybersecurity with experience in SOC operations, incident response, and threat hunting. Skilled in Splunk, CrowdStrike, IDS/IPS, firewall, and proxy management. Proficient in log analysis, network traffic analysis, and IP geolocation. Focused on compliance, security awareness, and enhancing organisational security posture. Adept at collaborating with cross-functional teams for incident remediation and security improvements. Committed to staying updated with evolving security threats and technologies.
Skills & Expertise (18)
Work Experience
Security Engineer
Paychex
Sep 2021 - May 2024
Experience in detecting, analyzing and/or responding to security incidents. Experience on working SIEM (Security Information Event Management) monitoring and Investigating security events reported by security tools. Common security threats, attack vectors, vulnerabilities, and exploits. Conducting initial triage of security events and incidents. Tuning of rules, filters and policies for detection-related security technologies to improve accuracy and visibility. Understanding current vulnerabilities, attacks and countermeasures. Managing vulnerability scanning activities and preparing vulnerability report. Experience in handling customer queries and escalations. Ip address - add to Geo Protection Exception list/Blocklist. Email protection and Triage Data Loss Prevention Incidents. Monitor phishing campaigns against Paychex.
Security Engineer
PWC
May 2024 - Present
Utilized Splunk SIEM for log analysis, threat hunting, and security metric reporting. Leveraged CrowdStrike for endpoint threat detection, response, and policy implementation. Implemented DLP strategies to prevent data breaches and ensured compliance with regulatory requirements. Configured and monitored IDS/IPS systems for network threat detection and prevention. Managed firewall and proxy configurations to control network access and monitor web traffic. Analyzed proxy logs to investigate network traffic anomalies and resolved related tickets. Monitored SOC alerts, collaborated with cross-functional teams for incident remediation, and ensured timely threat mitigation. Conducted post-incident activities, including reporting and recommending security improvements. Proactively hunted for threats, fine-tuned SIEM rules for better detection, and contributed to security framework enhancements. Participated in security awareness programs and conducted phishing simulations to improve organisational security posture.
Security Engineer
Tech Mahindra
Jun 2019 - Aug 2021
Supported international customers through chat mail and phone for global customers. Delivered exceptional technical support to corporate users, resolving issues in a Windows domain environment. Troubleshooted printer, Wi-Fi, password and VPN related issues. Provided core support for Microsoft products and conducted user training sessions. Resolved web browser and wireless connectivity issues, enhancing user experience. Actively worked on ServiceNow backlog tickets to meet SLA targets. Supported internal office software and conducted backup and restore processes.
Education
Bachelor of Computers - ARNI University
- · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Relocation
Open to Relocation
Skills (18)
Click a skill to find developers with the same skill
