About
Cybersecurity Analyst with 2 years of hands-on experience in threat detection, incident response, and SOC operations. Experienced in managing 24×7 security monitoring, real-time alert triage, and responding to complex threats using various security tools. Skilled in analyzing advanced cyber attacks such as ransomware, lateral movement, and PowerShell exploitation. Proficient in applying frameworks like MITRE ATT&CK, Cyber Kill Chain, and OWASP Top 10. Strong technical expertise in data parsing (Syslog, JSON, Regex) and scripting with Python, Bash, and PowerShell across Windows and Linux environments.
Skills & Expertise (43)
Work Experience
Security Analyst
Workmates Core2Cloud
Apr 2024 - Present
Conducted 24×7×365 security monitoring and managed threat detection and response for 950,000+ endpoints across diverse enterprise environments. Performed real-time threat analysis, alert triage, and incident response using XDR tools (Trend Micro, CrowdStrike, SentinelOne), EDR solutions (Bitdefender), and SIEM platforms (IBM QRadar, Wazuh, Splunk). Investigated advanced cyber threats including ransomware, Emotet, Mimikatz, PowerShell exploitation, lateral movement, SQL injection, and XSS attacks. Utilized ITSM platforms (Freshdesk, Zoho, DFIR-IRIS) for incident tracking, escalation management, and client communication via chat, email, and phone. Led and supported alert tuning, IOC-based threat hunting, and malware analysis to improve detection accuracy and threat classification. Demonstrated strong expertise in log management and data parsing, including handling of Syslog, Regex, JSON, XML, and API integrations. Developed and automated security scripts using Python, Bash, and PowerShell for both Windows and Linux environments. Applied cybersecurity frameworks such as MITRE ATT&CK and Cyber Kill Chain in day-to-day detection and investigation workflows. Maintained and updated training materials; delivered knowledge transfer sessions and mentored new analysts as part of the SOC training team. Collaborated on internal cybersecurity projects, agent testing, and SOC process improvement initiatives. Assisted with shift management and served as a Tier 1 escalation point, ensuring SLA compliance and efficient incident resolution.
Research Intern
Workmates Core2Cloud
Nov 2023 - Apr 2024
Researched and analyzed real-world cyber threats by studying the OWASP Top 10 vulnerabilities and the Cyber Kill Chain framework to understand attacker tactics and mitigation strategies. Gained hands-on experience with Windows and Linux operating systems for system hardening, log analysis, and basic incident response tasks. Built a strong foundation in networking concepts, including TCP/IP, ports, protocols, and firewall behavior through lab-based research. Studied core cybersecurity fundamentals, including threat vectors, malware types, authentication methods, and risk management. Conducted basic threat simulations and documented findings to support internal knowledge bases and learning resources. Explored SIEM concepts, security logs, and data parsing techniques for potential use in threat detection scenarios. Practiced safe testing environments using virtual labs, sandboxes, and open-source tools to simulate and analyze attack techniques.
Education
Advance Networking & Cyber Security - Swami Vivekananda University
2021 - 2024 · Afghanistan
Certifications
Security Analyst Level 1 (SAL1)
TryHackMe · 2025
CompTIA Cybersecurity Analyst (CySA+)
CompTIA · 2024
AWS Cloud Practitioner
Amazon · 2024
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
Skills (43)
Click a skill to find developers with the same skill
