About
Experienced SOC Analyst with 4.5 years in cybersecurity, specializing in threat detection, incident response, and security operations management. Proven ability to lead SOC teams, handle critical incidents, and improve detection capabilities using SIEM, EDR, and threat intelligence with ability to quickly learn and adapt to new technologies and environments.
Skills & Expertise (35)
Work Experience
SOC Analyst
SAFRAN INDIA PVT LTD
Mar 2023 - Present
Led a team of 10 analysts managing 24x7 Security Operations Center (SOC) activities and incident response. Acted as the primary escalation point for critical security incidents, including phishing, and advanced threats. Coordinated with onsite teams/L3 and cross-functional stakeholders, represented SOC operations in various team meetings and during onsite visits in Paris, France. Developed and maintained SOPs, runbooks, and incident response playbooks. Tuned SIEM and EDR rules and correlation logic, reducing false positives by 60%. Responsible for Incidence Response of security alerts generated by SIEM, EDR, Proofpoint, Firewalls, and other security devices using XSOAR. Analyzed alerts from various security devices utilizing SOC tools like Splunk, Harfanglab EDR, Nexthink, Palo Alto, Proofpoint, and Infoblox etc. Handled phishing incidents response through email analysis, blocking malicious links and senders, and removing harmful emails via Proofpoint. Verified and analyzed malicious content using sandbox technology. Created use cases by analyzing logs and aligning them with audit policies provided by device owners. Coordinated with device owners to onboard new security logs, ensuring better visibility of security events by comparing them with provided audit policies. Organized troubleshooting calls with relevant teams for log source configuration and to address log delay alarms/issues. Conducted proactive threat hunting using MITRE ATT&CK framework. Prepared RCA reports, delivered daily, weekly, and monthly reporting, and supported L1 and L2 teams in SOC operations.
Senior Security Analyst
LOCUZ ENTERPRISE SOLUTIONS LTD
May 2022 - Mar 2023
Monitored enterprise security events and alerts within a 24x7 SOC environment. Worked as Senior Security Analyst for SOC environment and Led and mentored a team of 6 SOC analysts. Managed incident response for phishing emails by analyzing detailed emails, content, URLs, senders, and attachments using various threat intelligence sites, email security tools, and sandbox Analysis. Blocked malicious URLs, sender, and domains, and deleted malicious emails from user mailboxes using email security tools like Proofpoint. Maintained SLAs for critical incidents using ticketing tools such as ServiceNow and BMC Remedy, and arranged meetings with clients to provide detailed incident information until closure. Maintained incident documentation, compliance records, and operational reports. Created and presented daily, weekly, and monthly reports during client calls, and provided training to newly joined team members.
Education
Bachelor of Technology (B.Tech) - Jawaharlal Nehru Technological University (JNTU)
- 2017 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (35)
Click a skill to find developers with the same skill
