About
SOC Level 1 Analyst with 2.7 years of hands-on experience in cybersecurity operations, focused on real-time monitoring, alert triage, and incident escalation. Strong expertise in Seceon and QRadar SIEM, network traffic analysis, and endpoint security. Proven ability to follow SOC procedures, reduce false positives, and support incident response efforts. CompTIA Security+ and Certified Ethical Hacker (CEH) certified professional with strong analytical skills and a proactive approach to security operations.
Skills & Expertise (38)
Work Experience
SOC Analyst
Zybisys Consulting Services LLP
Oct 2025 - Present
Continuously monitor security events, alerts, and incident 24/7 through the Seceon SIEM platform. Review and analyze security logs within Seceon SIEM to detect anomalies, suspicious behavior, and potential threats. Worked on CCE platform upgrade, hypervisor/server integration (VMware, ESXi, Windows/Linux), and feature enhancements to improve visibility and platform performance. Maintain dashboards, health checks, and daily operational monitoring. Plan, schedule, and perform vulnerability scans on systems and networks using Nessus/Tenable to identify security weaknesses. Maintain and organize vulnerability scan reports, ensuring accurate documentation and secure retention for future reference. Generate comprehensive security reports on a weekly, monthly, or on-demand basis, summarizing incidents, vulnerabilities, and key threat metrics. Utilize Kaspersky EDR to continuously monitor endpoints, identify suspicious behaviors, and detect malicious activity in real time. Monitored and analyzed security alerts in Sophos, applied and optimized endpoint security policies, and ensured timely response to potential threats in accordance with SOC procedures.
SOC Analyst
Mphasis Limited
Mar 2023 - Jun 2025
Continuous monitoring of alert queues on SIEM console. (IBM Qradar). Identify alerts like brute-force and DoS/DDoS attacks and analyze false and true positives to distinguish intrusion attempts from false alarms. Handle alerts in the SIEM Tool by creating tickets and monitoring intrusions, reviewing security events and alerts generated from multiple log sources. Performed daily health checks of Qradar appliances, including event processors, flow processors, collectors, and console performance. Asset Profiling - Identify the asset location, owner, and segment. Compose security alert notifications - Compile first response information around event / incident for true positives as per defined Run books. Conduct detailed investigations to include intake, prioritization & documentation of privacy & security incidents. Based on the alerts, triage the events, and accordingly create a ticket and assign it to Level2 Analyst, Follow incident lifecycle defined for alerts. Ability to handle multiple high priority items & reprioritize at a moment's notice. & Creating reports daily weekly and Monthly basis as per Client. Conduct shift handovers by updating the next SOC team on ongoing incidents and pending tasks.
Education
Post-Graduate Certificate - Global Virtual Academy For Peace And Education
2022 - 2024 · Afghanistan
Bachelor of Commerce - Davangre University
2017 - 2019 · Afghanistan
Certifications
Certified Ethical Hacker (CEH)
EC-Council · 2026
CompTIA Security+
· 2025
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
Skills (38)
Click a skill to find developers with the same skill
