About
To advance my expertise in Cybersecurity by working with a highly efficient team, leveraging my skills and knowledge, and building a strong career as a Cyber Security Specialist.
Skills & Expertise (15)
Work Experience
Sr Engineer
L&T Technology Services Limited
Jun 2024 - Present
Monitored real-time security alerts and offenses on XDR and IBM QRadar platforms. Maintained the overall health and performance of IBM QRadar, ensuring uninterrupted SIEM operations. Managed and upgraded SIEM components to ensure system security and stability. Managed SIEM administrative configurations, including Reference Set management, building blocks, routing rule configuration, backup and restore activities, payload and offense retention configuration, network hierarchy management, user and role administration, and resource restrictions. Work on Attack Simulation using MITRE ATT&CK Framework. Designed new rules and fine-tuned existing rules to reduce false positives. Created and maintained dashboards, saved searches, and reports. Onboarded new log sources including Windows and Linux systems into QRadar. Reviewed and validated log source ingestion. Created custom parsers and custom properties. Investigated incidents and conducted in-depth analysis of alerts escalated by L1 analysts. Hands-on experience malware analysis and phishing analysis. Handled escalated issues from L1. Troubleshot log source and network issues. Updated Indicators of Compromise (IOCs) in QRadar reference sets and XDR. Conducted sandbox analysis using tools such as ANY.RUN and Browserling. Performed threat hunting using TI tools and raised incidents related to identified security alerts. Monitored Threat Intelligence alerts across Clear Web, Surface Web, and Dark Web. Managed escalated ticket queues and ensured closure within SLA targets. Managed IBM OEM support tickets for SIEM issue resolution.
Security Analyst
NTT Global Data Center
Jun 2021 - Jul 2022
Monitored offenses, investigated alerts, and escalated incidents as needed. Fine-tuned SIEM rules, created custom queries, and generated reports. Handled incidents via Cyware, running playbooks and enrichment tasks. Updated reference sets and supported integration evidence. Raised and managed support tickets with IBM Qradar.
Sr Executive – Risk Mgt.
WNS Global Services Pvt Ltd
Jul 2022 - Jun 2024
Monitored real-time alerts and conducted threat hunting using CrowdStrike, QRadar, Microsoft Defender, and Rapid7 Insight. Investigated incidents, performed malware and phishing analysis, and escalated to Level 3 when required. Created dashboards, reports, SOPs, and custom use-cases with regex and reference sets. Performed sandboxing of suspicious URLs/files using CrowdStrike Sandbox, ANY. Run, and Browserling. Monitored dark web threats via Rapid7 Insight. Managed ticket queues, ensured SLA compliance, and provided 24×7 support for security alerts and offenses.
Security Analyst
TalaKunchi Network Pvt Ltd
Jan 2019 - Jun 2021
Performed health checks for ESM, SmartConnector, ArcMc, and Logger. Monitored alerts and raised incidents to relevant teams. Shared global security advisories with respective stakeholders. Generated Daily, Weekly, and Monthly reports as per business needs. Managed configuration and archive backups. Handled receiver/forwarder setup and report scheduling. Monitored CPU & memory usage of Logger. Oversaw system performance. Created and scheduled reports, dashboards, and rules. Maintained health of Logger and SmartConnectors. Managed users and services. Monitored system resources. Added/decommissioned log sources and services. Performed troubleshooting and coordinated log source prerequisites.
Education
B.S.C (Computer Science) - Mumbai University
- 2018 · Afghanistan
H.S.C (Science) - Mumbai University
- 2015 · Afghanistan
S.S.C - Mumbai University
- 2012 · Afghanistan
