About
CompTIA Security+ certified Cyber Security professional with 3+ years of experience in SOC operations, SIEM monitoring, incident response, threat detection, and IT security support. Skilled in Microsoft Sentinel, Splunk, log analysis, alert triage, and MITRE ATT&CK-based investigations within 24x7 SOC environments. Experienced in identifying phishing attacks, malware activity, brute-force attempts, and suspicious network behavior while ensuring SLA compliance and accurate incident documentation. Strong understanding of network security, Active Directory, Microsoft 365, and endpoint security with hands-on experience in RCA, SIEM tuning, and security operations optimization.
Skills & Expertise (40)
Work Experience
SOC Analyst
Cognizant
Dec 2024 - Present
Monitor and analyze security events using Splunk in a 24x7 SOC environment. Conduct real-time alert triage, classifying incidents by severity to prioritize response efforts. Identify and respond to phishing attempts, brute force attacks, malware activity, and other suspicious behaviors to enhance security posture. Investigate security incidents using MITRE ATT&CK framework and IOC-based analysis. Correlate logs from endpoints, firewalls, servers, and cloud environments. Tune SIEM rules to reduce false positives and improve detection accuracy. Support end-to-end incident response lifecycle (Detection → Containment → Recovery). Perform Root Cause Analysis (RCA) and recommend preventive security measures. Maintain detailed incident documentation and ensure compliance with service level agreements to support regulatory and operational standards.
Technical Support Representative (GoDaddy Process)
Teleperformance
Feb 2022 - Oct 2022
Resolved 200+ daily technical and security-related incidents for global clients. Resolved DNS, SSL/TLS, SPF/DKIM/DMARC email security and website security issues for clients. Supported Microsoft 365 (Exchange, Teams, SharePoint, Azure AD). Executed SOC-style troubleshooting and incident workflows to address incidents. Detected and reported suspicious activities through log analysis and alert monitoring. Maintained 100% SLA compliance through proper documentation. Reduced recurring incidents by 35% through RCA and preventive actions.
Information Security Support Associate
Accenture
Jan 2021 - Feb 2022
Managed Active Directory access provisioning/deprovisioning, enforced least-privilege policies, and conducted access reviews to enhance identity compliance and minimize unauthorized access incidents. Monitored DLP alerts, tracked vulnerabilities, and coordinated patch remediation to mitigate exposure to unpatched systems and strengthen incident response. Performed risk assessments and compliance audits, documented remediation actions in Jira, and ensured audit evidence met SLA timelines. Triaged security incidents in a 24/7 environment, escalated confirmed threats using playbooks, and maintained complete incident documentation in Jira.
Education
Master of Science in Cyber Security - University of West London
2024 - · Afghanistan
Bachelor of Engineering in Computer Science - Chandigarh University
- 2021 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
Skills (40)
Click a skill to find developers with the same skill
