About
Detail-oriented and proactive SOC Analyst L1 with 2+ years of hands-on experience in monitoring, analyzing, and responding to cybersecurity threats using SIEM tools. Proven ability to investigate security incidents, perform log analysis, manage alerts, and support incident response activities. Strong understanding of network security, malware analysis, and threat intelligence. Reduced false positives and improved alert fidelity via rule tuning and playbook updates. Adept at collaborating with cross-functional teams to strengthen organizational security posture and ensure compliance with security standards.
Skills & Expertise (25)
Work Experience
SOC Analyst L1
HCL Tech
Feb 2024 - Present
Monitored security alerts using SIEM tools and investigated suspicious activities. Analyzed logs from firewalls, servers, endpoints, and network devices. Performed initial triage of security incidents and escalated to L2/L3 teams. Tuned correlation rules and alert thresholds, reducing false positive rate by 25% and improving analyst efficiency. Investigated phishing emails and malware alerts. Conducted user access monitoring and IAM-related activities to detect unauthorized access. Managed and tracked incidents using ServiceNow, ensuring SLA compliance. Documented incident reports and maintained case management records. Created and updated SOC playbooks and runbooks for phishing, brute-force, and suspicious process alerts, reducing triage time by 20%. Supported incident response and remediation activities. Participated in 24x7 shift operations and handover procedures. Mapped security events using MITRE ATTACK framework for better threat understanding.
Education
Bachelor of Science (B. SC) in Computer Science - A.V. college of arts, science and commerce
2020 - 2023 · Afghanistan
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Relocation
Depends on Offer
