About
Information Security Analyst with expertise in SOC Operations, DLP Administration, EDR Security, Threat Detection & Incident Response with over 5 years of experience.
Skills & Expertise (25)
Work Experience
Assistant Engineer (Officer)
Greenko Group
Nov 2019 - Mar 2022
Monitored SCADA operations and maintained daily generation reports. Tracked and reported MTTR (Mean Time to Repair) and MTTD (Mean Time to Detect). Prepared reconciliation reports related to plant operations and power generation. Improved plant efficiency by analyzing operational performance and suggesting corrective actions. Monitored ongoing operations and ensured smooth plant functioning. Tracked work permits and maintained audit reports for compliance purposes.
SOC Analyst L2
LA Technologies Pvt Limited
Mar 2024 - Oct 2025
Good knowledge and hands-on experience with central logging, log management, and Splunk SIEM architecture. Experience working with 24/7 SOC monitoring teams for incident detection and response, coordinating with internal teams and MSS providers. Hands-on experience with Microsoft Sentinel for security monitoring and log analysis. Experience in host-based analysis and artifact investigation using Microsoft Defender for Endpoint. Performed host isolation and advanced threat analysis using Microsoft Defender for Endpoint. Experience in creating correlation rules and monitoring security alerts in SIEM platforms. Experience analyzing advanced threats and endpoint activities using CrowdStrike Falcon. Hands-on experience analyzing Windows endpoint logs and security events. Administered and managed enterprise Data Loss Prevention (DLP) solutions including Proofpoint Enterprise DLP, Symantec Data Loss Prevention, and Microsoft Purview to protect sensitive organizational data. Configured and maintained DLP policies to monitor and prevent data exfiltration via email, web uploads, USB devices, cloud storage, and endpoints. Created and tuned data classification policies to detect sensitive data such as PII, PCI, PHI, financial data, and confidential business information. Investigated and analyzed DLP alerts and incidents, performing root cause analysis and coordinating remediation actions with IT and business teams. Implemented email DLP rules in Proofpoint to detect and block sensitive information being shared externally. Managed endpoint DLP agents to monitor file transfers, removable media usage, and unauthorized data movement. Configured Microsoft Purview DLP policies for Exchange Online, SharePoint Online, OneDrive, and Microsoft Teams to protect cloud data. Integrated DLP alerts with SIEM platforms (e.g., Splunk / QRadar / Sentinel) for centralized security monitoring and incident response. Conducted false positive tuning and policy optimization to improve detection accuracy and reduce alert noise. Generated DLP incident reports and compliance reports for management and audit teams. Worked closely with SOC, IR, and compliance teams to respond to data leakage incidents and enforce data protection standards. Performed regular health checks, upgrades, and maintenance of DLP systems to ensure optimal performance.
SOC Analyst L1
Sri Lee Technologies Pvt Limited
Aug 2022 - Dec 2023
Experienced in log analysis and immediate investigation of critical security alerts. Good experienced Google chronicle SIEM & SOAR Tool. Handled incident management and response using SentinelOne (S1) and CrowdStrike Falcon EDR. Hands-on experience with SIEM tools including Splunk, IBM QRadar, and Azure Sentinel. Performed phishing email analysis, malware analysis, and IOC investigations. Managed whitelisting, blacklisting, and exclusions of IOCs such as file hashes and file paths. Monitored and investigated DLP alerts and incidents, analyzed user activities related to data exfiltration, created policies, sent user notifications, and validated business workflows. Maintained escalation matrices and coordinated communication with server owners and stakeholders.
Education
B.Tech in Electrical and Electronics Engineering - GVVIT Engineering College
2014 - 2017 · Afghanistan
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Depends on Offer
