About
Driven cybersecurity specialist with a comprehensive understanding of security tools and technologies. Proficient in monitoring and analyzing security events using advanced SIEM platforms such as IBM QRadar, Splunk, and ArcSight. Experienced in leveraging cutting-edge EDR solutions including SentinelOne, Carbon Black, Cybereason, Falcon CrowdStrike, and Defender to detect and respond to evolving threats. Skilled in managing cloud security in AWS and Azure environments, configuring firewalls such as Palo Alto and Zscaler, and administering email security solutions like Proofpoint, Symantec, and Mimecast. My objective is to apply my expertise in a dynamic cybersecurity role where I can utilize these tools effectively to safeguard organizational assets and mitigate cyber risks proactively.
Skills & Expertise (27)
Work Experience
Cyber Security Analyst
Patra
Apr 2021 - Present
Leveraged SIEM platforms (IBM QRadar, Splunk, ArcSight) to perform in-depth analysis of security events, proactively identifying potential threats and reducing incident response time by 30%. Developed custom correlation rules, dashboards, and reports to enhance visibility into network activity and streamline detection workflows. Utilized advanced EDR solutions (SentinelOne, Carbon Black, Cybereason, CrowdStrike Falcon, Microsoft Defender) to detect and respond to endpoint threats, implementing behavioral analysis and ML algorithms to identify anomalous activity and IOCs. Created and optimized Kusto Queries (KQL functions) for Azure Sentinel investigations, improving threat hunting efficiency and reducing false positives. Configured and optimized next-generation firewalls (Palo Alto Networks, Zscaler) to enforce segmentation, application-based policies, and IPS signatures; conducted regular firewall audits ensuring 100% compliance with security standards. Spearheaded continuous monitoring of network traffic and alerts using SIEM platforms, implementing custom rules and dashboards to accelerate threat detection and response. Managed ServiceNow incident lifecycle from creation to closure, updating IOCs in Sentinel threat intelligence repositories. Conducted forensic investigations into intrusion attempts, analyzing exploits and attack vectors; enriched analysis with threat intelligence feeds and OSINT to identify emerging threats. Maintained endpoint security posture by developing behavioral profiles to mitigate advanced malware and ransomware campaigns. Having hands-on experience on cloud security services like AWS and Azure. Collaborated with SOC teams to triage alerts, escalate incidents, and provide root-cause analysis for high-severity events. Developed playbooks and runbooks for incident response, ensuring standardized procedures and faster resolution times.
Education
B.Com (Computers) - Manonmaniam Sundaranar University
2015 - 2018 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Need Sponsorship
Relocation
Open to Relocation
Skills (27)
Click a skill to find developers with the same skill
