About
IT and cloud professional with 5+ years of enterprise experience across Microsoft 365, Azure, and network infrastructure. Holds AZ-500, CompTIA CySA+ (purpose-built for threat detection and incident response), and CCNA, backed by an MSc in IT Security. In practice, investigated Microsoft Defender XDR and ESET endpoint alerts, conducted KQL-driven threat hunting in Microsoft Sentinel and Log Analytics, enforced Zero Trust via Conditional Access, and owned full incident response lifecycles triage, containment, RCA, and stakeholder reporting across 600+ critical national infrastructure endpoints. Brings evidence-first analytical mindset built for high-tempo SOC operations.
Skills & Expertise (46)
Work Experience
L2 IT Support Engineer
Yunex Traffic (Siemens)
Apr 2023 - Apr 2026
Managed Microsoft 365 licensing allocation and service configuration across Exchange Online, Teams, SharePoint Online, and OneDrive; resolved mail flow issues, diagnosed NDRs and delivery failures, and configured distribution lists, resource mailboxes, and shared mailbox permissions. Provisioned and managed Azure resources including virtual machines, storage accounts, and virtual network components via the Azure portal and ARM templates; performed resource group organisation, tagging, and cost management reviews to maintain operational hygiene across subscriptions. Monitored Azure infrastructure health using Azure Monitor, Log Analytics workspaces, and custom alert rules; queried KQL logs to investigate resource performance degradation, VM availability issues, and network connectivity faults across production and managed service environments. Managed Windows device compliance and configuration through Microsoft Intune, created and assigned compliance policies and device configuration profiles to enforce security baselines, ensuring non-compliant devices were flagged and blocked from accessing M365 resources via Conditional Access. Served as L2 escalation point for complex incidents across 600+ CCTV endpoints and intelligent traffic management systems deployed across 25+ UK local councils, owning end-to-end resolution from advanced diagnosis through to verified fix and post-incident documentation. Developed and maintained PowerShell scripts and SQL queries to automate diagnostic data collection, extract telemetry from operational systems, and generate SLA/OLA performance reports, reducing manual reporting effort and accelerating incident resolution times across the team. Administered and hardened endpoint security posture using ESET Endpoint Security across Windows server and device estates; tuned detection policies, investigated malware alerts, and reduced recurring security incidents by ~20% through proactive threat analysis and remediation. Managed and triaged the full incident and service request lifecycle in the ITSM platform (InView); tracked ticket backlogs, prioritised workloads by severity and SLA deadline.
Network Support Engineer
Merlin Softech & Telecom
Dec 2019 - Jun 2020
Provided network support across 40+ remote branch environments; diagnosed connectivity faults, investigated suspicious traffic patterns, and enforced ACL-based access controls on Cisco routers. Configured and maintained site-to-site IPSec VPN tunnels between branch offices; validate stability to ensure encrypted WAN connectivity met security baselines. Conducted network packet analysis using Wireshark, identifying anomalous traffic, potential intrusion indicators, and performance bottlenecks across LAN/WAN environments. Assisted in firewall rule management and network access control reviews, ensuring security policies aligned with least-privilege principles; flagged anomalous traffic patterns to senior engineers for investigation. Monitored WAN and LAN health using SolarWinds NPM with custom security and performance alerts; reduced MTTR from 4 hours to 1.5 hours through proactive fault detection and early escalation. Implemented VLAN segmentation, STP, and port security on managed switches to enforce network isolation and prevent unauthorized lateral movement across broadcast domains.
Azure Support Engineer
Kapardhi Softech
Feb 2017 - Aug 2017
Managed user identity lifecycle in Azure AD including provisioning, deprovisioning, RBAC assignment, and MFA enrolment; enforced access governance aligned with least-privilege security principles. Supported Conditional Access policy configuration and MFA enforcement for Office 365 users; assisted with security baseline implementation across Exchange Online, Teams, and SharePoint. Performed Azure Monitor and Log Analytics alert response; investigated service health incidents and security-relevant events, notifying stakeholders and documenting all actions within the ITSM ticketing platform. Assisted with Microsoft Intune device enrolment and compliance policy deployment for Windows 10 endpoints; contributed to security baseline enforcement and patch management across managed devices. Documented security incidents, support activities, and procedural runbooks; created knowledge base articles to improve team security response efficiency and first-call resolution rates.
Education
MSc, Information Security - Nottingham Trent University
- 2021 · Afghanistan
MSc, Electronics Engineering - De Montfort University
- 2019 · Afghanistan
BE, Electronics & Telecommunication - Sinhgad Academy
- 2015 · Afghanistan
Certifications
AWS Certified Solutions Architect Associate (SAA-C03)
· 2025
Microsoft Azure Security Engineer Associate (AZ-500)
· 2023
CompTIA Cybersecurity Analyst (CySA+)
· 2022
Cisco Certified Network Associate (CCNA)
· 2020
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
Skills (46)
Click a skill to find developers with the same skill
