About
Dedicated Security Analyst with over 4 years of hands-on experience in vulnerability management and also in identifying and resolving security threats. Proficient in conducting risk assessments, managing incident responses, and collaborating with cross-functional teams to ensure robust security measures. Skilled in analyzing security weaknesses, leading threat hunting exercises, and guiding teams for continual improvement. Adept at maintaining client relationships, offering expert insights, and implementing proactive strategies to safeguard against emerging threats.
Skills & Expertise (55)
Work Experience
Support Engineer
TMS India Pvt Ltd
Nov 2017 - Aug 2020
SAP end-user experience covering material code creation, vendor information management, and master data handling. Proficient in raising Purchase Orders (PO), overseeing production planning, and managing warehouse inventory. Responsible for information security tasks such as creating new users, assigning IP addresses, and managing user access privileges. Conducted backend server operations, including system service restarts, reboots, and regular data backup process. Collaborated on configuration activities with lead engineers, contributing to system setup and maintenance. Proficiently handled system administration duties, ensuring smooth operations and support.
Information Security L2
HALEXO
May 2024 - Present
Conduct vulnerability assessments using Tenable, Microsoft Defender and Qualys. Track, prioritize, and remediate vulnerabilities based on risk, CVSS, and business impact. Monitor and investigate alerts using SIEM tools: AlienVault USM, Microsoft Sentinel, and Huntress. Perform proactive threat hunting to identify hidden and emerging threats. Manage and resolve security incidents via Autotask ticketing system with SLA adherence. Implement and manage endpoint protection using Microsoft Defender for Endpoint and Huntress EDR. Use Datto RMM for remote endpoint monitoring and remediation. Maintain security documentation, asset records, and procedures in IT Glue. Monitor DMARC, email security posture, and domain health. Conduct security audits including firewall rule reviews and Microsoft Intune compliance checks. Prepare and deliver monthly SOC reports, including: Vulnerability assessment and remediation reports, Threat hunting findings. Collaborate with IT and security teams to ensure compliance and continuous security improvement.
Security Analyst L2
LTS Secure
Jan 2023 - Apr 2024
Proactively conducted threat-hunting activities, analyzing logs, traffic, and behavior patterns to identify advanced threats and potential security risks. Performed deep security analysis of incidents, including root cause investigations, impact assessments, and formulation of remediation strategies. Focused on identifying and mitigating surface attacks, such as phishing, DDoS, and targeted attacks, to safeguard public-facing systems and applications. Developed and fine-tuned correlation rules within SIEM tools to enhance the detection of security incidents based on specific patterns observed in logs and network traffic. Designed and created comprehensive dashboards and reports within security tools for effective visualization and communication of security posture, threats, and trends. Acted as a point of escalation for complex security incidents, providing guidance and support to junior analysts and collaborating with cross-functional teams. Contributed to incident response enhancement by identifying gaps, suggesting improvements, and participating in the development of incident response playbooks and procedures. Conducted troubleshooting of silent logs, ensuring the integrity and reliability of data sources. Oversaw the generation and analysis of reports related to security incidents, threat landscapes, and SOC performance. Conducted and facilitated weekly meetings to discuss ongoing activities, challenges, and strategies for improvement.
Education
Bachelor of Engineering - Smt.Kamala & Sri venkappa M Agadi College of Engineering & Technology
2013 - 2017 · Afghanistan
Pre-University Course - Hongirana Independent PU College
- 2012 · Afghanistan
Certifications
EasyDMARC Certification
Easydmarc · 2026
Certified in email authentication and domain protection through EasyDMARC, with knowledge of SPF, DKIM, and DMARC implementation to prevent spoofing and phishing attacks
SC-200: Microsoft Security Operations Analyst certification
Microsoft · 2025
This certification focuses on security monitoring, threat detection, and incident response using tools like Microsoft Sentinel, Microsoft Defender XDR, and other Microsoft security solutions. It teaches how to investigate alerts, perform threat hunting, create detection rules, and respond to security incidents in a Security Operations Center (SOC).
SC-300 → Identity security and access control management
Microsoft · 2025
This certification focuses on identity and access management using Microsoft Entra ID (formerly Azure AD). It covers managing user identities, implementing secure authentication, configuring conditional access policies, and protecting identities to prevent unauthorized access.