About
Security Analyst with 4+ years of hands-on experience in F5 WAF, Akamai WAF, and Fortigate Firewalls, specializing in protecting web applications against OWASP Top 10 and Layer-7 threats. Strong expertise in Netskope ZTNA (Zero Trust), Azure Sentinel SIEM, and network traffic analysis using Wireshark. Proven ability in threat detection, incident response, WAF tuning, and implementing robust security controls to enhance overall security posture.
Skills & Expertise (9)
Work Experience
Security Engineer
Ericsson
Jun 2019 - Jul 2021
Hands-on experience deploying and managing F5 and Akamai WAF to protect production web applications from advanced Layer-7 attacks. Implemented security controls to mitigate OWASP Top 10 risks such as SQL Injection, XSS, and application abuse scenarios. Designed and customized WAF rule sets based on application behavior and evolving threat intelligence. Performed real-time traffic inspection and request validation to detect and block malicious payloads. Implemented bot mitigation, rate limiting, and IP access controls to reduce attack surface and prevent abuse. Continuously improved WAF performance through alert analysis, rule tuning, and false-positive reduction. Integrated WAF and security logs into Azure Sentinel for centralized monitoring and visibility. Developed analytics rules, alerts, and dashboards in Sentinel to enhance threat detection capabilities. Conducted incident triage, investigation, and root cause analysis (RCA) across web and application layers. Collaborated with SOC teams to enhance detection use cases and strengthen security posture.
Security Analyst
ADMIRE CONSULTANCY SERVICES LTD
Aug 2023 - Sep 2025
Administered Fortigate firewalls, including policy configuration, NAT rules, and secure site-to-site and remote VPN setups. Implemented network security controls to regulate traffic flow between internal, external, and cloud environments. Monitored firewall logs and performed traffic analysis to detect anomalies and potential threats. Reviewed and optimized firewall configurations to eliminate misconfigurations and enforce security best practices. Gained hands-on experience with Netskope ZTNA to enable secure, identity-based application access. Configured granular access policies based on user roles, device posture, and contextual risk. Monitored cloud usage and enforced data protection controls to prevent unauthorized access and data leakage. Utilized Wireshark for deep packet inspection and troubleshooting network-level issues.
Education
Master Of Engineering Management - University Of Leicester
2021 - 2023 · Afghanistan
B.Tech - Vinayaka Missions University
2014 - 2018 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (9)
Click a skill to find developers with the same skill
