About
To secure a challenging position in a organization to expand my learnings, knowledge, and skills. Secure a responsible opportunity to fully utilize skills, while making a significant contribution to the success of the company.
Skills & Expertise (23)
Work Experience
Security Analyst
Mphasis
Nov 2022 - May 2025
Worked as a Security Analyst handling various security operations and incident management tasks.
Security Analyst
Rattan Enterprises (Elevance Systems)
May 2025 - Present
Monitor and investigate security events and alerts using Microsoft Defender. Conduct advanced endpoint investigations including Live Response remediation sessions. Investigate phishing campaigns through authentication log analysis and sign-in telemetry review; enforce remediation controls. Analyze suspicious IPs, URLs, domains, and email senders; block confirmed IOCs to prevent further compromise. Perform threat intelligence analysis using OSINT tools to validate malicious indicators. Triage and remediate malware, hacktool, and policy violation alerts to strengthen endpoint security posture. Monitor risky sign-ins and enforce MFA and password less authentication to mitigate identity-based threats. Conduct access audits and group membership reviews to detect unauthorized changes. Manage MDM services and onboard new workstations ensuring compliance with security baselines. Collaborate with cross-functional teams for timely containment and incident recovery. Monitoring IPS logs & Firewall to identify external threats. Exposure to Ticketing tool like Service Now. Collecting the logs of all the network devices and analyze the logs to find the suspicious activities. Investigate the security logs, mitigation strategies and Responsible for preparing generic security incident report. Phishing and Spam Email Analysis in O365 Defender. In addition, perform analysis by observing deviations from normal behavior to uncover activities that could undermine security of information assets. Validate and confirm potential security incidents through detailed investigation of logs. Create incidents for all alerts/findings and regular updates on overall analysis as per the defined SLA’s. Displaying the event data in different layouts by defining Dash Boards & Data Monitors. Checking the overall system health, Connectors health & reporting it to the Admin. Team on daily basis. Providing daily, weekly and monthly reports of incident activity. Security Incident Response and closure of Incidents within SLA using Service Now & Service Desk. Performing Health check of network security devices. Analyzing Phishing and Spam related activities and notifying to the users. Preparing daily and weekly dashboard on the security threats and trends on the network. Working on Real time network traffic by analyzing the logs from IDS and Firewalls through SIEM Tool. Handling the complete incident management framework cycle right from incident identification, incident containment, performing root cause analysis, suggestion and implementation of preventive and corrective controls and perform network analysis as needed on a case-to-case basis. Participate in weekly and monthly review calls with client and team meetings to review status of the issues and to provide process updates. Providing 24x7 on-call support & coordinating with required Teams to resolve the high security issues.
Education
MBA - Rajiv Gandhi Institute of Management Science
- 2021 · Afghanistan