About
Results-driven Information Security Professional with 3+ years of hands-on experience in SOC operations, threat detection, incident response, and cyber threat intelligence. Expertise in monitoring and analyzing security events using IBM QRadar, Microsoft Sentinel (Azure Sentinel), and CrowdStrike Falcon EDR. Proficient in MITRE ATT&CK-based threat hunting, malware analysis, phishing investigation, log correlation, and SOAR-driven playbook automation. Demonstrated ability to reduce MTTD/MTTR, enforce SLA compliance, and support enterprise-level security operations across SIEM, EDR, IDS/IPS, and cloud security platforms. Certified Ethical Hacker (CEH) with proven bug bounty recognition and a strong track record in delivering measurable security outcomes.
Skills & Expertise (45)
Work Experience
SOC Analyst
UST Global
Feb 2024 - Present
Monitored, triaged, and investigated 500+ security events daily using IBM QRadar and Microsoft Sentinel — detecting unauthorized access, lateral movement, malware infections, brute-force attacks, and phishing campaigns across enterprise networks. Reduced false positive rate by 30% through systematic SIEM tuning, alert threshold optimization, and continuous playbook refinement — improving signal-to-noise ratio for the SOC team. Conducted IOC-based and behavioral threat hunting using CrowdStrike Falcon and Microsoft Defender for Endpoint, correlating indicators across 10+ log sources (firewalls, IDS/IPS, cloud platforms, EDR) mapped to MITRE ATT&CK TTPs. Led proactive APT detection campaigns, identifying advanced threats pre-escalation and reducing Mean Time to Detect (MTTD) through early identification of indicators of compromise (IOCs) and anomalous behavioral patterns. Coordinated cross-functional incident response with network, endpoint, and cloud security teams — contributing to a 25% improvement in Mean Time to Respond (MTTR) on critical security incidents. Authored and maintained 15+ incident response playbooks on the Google Chronicle SOAR platform, automating alert enrichment, containment actions, and escalation workflows — reducing manual effort on repetitive L1 tasks. Managed all security incidents end-to-end in ServiceNow, ensuring 100% SLA compliance on P1/P2 tickets and delivering detailed post-incident reports with root cause analysis (RCA) and remediation recommendations. Performed phishing analysis and malware triage — analyzing email headers, URLs, attachments, and sandbox detonation results to determine scope and containment strategy. Produced daily, weekly, and monthly SOC reports covering incident trends, threat intelligence summaries, key MTTD/MTTR metrics, and risk posture updates for management and client stakeholders. Mentored and guided junior SOC analysts (L1) during complex investigations and escalations, improving team detection efficiency and knowledge transfer across the 24/7 shift model.
Associate Consultant
Atos Syntel
Oct 2022 - Jul 2023
Completed structured training in application security, Java full-stack development, and secure coding — building a foundation in scripting, automation, and vulnerability identification. Gained hands-on exposure to OWASP Top 10 vulnerability classes (SQLi, XSS, CSRF, IDOR, etc.) and performed web application security testing using Burp Suite and manual penetration testing methodologies. Applied secure coding practices and contributed to identifying security weaknesses in internal applications during training sprints.
Education
Master of Computer Applications (MCA) - Vignan's Institute of Information Technology
- 2022 · Afghanistan
B.Sc. — Mathematics, Physics & Computer Science - St. Joseph's College for Women
- 2020 · Afghanistan
Certifications
Certified Ethical Hacker (CEH)
EC-Council · 2023
Certified AppSec Practitioner (CAP)
The SecOps Group · 2023
Associate Reactive Developer (OutSystems 11)
OutSystems · 2023
Microsoft Azure Fundamentals (AZ-900)
Microsoft · 2022
PCAP — Programming Essentials in Python
Cisco / NetAcad · 2021
Cybersecurity Summer Internship
Gurugram Police Cyber Cell · 2021
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Depends on Offer
Skills (45)
Click a skill to find developers with the same skill
