About
Cybersecurity Analyst with 2+ years of experience in Security Operations Center (SOC) environments. Focused on enhancing organizational security by identifying and escalating potential risks. Experienced in evaluating security incidents to assess their severity and impact. Committed to continuous monitoring and adhering to established protocols to protect systems. Strong team player with analytical skills, dedicated to improving processes. Proficient in leveraging tools for effective threat detection and response. Looking to advance security initiatives and strengthen defenses in a Security Operations Center (SOC) environment.
Skills & Expertise (24)
Work Experience
Cyber Security SOC Analyst
Central Data Systems
Sep 2023 - Present
Monitored SIEM alerts and security logs to detect suspicious activity, validate true/false positives, and identify potential security incidents across enterprise systems. Led security incident investigations using SIEM, correlating multi-source logs, performing root-cause analysis, and assessing operational and security impact. Conducted advanced endpoint and cloud threat analysis using CrowdStrike Falcon XDR and Microsoft Defender for Endpoint/Cloud, identifying malware, privilege escalation, and lateral movement. Investigated phishing attacks and spam emails using Microsoft Defender, applying blocklists and reporting malicious domains to reduce recurrence. Utilized threat intelligence platforms such as VirusTotal and AbuseIPDB to validate IOCs and enrich incident data during investigations. Provided containment recommendations such as endpoint isolation and domain/IP blocking. Created and maintained comprehensive ServiceNow incident tickets, capturing root cause analysis, IOCs, and response recommendations to support Incident Response activities. Verified that log sources from endpoints, firewalls, and servers were properly ingested into the SIEM platform; reported any log source failures to the engineering team. Participated in daily shift handovers and provided summaries of open or ongoing incidents to maintain team awareness and continuity. Collaborated with network teams to troubleshoot connectivity issues and ensure secure access controls were enforced. Documented and maintained incident response procedures and playbooks to ensure consistency and efficiency in handling future incidents.
Software Engineer
Audree Infotech
Jun 2021 - Nov 2022
Monitored network traffic and analyzed security alerts, escalating incidents for further investigation and timely response. Supported the design, development, and implementation of web applications by working with cross-functional teams to meet functional and security requirements. Debugged applications, identified root causes, and performed testing and troubleshooting to improve stability and performance. Participated in daily and status meetings, providing clear updates on progress, issues, and project timelines. Created and updated mock-ups following design best practices and communicated potential issues to technical and non-technical teams. Developed responsive user interfaces using HTML5, CSS3, Bootstrap, jQuery, and JavaScript to ensure usability and reliability.
Education
Bachelor of Technology in Computer Science and Engineering - SRM Institute of Science and Technology (SRM UNIVERSITY)
2017 - 2021 · Afghanistan
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
