About
Cyber Security Analyst & IT professional with hands-on experience in Web and Network Vulnerability Assessment & Penetration Testing (VAPT), firewall administration, incident response, and security monitoring. Proven ability to secure enterprise IT environments, including servers, endpoints, firewalls, and Data Loss Prevention (DLP) solutions. Skilled in identifying, analyzing, and mitigating cyber threats through risk assessment, malware analysis, and the implementation of security controls aligned with OWASP and industry best practices. Strong background in IT infrastructure administration, system hardening, and troubleshooting to ensure high availability, operational resilience, and compliance. Highly motivated professional with strong analytical and problem-solving skills, committed to continuous improvement in ethical hacking, digital forensics, and proactive defense strategies.
Skills & Expertise (22)
Work Experience
Internship Trainee – Cyber Security
Cyber Octet Pvt. Ltd.
Present - Present
Performed vulnerability scanning and assessment using Nessus and Nmap to identify security weaknesses in network and system environments. Conducted network traffic analysis and packet inspection using Wireshark to detect suspicious activities and potential security threats. Executed email spoofing tests and basic social engineering simulations to evaluate email security controls and user awareness. Identified and analyzed OWASP Top 10 web application vulnerabilities such as SQL Injection, XSS, Authentication issues, and Security Misconfigurations. Assisted in Governance, Risk, and Compliance (GRC) activities including risk assessment, security policy review, and documentation support. Prepared vulnerability assessment reports with severity classification and mitigation recommendations aligned with security best practices. Gained hands-on exposure to real-world cybersecurity operations, tools, and compliance frameworks under senior security professionals.
Analyst - Cyber Security & IT
Cyber Octet Pvt. Ltd.
Jan 2025 - Jan 2026
Executed Network and Web Application VAPT engagements, identifying high- and medium-severity vulnerabilities and providing structured remediation guidance aligned with OWASP Top 10 and industry best practices. Delivered comprehensive cybersecurity services across enterprise and SMB environments, including network security deployment, vulnerability assessments, firewall operations, and Data Loss Prevention (DLP) management. Administered next-generation firewalls by defining security policies, NAT rules, access controls, VPN configurations, and logging mechanisms to strengthen perimeter defense and enhance threat visibility. Architected and maintained secure and scalable network infrastructures, improving system uptime, performance, and resilience against internal and external cyber threats. Investigated security incidents through malware analysis and threat research to detect, contain, and eliminate malicious activities, minimizing response time and operational risk. Oversaw enterprise and client server environments, including system configuration, patch deployment, backup management, performance optimization, and security hardening in accordance with best practices. Deployed and maintained Data Loss Prevention (DLP) solutions to monitor sensitive data movement, prevent unauthorized data exposure, and enforce organizational security and compliance policies.
Cyber Security Intern
ASHINE (SVNIT)
Jan 2024 - Apr 2024
Developed a Host-based Intrusion Detection System (HIDS) using machine learning techniques to detect malicious system activities. Collected, cleaned, and prepared datasets containing normal and attack system call data for training and testing purposes. Performed system call mapping, feature extraction, and data labeling to distinguish between legitimate and malicious behavior. Trained and evaluated machine learning models to assess detection accuracy and performance for intrusion detection use cases. Gained practical exposure to intrusion detection concepts, dataset preparation, and model evaluation in cybersecurity research.
Education
Bachelor of Engineering in Computer Science and Engineering - Gujrat Technology University
2020 - 2024 · Afghanistan
