About
To build my career in Cybersecurity that promotes learning and growth with a team where my acquired skills will be utilized for the betterment of the company.
Skills & Expertise (15)
Work Experience
SOC Analyst
Amazon
Oct 2022 - Present
Proactively monitor and analysis of alerts on Azure Sentinel Security Information and Event Management (SIEM) to identify suspicious activity or anomalies. Monitor, analysis, detect and provide proper incident response to all the security triggered alerts from Security tools and other security solutions. Thoroughly investigate, promptly report, document and raise tickets for valid incidents to the appropriate resolution teams. Perform root cause analysis for security incidents. Utilize open-source tools to investigate malicious phishing emails, domains, IPs, URLs and providing recommendations for proper blocking based on the analysis. Hands on experience of current and upcoming analysis tools like VirusTotal, VMRay, IPVoid, URLScan, Zscaler Site Review, AbuseIPDB. Respond to cyberthreats in real-time, resolving cases with comprehensive documentation and investigation. Acknowledge and take necessary actions on user reported emails, Office Data Loss Prevention and Endpoint Data Loss Prevention. Utilize manual ticketing system like SNOW to raise tickets based on investigations and analysis. Adhere to SLAs for incident acknowledgement and resolution and make regular follow-ups till the closure of the incident and good understanding of SOC processes like Standard Operating Procedures (SOP), Playbooks and documentation. Fine-tune the SIEM Use case for the reduction of false positive alerts. Able to perform true and false positive Log analysis. Responsible for preparing weekly and monthly SOC reports. Assist L2 and L3 in priority incidents and drafting shift handover.
Education
Bachelor of Engineering - GMRIT, RAJAM JNTUK
2019 - 2022 · Afghanistan