About
Cyber Security Engineer with 4.4+ years of experience in Security Operations, Threat Monitoring, Vulnerability Assessment, Incident Response, and Endpoint Security. Skilled in using industry-leading tools such as Splunk, CrowdStrike, Tenable Nessus, Qualys, BurpSuite, NIPS, PAM, and cloud platforms including GCP. Strong experience in analyzing security events, detecting threats, performing root-cause analysis, and strengthening enterprise security posture. Proven ability to collaborate with cross-functional teams, implement security controls, and contribute to secure IT environments.
Skills & Expertise (44)
Work Experience
Senior Software Engineer
LeanQuality Solutions (I) Pvt. Ltd.
May 2023 - Present
Conducting continuous vulnerability assessments, risk analysis, and cloud security posture monitoring. Handling SOC escalations, threat investigations, and coordinating remediation activities. Implementing IAM governance, MFA enforcement, device control, and secure access policies. Managing SIEM alerts, creating correlation rules, and improving detection logic. Supporting security audits, documentation reviews, and compliance initiatives. Performed security audits, penetration tests, and vulnerability assessment using Nessus and Qualys. Analyzed configuration weaknesses, reviewed defense mechanisms, and ensured alignment with security standards. Worked with Splunk and CrowdStrike for monitoring, correlation, and alert triage. Assisted in preparing System Security Plans (SSP) and reviewed documentation for compliance. Gained strong exposure to NIST RMF and Cyber Security Framework (CSF). Conducted risk assessments and proposed mitigation strategies for identified threats. Conducted automated and manual vulnerability scans using Qualys and Nessus by Tenable, reducing enterprise risk exposure through effective patch validation.
Software Engineer – Cyber Security
Tech Mahindra
Aug 2021 - Apr 2023
Worked on Digi_Malaysia_Cyber_Security project to safeguard users against cyber-attacks. Analyzed phishing, spamming, and threat events, providing incident insights and remediation. Configured and monitored network security controls including Firewalls, IDS/IPS, VPN. Used Splunk for log monitoring, analysis, visualization, and incident detection. Investigated security breaches, performed RCA, and recommended corrective actions. Ensured compliance with ISO 27001, DR plans, and organization-level security policies. Maintained incident documentation, incident playbooks, and handled escalation workflows. Hands-on experience applying OWASP Top 10 standards to identify and mitigate common web application security risks. Performed web application security testing for vulnerabilities like SQL Injection, XSS, CSRF, Broken Authentication, and Security Misconfiguration. Developed Python scripts to automate log parsing, threat data extraction, and security event analysis, reducing manual SOC effort. Used Python for API integrations with security tools to fetch alerts, scan results, and system health metrics. Created Python-based utilities for IOC analysis, IP reputation checks, and suspicious file investigations.
Education
B.E. Electronics - Bidve College of Engineering, Latur (SRTMUN University)
- · Afghanistan
Diploma in Electronics - Government Polytechnic, Latur
- · Afghanistan
SSC - Shri Anantpal Nutan Vidyalaya, Latur
- · Afghanistan
Certifications
Splunk Beginner to Architect
· 2023
AWS Cloud Practitioner
· 2022
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
Skills (44)
Click a skill to find developers with the same skill
