About
To leverage my experience in Security Operations Center (SOC) operations, incident investigation, security monitoring, and threat analysis to contribute to organizational security while continuously enhancing my cybersecurity skills and knowledge.
Skills & Expertise (34)
Work Experience
Information Security Analyst
Accenture
Jul 2023 - Present
Monitored and analyzed security alerts and events using Splunk and IBM QRadar in a 24x7 Security Operations Center (SOC) environment. Performed alert triage, event correlation, and initial incident investigation to identify malicious activities, suspicious behavior, and potential security threats. Investigated endpoint security alerts, malware detections, suspicious processes, and behavioral anomalies using CrowdStrike Falcon and Microsoft Defender for Endpoint. Conducted phishing email investigations by analyzing email headers, URLs, sender domains, IP addresses, and attachments using threat intelligence platforms. Performed log analysis across endpoints, servers, network devices, and security appliances to identify Indicators of Compromise (IOCs) and support security investigations. Utilized threat intelligence tools including VirusTotal, AbuseIPDB, URLScan.io, WHOIS, and MXToolbox for IOC validation, threat enrichment, and investigation. Created, managed, and tracked security incidents through ServiceNow while ensuring adherence to defined SLA requirements. Escalated critical and high-severity security incidents to senior SOC teams with detailed findings, impact assessment, and remediation recommendations. Assisted incident response activities including containment, mitigation, eradication support, and recovery validation for security incidents. Applied MITRE ATT&CK framework during incident analysis to map adversary tactics, techniques, and procedures (TTPs). Investigated security use cases including phishing attacks, malware detections, suspicious login activities, brute-force attempts, endpoint compromise alerts, and unauthorized access attempts. Collaborated with network, infrastructure, and security teams during major security incidents to ensure timely remediation and incident closure. Generated daily, weekly, and monthly SOC operational reports highlighting incident trends, alert statistics, and key security observations. Supported continuous improvement of SOC processes, monitoring procedures, and incident handling workflows.
Education
Graduated - Shivaji University
- 2023 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (34)
Click a skill to find developers with the same skill
