About
Actively contributing to security operations for SBI Card as a Security Analyst with 3.5+ years of experience in MSSP or hybrid SOC dedicated SOC environments, specializing in incident triage, alert monitoring, false positive reduction, and SLA adherence. Proficient in SIEM (ArcSight) and XDR/EDR technologies, with strong expertise in threat detection, investigation, and client communication across multi-tenant environments. Experienced in Digital Forensics, Malware Analysis, Email Security, Threat Hunting, and Memory Analysis, including IOC analysis and MITRE ATT&CK-based investigations. Skilled in detection engineering using YARA and Sigma rules to enhance detection capabilities.
Skills & Expertise (36)
Work Experience
Security Analyst
Sattrix Information Security Ltd
May 2024 - Present
Monitored and analyzed security events using SIEM (ArcSight) and XDR/EDR (Trend Micro Vision One) to perform proactive threat detection and improve overall detection accuracy. Conducted incident triage, investigation, and remediation, reducing response time and minimizing business impact across multiple client environments. Executed proactive threat hunting using threat intelligence and MITRE ATT&CK framework, identifying and mitigating previously undetected threats. Investigated Indicators of Compromise (IOCs) including IPs, domains, file hashes, and registry artifacts to support incident response and threat analysis. Managed client-specific security requirements, including use case tuning, report generation, and stakeholder communication to meet SLA and compliance needs. Developed custom dashboards and reports (weekly/monthly) aligned with client security posture and compliance requirements. Participated in bridge calls for high-severity security incidents, collaborating with cross-functional teams to contain and resolve threats effectively. Performed Root Cause Analysis (RCA) on security incidents, identifying attack patterns and implementing preventive controls to reduce recurrence. Performed log analysis and alert tuning, reducing false positives by 40% and improving detection accuracy across monitored systems.
Security Engineer
ICEICO Technologies Pvt. Ltd.
Oct 2022 - Apr 2024
Validated security alerts by investigating Indicators of Compromise (IOCs) such as IP addresses, domains, file hashes, and registry keys. Maintained comprehensive documentation of security assessments, findings, and remediation actions, ensuring compliance with industry standards and regulatory requirements. Conducted post-incident activities, including root cause analysis (RCA), incident reporting, and updating detection rules and signatures. Validated and triaged security alerts by analyzing Indicators of Compromise (IOCs) including IPs, domains, file hashes, and registry artifacts. Performed root cause analysis (RCA) and post-incident investigations; documented findings and enhanced detection rules and signatures. Maintained detailed incident documentation, ensuring compliance with security standards and regulatory requirements. Generated incident reports with risk assessment, impact analysis, and actionable remediation recommendations.
Education
Bachelor of Engineering (B.E.) - Rashtrasant Tukadoji Maharaj Nagpur University (RTMNU)
- · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Need Sponsorship
Relocation
Open to Relocation
Skills (36)
Click a skill to find developers with the same skill
