About
Cybersecurity Professional possessing specialized experience in Security Operations and Incident Response at a major technology group (ANI Technologies/Ola Group), including 24/7 L1 support, incident lifecycle management, detection engineering, and SOC governance. Proficient in a wide array of technical skills, including ethical hacking (Metasploit, Wireshark), application security (OWASP Top 10), Skilled in SIEM integration (Sumo Logic, Splunk), DLP rule implementation, and Cloud Security (AWS), supported by a Master’s in Cyber Security from Pace University (minor in operations). Experienced in defining security processes, performing threat monitoring, coordinating compliance audits (PCI-DSS, CIBIL, FinMA), and driving security automation. Adept at reducing operational costs and latency through strategic tool configuration and automation. Certified with CompTIA Security+.
Skills & Expertise (27)
Work Experience
Cybersecurity Intern
4Fin Financial Technologies
May 2022 - Jun 2022
Defined employee cyber security processes including password development, technology access, & policies governing encryption, server security, access management, vulnerability management, & incident management. Performed Incident response and threat monitoring & drafted subsequent incident reports for CISO, highlighting root cause of incidents, steps taken to mitigate impact, & recommendations to improve intrusion detection. Liaised with AWS consultants to setup and secure initial infrastructure on AWS, implementing automation for logging, monitoring, Intrusion detection, and generating relevant and actionable Cloud Security alerts using AWS Lambda, resulting in approximately 50% manhours saved in threat monitoring. Co-ordinated with external audit teams to gather and provide compliance proofs for CIBIL and FinMA, demonstrating experience with security audit processes and standards.
Security Operations Engineer 2
ANI Technologies (Ola Group)
Jul 2025 - Present
Supported 24/7 L1 Team to keep the quality of triage of security alerts and incident response at high standards. Supported and managed complete incident lifecycle, including escalations to management and collaboration with respective teams. Ensured active security attacks/incidents were promptly contained and performed necessary steps to ensure the attacker/threat was completely removed from the affected systems. Integrated SIEM and developed Detection Engineering for changing the risk profile of the OLA Group. Defined and reviewed existing playbooks to improve the efficiency of SOC Monitoring and Incident Response. Reviewed configured alerts, tools configurations, threat intelligence, and security data; made improvements to optimize costs and reduce latency on generated alerts. Supported Proactive Threat Management Initiative by conducting various distributed activities.
Security Operations Engineer
ANI Technologies (Ola Group)
Jan 2025 - Jul 2025
Provided 24/7 first response to security alerts from SIEM, IDS, DLP, XDR, WAF, employees, external sources, and government advisories, ensuring round-the-clock vigilance. Assessed and prioritized security alerts to swiftly identify and respond to active attacks or potential threats such as Phishing Attacks, Malware Attacks, Credential Leaks, Data Breaches, Application & Cloud Attacks, etc. Conducted comprehensive analysis using a blend of threat, human, and organizational intelligence to pinpoint attackers, their methods, and impacted areas. Promptly escalated verified threats to the Incident Response team for immediate action, ensuring no delay in threat containment.
Cybersecurity Intern
4Fin Financial Technologies
Apr 2020 - Aug 2021
Defined employee cyber security processes including password development, technology access, & policies governing encryption, server security, access management, vulnerability management, & incident management. Performed Incident response and threat monitoring & drafted subsequent incident reports for CISO, highlighting root cause of incidents, steps taken to mitigate impact, & recommendations to improve intrusion detection. Liaised with AWS consultants to setup and secure initial infrastructure on AWS, implementing automation for logging, monitoring, Intrusion detection, and generating relevant and actionable Cloud Security alerts using AWS Lambda, resulting in approximately 50% manhours saved in threat monitoring. Co-ordinated with external audit teams to gather and provide compliance proofs for CIBIL and FinMA, demonstrating experience with security audit processes and standards.
Education
Master of Science (MS) in Cyber Security - Pace University, Seidenberg School of Computer Science & Information Systems
- 2023 · Afghanistan
Bachelor of Technology (BTech) in Mechatronics - Manipal Institute of Technology
- 2020 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Relocation
Open to Relocation
Skills (27)
Click a skill to find developers with the same skill
