About
Security Analyst with over 5 years of advancing experience in cybersecurity, specializing in risk assessment and compliance analysis across diverse business systems. Adept at identifying vulnerabilities and regulatory gaps, and crafting long-term security strategies that strengthen organizational resilience and safeguard critical assets.
Skills & Expertise (30)
Work Experience
Security Analyst
Accenture
Dec 2020 - Present
Monitored security alerts and incidents using various security tools, primarily Splunk as a SIEM system, to identify potential threats and anomalies in real time. Experience in working on host isolation and advanced threat analysis using EDR Microsoft Defender 365. Strong experience in managing Endpoint Agents over Windows and Linux operating systems, Active Directory integrations, Windows Event Logs. Assisted in the implementation and maintenance of security technologies and tools, such as IDS/IPS, firewalls, SIEM, and encryption mechanisms, to safeguard critical data and systems. Monitor various security tools for security events and triage security incidents. Experience in attack simulation; conducted over 10 phishing simulations to raise user awareness of phishing. Managing reporting of AV Migration and compliance report. Experience in handling technical administration and troubleshooting activities related to M365 Defender suite. Experience in adding and deploying a client onboarding configuration file, Configuration Manager can monitor deployment status and Microsoft Defender ATP agent health. Experience in the Rapid7 vulnerability management tool to perform vulnerability scanning and reporting. Prepare Endpoint Compliance reports and initiate the remediation activities wherever required. Experienced in whitelisting and blacklisting of web applications using MCAS. Experienced in managing active directory using azure sentinel. Experienced in analyzing the azure audit logs and signin logs of the user, checking the interactive & Non interactive sigins of the azure account related domains. Utilized network traffic analysis tools and packet capture techniques to identify and investigate network-based threats and suspicious activities. Experience in automated web application vulnerability scanners. Developed custom attack surface reduction rules and endpoint detection and response policies to proactively block ransomware, phishing attempts, and other threats. Experience in providing end-to-end support to enterprise counterparts, identifying the root cause of sophisticated enterprise initiatives with endpoint security solutions Microsoft Defender Atp.
Education
B.TECH: E.E.E - Vishnu Institute of Technology
2013 - 2017 · Afghanistan