About
Experienced Security Analyst with 4+ years of working in Incident Response, SIEM, IDS/IPS, Firewall Log Analysis, Monitor System and Network Inspection tools, Administering and monitoring security profiles, and Threat analysis. Skilled in investigating Security Incidents and coordinating with teams to contain a compromise situation, finding the root cause for incidents, and making/suggesting changes to improve Security measures in an organization.
Skills & Expertise (31)
Work Experience
Security Analyst - SOC
Richard Fleischman Center of Excellence Private Limited
Mar 2025 - Jan 2026
Worked in a 24x7 Security Operations Center (SOC) environment to monitor and respond to security incidents. Monitored, analyzed, and correlated security alerts from multiple sources such as SIEM and EDR tools. Investigated security events independently by following standard operating procedures to contain and remediate threats. Documented all incident activities and provided regular status updates to leadership through internal ticketing systems. Collaborated with SOC analysts to maintain situational awareness and ensure effective incident handling. Supported network mapping and vulnerability scanning activities as required. Responded to client security-related queries and provided technical support. Recognized and investigated intrusion attempts and differentiate false positives from true intrusion attempts. Familiar with malware analysis and cyber threat intelligence. Assisted in improving SOC processes and operational workflows. Participated in Critical incidents as part of an Incident Response Team. Contributed to team communication and knowledge sharing for continuous improvement. Monitor and respond to security events in SOC environment.
Security Analyst - SOC
Evolent healthcare Private Limited
Jun 2024 - Sep 2024
Monitored and investigated security alerts using SIEM platforms such as Splunk and Microsoft Sentinel. Analyzed and correlated logs from multiple security devices to identify potential threats. Developed and maintained SOC dashboards, reports, alerts, and optimized searches to improve detection efficiency. Conducted proactive threat monitoring and identified true security incidents by eliminating false positives. Actively participated in incident response activities, including handling P1 and P2 critical incidents. Supported malware analysis and leveraged cyber threat intelligence to detect emerging threats. Worked with security tools including CrowdStrike EDR, Zscaler, Azure Identity Protection, and Windows/Linux environments to contain and remediate incidents.
Security Analyst - SOC
WIPRO
Sep 2021 - Jun 2024
Performing Real-Time Monitoring, Investigation, Analysis, Reporting and Escalations of Security Events from Multiple log sources. Log monitoring and Log analysis performed on solutions like Crowdstrike EDR and providing incident response. Co-ordinate extensively with networking teams to maintain and establish communication to Remote Splunk and Elastic Collectors/Processors. Conduct a thorough investigation of security events generated by our detection mechanisms such as SIEM, IDS/IPS, EDR, DLP, Email Gateway. Performing process analysis, containing and remediating the threats using EDR like CrowdStrike and MS defender. Contacting customers directly in case of high priority incidents and helping them in the process of mitigating attacks. Experience of working in 24x7 operations of SOC team, offering log monitoring, security information management, global threat monitoring. Creation of reports and dashboards and rules fine tuning.
Education
Bachelor of Engineering - Shri Madwa Vadhiraja Institute of Technology and Management
- 2021 · Afghanistan
Engineering - STJ Polytechnic
- 2018 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
Skills (31)
Click a skill to find developers with the same skill
