About
SOC Analyst with 3.8 years of experience in Security Operations, specializing in threat detection, incident response, and SIEM monitoring within 24x7 environments. Experienced in log analysis, event correlation, and threat investigation using Splunk, Microsoft Sentinel and Google chronicle. Specializing in SIEM monitoring, incident response, and security platform deployment & integration across enterprise environments. Proven expertise in Windows/Linux administration, network troubleshooting, and security solution configuration. Skilled in deploying and tuning SIEM, EDR, IAM, and Vulnerability Management solutions.
Skills & Expertise (27)
Work Experience
SOC Analyst (Threat Detection & Incident Response)
Visionet Systems Pvt. Ltd.
Jul 2022 - Present
Engineered and monitored security alerts using SIEM platforms such as Splunk, Microsoft Sentinel, and Google Security Operations, improving threat detection accuracy. Investigated and responded to security incidents across endpoints, networks, and cloud environments, ensuring timely containment and remediation. Led deployment and integration of SIEM and endpoint security solutions in cloud and on-prem environments. Onboarded multiple log sources including firewalls, proxies, Windows/Linux servers, and cloud services. Investigated and resolved network-related incidents involving DNS, VPN connectivity, firewall rules, and access control issues. Performed network traffic analysis and log monitoring using Splunk, Microsoft Sentinel, and QRadar to identify anomalies and performance bottlenecks. Performed advanced use-case tuning, alert optimization, and policy configuration to reduce false positives and improve detection accuracy. Analyzed network security logs (Firewall, Proxy, WAF) to detect anomalies and prevent threats. Utilized CrowdStrike Falcon EDR to detect, investigate, and respond to endpoint threats including malware, ransomware, and unauthorized access. Managed and troubleshot Windows and Linux servers for log collection and security monitoring. Supported 24/7 SOC operations, ensuring high availability and effective threat monitoring coverage. Documented the full incident lifecycle, including triage, investigation, escalation, and resolution, ensuring proper handoffs and reporting. Conducted in-depth security investigations leveraging logs from endpoint, network, and cloud sources. Collaborated with IT and security teams to remediate vulnerabilities and reduce organizational risk exposure. Performed vulnerability assessments, prioritizing critical risks and ensuring timely patching.
Education
Bachelor of Computer Science - MIT-WPU, Pune
- · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (27)
Click a skill to find developers with the same skill
