About
Result driven SOC Analyst with 3+ years of hands-on experience in managing and securing enterprise environments. Proficient in utilizing advanced tools such as Splunk, CrowdStrike Falcon to proactively identify and mitigate security threats. Demonstrated expertise in incident response, and continuous improvement of security postures.
Skills & Expertise (20)
Work Experience
SOC Analyst
Cognitive Techware Pvt. Ltd.
Apr 2023 - Present
Investigate security alerts and incidents using Splunk, perform deep log analysis, and identify potential threats or malicious activities. Conducted detailed investigation of security incidents escalated by L1 SOC, validated true positives, performed root cause analysis, and guided containment and remediation efforts. Analyze and validate security incidents, perform root cause analysis, and escalate confirmed threats to L3 or Incident Response teams as per defined procedures. Conduct proactive hunting using frameworks like MITRE ATT&CK to identify hidden threats and map attacker techniques to improve detection capability. Create and fine-tune correlation rules and use cases in SIEM to reduce false positives and improve detection accuracy. Experience in 24*7 monitoring security events and alerts using SIEM tools, analyzing threats, and initiating incident response and effective management of cybersecurity incidents with clear communication. Monitored and analyzed 25–30+ security alerts daily in a 24×7 SOC using SIEM, ensuring rapid threat identification. Consistently achieved 98% SLA compliance for alert triage, prioritization, and timely closure. Advanced support for log management and SIEM solutions. Applied MITRE ATT&CK techniques for event mapping, enhancing the organization’s threat detection framework. Ability to apply cybersecurity and privacy principles to organizational requirements. I am proficient in intrusion detection techniques and interpreting security tool data. Effective management of cybersecurity incidents with clear communication. Opening of Incident ticket in customer ITSM tool for non-investigated alerts. Addition of new use cases based on new global threats and inputs from customers. Documentation of Use cases including conditions, detection logic. Response to service requests for additional logs, filtering and aggregation of log data. Hands-on experience in security configurations, reporting, investigations, and identifying errors. Advanced support for log management and SIEM solutions.
Education
B.Tech – Computer Science & Engineering - Dr. APJ Abdul Kalam Technical University
- 2020 · Afghanistan
Intermediate – PCM - Pickett Inter College
- 2014 · Afghanistan
High School - Pickett Inter College
- 2012 · Afghanistan
Certifications
Fortinet Certified Fundamentals in Cybersecurity
Fortinet · 2026
Crowdstrike University in Incident Responder
Crowdstrike University · 2026
Crowdstrike University in Falcon Administrator
Crowdstrike University · 2026
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (20)
Click a skill to find developers with the same skill
