About
Results-driven Senior SOC Analyst with 5.5+ years of experience in Security Operations Centers (SOC) across enterprise and MSSP environments. Specialized in threat detection, incident response, threat hunting, and SIEM engineering. Hands-on expertise in Microsoft Sentinel, Defender XDR, EDR/XDR platforms, email security, and DLP technologies. Proven ability to analyze complex security events, identify advanced threats, and respond to incidents aligned with SLA and MITRE ATT&CK; framework. Strong experience in SIEM rule creation, use case development, log correlation, and security automation, along with mentoring junior analysts and improving SOC processes.
Skills & Expertise (42)
Work Experience
Senior SOC Analyst (L2)
Buchanan Technologies
Nov 2021 - Jan 2026
Led incident response activities across endpoint, network, cloud, and email security domains. Monitored and triaged P1/P2/P3 alerts using SIEM and EDR tools ensuring rapid response. Conducted advanced threat analysis and threat hunting using IOCs, TTPs, and behavioral patterns. Investigated phishing campaigns, BEC attacks, and email-based threats using Proofpoint and MDO. Performed deep log analysis (Windows, Linux, Firewall, Proxy, Cloud logs). Designed and implemented SIEM correlation rules and use cases to improve detection coverage. Reduced false positives by tuning detection rules and alert thresholds. Executed endpoint containment, isolation, and remediation actions using EDR tools. Worked with MITRE ATT&CK; framework to map threats and improve detection strategies. Collaborated with IT and security teams for incident remediation and root cause analysis. Created and maintained runbooks, playbooks, and SOC documentation. Used ServiceNow for incident tracking, SLA management, and reporting. Mentored L1 analysts and performed quality reviews of investigations.
SOC Analyst (L1)
Luminaire Technologies
Aug 2020 - Nov 2021
Performed 24/7 real-time monitoring of security alerts across multiple clients. Analyzed logs from SIEM, firewalls, endpoints, and email gateways. Investigated suspicious activities and identified malicious IPs, domains, and file hashes. Supported incident triage, escalation, and documentation. Assisted in containment and recovery actions for security incidents. Generated detailed incident reports and forensic findings.
Education
Bachelor’s Degree - HNBG University
- 2018 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
Skills (42)
Click a skill to find developers with the same skill
