About
Cloud & Cyber Security Engineer with 5+ years’ experience in Soc, Azure Defender, and AWS Security Hub. Collaborated with clients on cloud compliance and security alerts. Skilled in PRISMA, and developing ABI dashboards. Implemented DevOps for streamlined deployments. I have supported customers in roles as a Security Analyst using SIEM tools such as IBM QRadar, and Sentinel where my responsibilities are as follows Expertise in Vulnerability Management, Cloud Security, Incident Management, Threat Analysis & Patch Management. Perform monthly & quarter Audits of cloud infrastructure for vulnerabilities and security practices and compliance standards like SOC2, NIST, GDPR, PCI-DSS. Understanding of CIA (Confidentiality, Integrity, Availability) protocols across multi-cloud environments. Adept at designing, implementing, and managing security infrastructures.
Skills & Expertise (22)
Work Experience
Security Analyst
SNB Softech Solutions
Mar 2026 - Present
Monitored and analyzed security alerts using SIEM tools to detect potential threats and incidents. Designed and implemented CI/CD pipelines to automate build, test, and deployment processes across environments. Experience working with NIST Cybersecurity Framework for identifying, protecting, detecting, responding, and recovering from security incidents. Automated infrastructure provisioning using Infrastructure as Code (IaC) tools such as ARM templates / Terraform. Managed build and release pipelines for deploying applications to Azure cloud environments. Developed and optimized KQL (Kusto Query Language) queries to detect suspicious activities and security incidents. Monitored network performance and traffic to identify latency, Packet loss, and Bottlenecks. Utilized EDR/XDR tools for endpoint threat detection and response. Conducted vulnerability assessments and coordinated remediation activities. Implemented Supports MDM & MAM (Device App management). Monitored and investigated security alerts and incidents using Microsoft Sentinel, including RBAC, MFA/Conditional Access, and insider risk management. Implemented Cloud Security Posture Management (CSPM) using tools like Prisma Cloud to identify and remediate cloud misconfigurations. Designed and secured cloud infrastructure (IaaS/PaaS) across Azure and AWS, ensuring proper network segmentation, access control, and secure configurations. Deployed and maintained Cloud Workload Protection Platforms (CWPP) for securing workloads, VMs, and containers.
Security Engineer II
cloudEQ Software India Pvt. Ltd.
Mar 2022 - Aug 2024
Monitoring all the sentinel alerts and incidents, RBAC, MFA/conditional access, and insider risk management. Strong Experience as SOC Analyst & securing Enterprise Environment using SIEM Technology. Performed Vulnerability Assessment and Penetration Testing (VAPT) on web applications, networks, and systems to identify security weaknesses. Scanning the environment using Nessus tool and finding the vulnerabilities based on the business units and sending the report to respective business owners. Designed and implemented secure cloud architectures across multi-cloud environments (Azure, AWS, GCP) aligning with Zero Trust and industry best practices. Performed cloud risk assessments and identified misconfigurations in compute, storage, networking, and IAM resources, providing remediation plans. Collaborated with cross-functional teams to investigate and contain cloud-related security incidents, leveraging SIEM tools like Microsoft Sentinel for analysis and response. Developed and maintained technical documentation and runbooks for cloud security processes, incident response, and architectural designs. Implemented centralized security management for firewalls, intrusion detection systems (IDS/IPS), and encryption within cloud environments. Monitored and Analyzed cloud logs and security events to identify vulnerabilities, threats, and policy violations using Microsoft Defender for Endpoint. Provided CIS Benchmarks to harden systems and cloud environments. Compliance with standards like ISO 27001, NIST. Working on P1, P2 Incidents and SC Tasks. Creating RCAs for P1/P2 tickets Investigating Incoming events using SOC tools. Monitoring all the endpoint logs and creating the use cases if required. Defender for Endpoint, Defender security compliance portal (DLP) and Microsoft identity portal. Designed and secured cloud infrastructure (IaaS/PaaS) across Azure and AWS, ensuring proper network segmentation, access control, and secure configuration. Worked on CSPM to reduce misconfigurations and stay within the pre-defined policies. Analyzing Spam/URL phishing/Spoofed emails and providing the necessary action accordingly. Experienced in Monitored and analyzed endpoint threats using CrowdStrike Falcon to detect and respond to malware, Ransomware, and suspicious activities. Risk Prioritization and Remediation by integrating with various testing tools like Azure Security Centre with Microsoft Defender. Log Management & testing to uncover anomalies using SIEM tools like IBM QRADA.
Cloud Security Engineer
Starlite Infotech Limited
Jan 2019 - Feb 2022
Managing AWS & AZURE accounts and built strong relationships with Technical Account Managers. Demonstrated proficiency in both cloud and on-premises computing environments. Configured Conducted periodic patch validation and re-scans to ensure vulnerabilities were successfully remediated. Used Docker to deploy applications in isolated and secure container environments, reducing attack surface. Worked Investigated security events, identified indicators of compromise (IOCs), and performed root cause analysis. Expertise in Configured and managed cloud security policies, alerts, and custom rules within Prisma Cloud. Used PowerShell to query event logs for detecting suspicious activities and anomalies. Automated response actions using AWS Lambda and CloudWatch Events for faster remediation. Configured and monitored Amazon Guard Duty for continuous threat detection across AWS environments. Analyzed Guard Duty findings to identify malicious activity, unauthorized access, and compromised resources. Investigated alerts such as unusual API calls, suspicious IP traffic, and credential compromise attempts. Worked with clients to effectively address and remediate security alerts, ensuring a secure cloud environment. Utilized PRISMA tool for comprehensive cloud security analysis and reporting. Handled client tickets & escalations on Service Now Board by implementing required strategies. Helped the organization in increasing secure score by 7%. Log monitoring and analysis for various devices such as Firewalls, Windows Servers, web servers…etc. Assist Configured resource limits (CPU, memory) to prevent denial-of-service (DoS) attacks from container abuse. Response times, analysis of incidents, and overall, SOC functions, generate alerts, and enhance endpoint protection policies for improved threat visibility.
Education
BSC Computer Science - NEFTU University
2011 - 2014 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Relocation
Depends on Offer
Skills (22)
Click a skill to find developers with the same skill
