About
Having 2 years of experience in security practices, I have effectively managed the organization's Security Operations Center (SOC) and Cyber Security Incident Response Team. I monitor security events across the network, implementing proactive measures to prevent breaches and ensure compliance with industry standards. My role involves analyzing phishing and spam emails, as well as alerts related to risky sign-ins and impossible time travel incidents reported by users. Additionally, I actively track global outbreak alerts, taking necessary actions to protect the organization from emerging threats. I oversee 24/7 monitoring of security tools and SIEM systems, conducting malware analysis on suspicious files and collaborating with antivirus vendors to ensure timely updates of threat signatures. My comprehensive knowledge of security practices enables me to maintain a secure operational environment while enhancing the organization's overall cybersecurity posture.
Skills & Expertise (27)
Work Experience
Security Analyst
HCLTECH
Mar 2024 - Present
Monitoring 24x7 for Security Alerts and targeted phishing sites by using SIEM tool with the help of technologies such as Abuse mailbox and similar sounding domains. Analyze security alerts triggered by Microsoft Sentinel, distinguishing true positives from false positives. After analyzing alert raising incident in ticketing tool for true positive incidents and follow up the team up to incident closure. Manage the lifecycle of security incidents using ServiceNow (SNOW) from incident creation to resolution. Oversee all stages of incident management, ensuring accurate recording, prioritization, and adherence to Service Level Agreements (SLAs).
Education
BTech - Lenora Engineering College
- 2024 · Afghanistan
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Need Sponsorship
Relocation
Open to Relocation
