About
Cybersecurity Analyst with 2.7+ years of experience in a 24x7 Security Operations Center (SOC) environment, specializing in SIEM monitoring, alert triage, incident response, threat detection, and vulnerability management. Hands-on expertise in IBM QRadar SIEM, Splunk, Tenable Nessus, and FortiGate security solutions. Experienced in log correlation, IOC analysis, MITRE ATT&CK mapping, CVE/CVSS risk scoring, and end-to-end incident lifecycle management while maintaining SLA compliance. Strong knowledge of network security monitoring, firewall log analysis, phishing investigation, and security framework alignment (NIST, ISO 27001).
Skills & Expertise (24)
Work Experience
Associate Analyst
DCM INFOTECH Pvt Ltd.
Jul 2023 - Present
Performed 24x7 security monitoring and alert triage in a SOC environment using IBM QRadar SIEM, analyzing 50+ security alerts per shift across firewalls, IDS/IPS, proxy, DNS, AV, load balancers, Windows, and Linux servers. Conducted log correlation and event analysis to detect potential security breaches and suspicious network traffic using AQL queries. Managed end-to-end incident lifecycle management including detection, investigation, incident prioritization (P1/P2/P3), root cause analysis (RCA), containment, eradication, recovery, and documentation while ensuring SLA compliance. Investigated phishing emails and malicious attachments using threat intelligence platforms and sandbox environments like ANY.RUN to identifying and blocking Indicators of Compromise (IOCs). Conducted malware, phishing, and network threat intelligence analysis using VirusTotal, Hybrid Analysis, URLScan, Cisco Talos, and MXToolbox, for IP/domain/hash/file reputation validation, leveraging Wireshark for packet inspection and Nmap for port scanning during incident investigations. Reduced false positives by 20% through SIEM filter optimization, correlation rule tuning, and log source validation, contributing to improved detection accuracy and reduced Mean Time to Respond (MTTR). Ensured SLA compliance by closing incidents within defined timelines and escalating high-severity (P1/P2) incidents as per escalation matrix. Conducted vulnerability assessments using Tenable Nessus, performing 30+ monthly and on-demand scans, analyzing CVEs, and prioritizing remediation based on CVSS scoring. Coordinated with Windows, Linux, and Network teams to support patch management and vulnerability remediation without business disruption. Performed SAST scans using Micro Focus Fortify Audit Workbench and delivered actionable remediation reports to development teams. Generated daily, weekly, and monthly SOC performance reports, supporting compliance and audit requirements aligned with security best practices and frameworks (NIST, ISO 27001).
Education
Graduation - Kakatiya University
- 2020 · Afghanistan
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Need Sponsorship
Relocation
Open to Relocation
