About
Results-driven Cybersecurity professional with 4+ years of experience in Security Operations, Threat Monitoring, Incident Response, and Log Analysis across enterprise and SaaS environments. Proficient in SIEM (Splunk), endpoint and network security monitoring in EDR (CrowdStrike): Supported in Deploying endpoint protection, performed behavioral analysis, and mitigated advanced persistent threats (APTs) and detection of suspicious activities with a strong focus on reducing MTTD and improving incident handling quality. Experienced in cyber threat analysis, identifying false positives, escalating true incidents with detailed RCA, and supporting security and privacy needs aligned with GDPR/HIPAA-style requirements for global clients. Known for clear communication, strong collaboration with cross-functional teams, and high-quality documentation including incident reports, runbooks, and knowledge base articles. Self-starter with a continuous learning mindset, actively expanding skills in security and privacy concepts, automation, and emerging threats in the global cybersecurity landscape.
Skills & Expertise (12)
Work Experience
Security Consultant
Ernst & Young (EY) LLP
Nov 2023 - Present
Manage the SOC (Security Operations Centre) for fortune 500 clients specializing in 11 different industries and with over 4000+ log sources with an average EPS of 30K ensuring to keep the MTTD (Mean time to Detect) at a minimum. Exposure to security and privacy requirements aligned with GDPR and HIPAA, including data protection, access control and logging for regulated environments. Expert in SIEM (Splunk) with Power User Certification: Configured advanced dashboards, correlated logs, and accelerated threat hunting for real-time incident detection. Expertise in analyzing, triggering, and correlating alerts to identify potential threats and safeguard the environment. Mentor analysts on log analysis on all levels from L1-L2 ensuring effective security monitoring sand Incident management. Proficient in EDR (CrowdStrike): Supported in Deploying endpoint protection, performed behavioral analysis, and mitigated advanced persistent threats (APTs). Analyze logs from various sources (firewalls, IDS/IPS, servers, etc.) to identify and understand advanced threats with a view to secure the environment. Specialized in Email Security (IronScales, Check Point Harmony): Analyzed phishing campaigns, enforced SPF/DKIM/DMARC, and worked with engineering team to automated remediation workflows. Leveraged UEBA tools for anomaly detection and user behavior analytics to identify insider threats and lateral movement. MITRE ATT&CK mapping (EC-Council SCA Certified) to triage incidents, prioritize responses, and map adversary tactics for proactive defense. Contribute during major incidents and facilitate better collaboration between Incident Responders, Threat Hunters, Analysts and Infrastructure teams. Supported security monitoring and incident response for SaaS-based applications used by global clients in travel, retail and manufacturing, focusing on data privacy and access control.
SOC Analyst
CompuCom CSI system Pvt Ltd
Jul 2021 - May 2023
Actively monitor security threats and risks involving customers' infrastructure. Digging into a potential incident to determine if it is a real attack or a false positive. Analyzing security tools, logs & Data with the help of SEIM tool Splunk. Maintaining security records of monitoring & incident response activities. Perform cyber threat analysis and respond to threat requests & Malware detection Analysis. Creating, updating & managing different types of Alerts. Creating and updating SOPs for KB/Runbook.
Sr. Service Desk Technician
CompuCom CSI system Pvt Ltd
Feb 2020 - Jul 2021
Answered queries by telephone or self-service ticket to support internal and outside computer hardware, software, network, application access and telecommunications systems. Providing technical support and assisting with all hardware and software related issues, Handling the corporate customers via calls and Emails. Coordinate with different teams on a bridge to narrow down the issues. Analyzed and resolved IT problems to achieve complete resolution for customers with minimal productivity loss.
Associate Technical Support
Tech Mahindra
Dec 2018 - Feb 2020
Assisted customers over chat and email on a sales force tool to isolate the hardware or Operating system related issues on their system. Windows, OS Administration, Installation of Operating Systems, Packages and Software on desktop. Offering technical support onsite, via phone and mail services to internal and external customers. Escalate cases to Engineering team for a hot fix.
Education
Master’s in Computers Application - Kalinga University
2020 - 2022 · Afghanistan
BSC (CS) - Durg University
2015 - 2018 · Afghanistan
Certifications
Splunk Core Certified Power User
· 2025
Certified SOC Analyst (CSA)
EC Council · 2024
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Depends on Offer