About
With 2+ years of experience in cybersecurity, including SOC, Threat Hunting, Threat Intelligence, and Malware Analysis, my goal is to use my skills to protect organizations from cyber threats. I want to keep their data safe and stay up-to-date with the latest cybersecurity techniques.
Skills & Expertise (24)
Work Experience
Information Security Analyst
NTT DATA Pvt Ltd
Feb 2026 - Present
Performed real-time monitoring of security events using SIEM tools, analyzing logs from endpoints, network devices, firewalls, IDS/IPS, and cloud environments to detect Indicators of Compromise (IOCs). Conducted in-depth incident analysis including log correlation, threat validation, and triage based on severity, leveraging threat intelligence feeds and behavioral analysis. Created and fine-tuned detection rules/use cases to reduce false positives and improve alert fidelity, optimizing SOC workflows and escalation efficiency. Utilized MISP for threat intelligence ingestion, IOC enrichment, correlation, and sharing across security tools to strengthen detection capabilities. Monitored, analyzed, and investigated security alerts/incidents using Cortex XSIAM and Microsoft Sentinel, performing triage, threat analysis, and escalation of security events. Correlated logs and security telemetry from multiple sources to identify suspicious activities, reduce false positives, and support incident response and remediation efforts.
Engineer
L&T Technology Services Pvt Ltd
Aug 2024 - Nov 2025
Having 2+ years relevant experience in Information Security and currently working as Security Analyst (SOC team). Hands on experience on Threat Analysis and Security Monitoring and operations. Experience on SIEM (Security Information and Event Management) tools like IBM QRadar. Investigating and creating case for the Security Threats, Threat analysis. Knowledge and experience with SIEM, DLP, and SOAR tools. Skilled in explaining security threats and creating mitigations. Proficient in IT infrastructure technologies and principles. Experienced in designing and implementing data loss controls (e.g., Microsoft Purview, Proofpoint). Hands-on experience with SIEM and SOAR platforms. Strong reporting skills, tailoring reports to show capacity and efficiency improvements. Experienced in malware analysis and have good knowledge in IR. Good knowledge in cloud cloud security and security compliance. Investigated security incidents and alerts generated by Cortex XDR, performed threat hunting, and contained/remediated threats.
Security Analyst
CyberNX Technologies Pvt Ltd
Apr 2023 - Mar 2024
Proactively monitored & investigated 12+ weekly security incidents and promptly raised tickets for timely client resolution. Analyzed 20-35 security incident data from Endpoint, EDR, XDR, Firewalls, IDS, & IPS daily. Fine-tuned 5+ SIEM rules reducing up to 8% of false positives alerts, improving the accuracy & efficiency of the SIEM & SOC analyst. Created 35+ client threat advisories by researching threats from blogs and feeds like Hacker News and Malwarebytes. Collecting IOCs (domains, hashes, IPs) from sources like AlienVault and Anomali and incorporated them into MISP. Creating new rules in KQL and EQL for use cases. Designed and implemented DLP controls using industry-standard tools such as Microsoft Purview and Proofpoint. Conducted risk assessments and developed strategies to mitigate data loss threats. Monitored and managed DLP systems to ensure data security and compliance with regulatory requirements. Responded to 20+ security incidents per month, leveraging CrowdStrike Falcon's threat intelligence and behavioral analytics to quickly identify, investigate and contain threats. Monitored, investigated, and responded to endpoint security alerts using CrowdStrike Falcon EDR to detect and mitigate potential threats, including malware, lateral movement, and suspicious process activity. Configured and managed Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) policies to enforce secure web access, application control, and user-based security policies. Implemented and managed Privileged Access Management (PAM) solutions to control, monitor, and secure privileged accounts, ensuring compliance and reducing insider threat risks.
Education
BBA - ICFAI BUSINESS SCHOOL- IBS- IFHE
- · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (24)
Click a skill to find developers with the same skill
