About
CEH and AZ-900 certified cybersecurity analyst skilled in SOC monitoring, incident response, threat hunting, configuring playbooks and logic apps to automate daily reports and automate incident response. Proficient in Microsoft Sentinel, Microsoft Defender, and Splunk, with hands-on experience in KQL-based use case creation and validation. Experienced in log analysis, alert triage, and fine-tuning detection rules to improve threat visibility and reduce false positives. Focused on strengthening detection capabilities and staying ahead of evolving threats.
Skills & Expertise (17)
Work Experience
Specialist
PWC India
Oct 2024 - Present
Utilized Azure Sentinel and Microsoft Defender to monitor threats and respond in real time, enhancing SOC detection and response. Conducted proactive threat hunting using custom queries and detection logic in Azure Sentinel. Built and optimized detection rules aligned with MITRE ATT&CK to boost visibility and reduce false positives. Helped automate reports and incident response by configuring playbooks and Logic Apps, improving SOC efficiency. Improved SOC workflows to strengthen security and reduce MTTD and MTTR. Monitored network/endpoint data, analyzed logs, and worked with teams to remediate issues and ensure compliance.
Intern
PWC India
Jan 2024 - Sep 2024
Investigated and triaged security alerts, ensuring timely escalation and resolution of incidents in line with SLA and business impact. Assisted in preparing monthly security reports by compiling incident metrics, alert trends, and response summaries for leadership review. Conducted basic log analysis across endpoints and network sources to identify anomalies under the guidance of senior analysts.
Education
B.Tech in Computer Science and Engineering - RCC Institute of Information Technology
2020 - 2024 · Afghanistan
