About
To associate with an innovative and vibrant organization, allowing me to put my competencies to the best use, to add value to the organization and contribute to my overall growth as an individual.
Skills & Expertise (26)
Work Experience
Security Analyst
TCS
Oct 2022 - Present
Proficient in Security Operations Center (SOC) monitoring, incident triage, and response to mitigate cybersecurity threats in real time. Skilled in analyzing and responding to security alerts from tools like Microsoft Sentinel, Defender, and Lacework for cloud and on-prem environments. Experienced in conducting phishing simulations and awareness campaigns using KnowBe4, improving employee resilience against social engineering attacks. Performing email threat and phishing analysis to identify malicious indicators, analyze headers, and classify reported emails. Hands-on experience with SIEM tools such as Splunk for real-time event monitoring, log correlation, and threat hunting. Leveraging Cortex XSOAR for automated incident response and orchestration, handling alerts from multiple sources including Proofpoint, Zscaler, O365, CrowdStrike, and Digital Guardian. Conducting Qualys vulnerability scans, analyzing reports, and coordinating with system owners for timely remediation and monthly patch updates. Working with Proofpoint TAP to analyze organizational phishing metrics and enhance mail security posture. Experienced in investigating and resolving email delivery issues, malware remediation, and endpoint security incidents involving CrowdStrike. Supporting HD (Help Desk) requests such as phishing ticket handling, Cequence alerts, and other user-reported security concerns. Proficient in Third-Party Risk Assessment processes, evaluating vendor security postures and ensuring compliance with organizational policies. Actively participating in cloud security monitoring and alert management, focusing on threat detection and compliance in multi-cloud environments. Conducting basic malware analysis to identify malicious payloads, file behavior, and potential compromises. Leading and presenting Cybersecurity Awareness Programs, driving organization-wide understanding of security best practices and policies. Supporting the Insider Threat Program by monitoring user activity through Digital Guardian DLP solutions and ensuring data protection during employee exit clearance processes.
Education
B.Tech in Computer Science and Engineering - K.L.University
- 2022 · Afghanistan
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Need Sponsorship
Relocation
Open to Relocation
