About
I am an experienced professional with 6.6 years in that I have around 4 years of experience in Information Security and Cybersecurity, specializing in Security Incident and Event Management (SIEM). My background includes extensive work with SIEM tools such as ArcSight and Qradar, and I am adept in monitoring security incidents, analyzing threats, and providing effective incident response in a 24×7 SOC environment.
Skills & Expertise (29)
Work Experience
SOC Analyst
ADP Pvt Ltd
Jan 2022 - Present
Worked in a 24/7 Security Operations Center (SOC) environment, monitoring and analyzing real-time security events and alerts. Monitored and managed security alerts using SIEM tools such as Microsoft ArcSight, IBM QRadar, Splunk and other monitoring platforms. Performed initial triage, investigation, and validation of potential security incidents to determine scope and impact. Collaborated with the Threat Intelligence Team for proactive threat hunting and identification of emerging threats. Assisted in incident response, including containment, remediation, and recovery activities. Maintained accurate incident logs, security documentation, and reports as per SOC SOPs. Followed SOC Standard Operating Procedures (SOPs) for consistent and efficient incident handling. Monitored and analyzed email security alerts (phishing, spam, malware) to prevent cyber threats. Conducted basic malware analysis, URL/domain reputation checks, and sandbox testing of suspicious files. Collaborated with IT Infrastructure Teams to validate and resolve endpoint and network security alerts. Provided security awareness insights and best-practice recommendations to end-users. Generated daily, weekly, and monthly security reports covering incidents, trends, and threat analysis. Analyzed virus alerts and endpoint security events; coordinated remediation with client services teams. Performed isolated testing of suspicious URLs, attachments, and executables to prevent malware spread. Correlated logs from web servers, applications, databases, IDS/IPS, and other sources to detect anomalies. Contributed to developing and improving incident response playbooks, boosting SOC efficiency by 25%.
Test Engineer
iMED Global
Mar 2016 - May 2017
Worked with cross-functional teams (Incident Response, Threat Intel, Compliance) to support coordinated operations. Delivered executive-level threat intelligence reports to aid senior leadership in security decision-making. Led the incident response for a high-severity phishing campaign, mitigating business impact and preventing data exfiltration.
Associate Software Test Engineer
Accenture under the payroll of Talent Sprint
Jul 2014 - Mar 2016
Contributed to 24/7 SOC operations, managing over 200 security incidents monthly. Operational Efficiency Improvement, Developed 15 incident playbooks, enhancing process. Enhanced Detection Capabilities, Reduced false positives by 30% through alert tuning in Splunk SIEM.
Education
B.Sc(Computers) - Chaitanya Degree & PG College
- 2014 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (29)
Click a skill to find developers with the same skill
