About
Google-certified cybersecurity Professional with hands-on experience in both Security Operations and Security Engineering, including threat detection, and automation using Chronicle SOAR. Proficient in using SIEM platforms like Google Chronicle and developing detection logic using YARA-L. Adept at creating scalable security solutions, fine-tuning detection use cases, and developing automated response workflows to reduce MTTR, drive risk management initiatives, and improve overall security posture.
Skills & Expertise (22)
Work Experience
Security Engineer
Netenrich Inc.
Present - Present
Engineered multi-pillar detection logic (Identity, Network, EDR, Cloud), securing customer infrastructure. Authored continuous threat intelligence-driven YARA-L rules within Google SecOps, tuning detection mechanisms to cut false positive rates by 40% and improve alert fidelity. Spearheaded hypothesis-based threat hunting campaigns and routine security assessments, analyzing network traffic (TCP/IP, DNS, HTTP/S) to uncover advanced adversary techniques. Automated incident response by engineering SOAR playbooks, including isolating compromised hosts and disabling compromised accounts, entity enrichment, phishing remediation. Architected an enterprise-wide workflow to purge confirmed malicious emails. Contributed to the refinement of SOC documentation, standard operating procedures (SOPs), accelerating MTTR by 25%.
MDR Analyst
Netenrich Inc.
Present - Present
Triaged and investigated 1,000+ monthly security events in a 24/7 rotational shift MDR SOC environment, serving as the first line of defense using enterprise SIEM and EDR platforms. Executed 50+ incident response operations, performing rapid endpoint containment via SOAR and escalating high-severity, complex incidents to leads and IR teams with detailed handover notes. Maintained a 99% SLA compliance rate for daily incident categorization, documenting all investigation steps, findings, and attack narratives within the incident management system. Collaborated with Detection Engineering to identify noisy alerts and misconfigurations, driving a 15% reduction in false positive volume. Collaborated with the Vulnerability Management team by analyzing SIEM and EDR telemetry to investigate and verify if disclosed vulnerabilities were actively exploited across Windows and Linux environments.
Education
B.Tech - Computer Science & Engineering - Vellore Institute of Technology
2019 - 2023 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Need Sponsorship
Relocation
Depends on Offer
Skills (22)
Click a skill to find developers with the same skill
