About
Security Data Ops Engineer specializing in SIEM engineering, parser development, and detection rule design across hybrid enterprise environments. Currently working on the Bloo Security Platform (formerly DNIF), contributing to log onboarding, data normalization, and detection content development across endpoint, cloud, and network telemetry. Strong foundation in Windows infrastructure from prior experience at TCS, enabling deep understanding of host and identity-based logging.
Skills & Expertise (14)
Work Experience
Security Data Ops Engineer
Netmonastery NSPL (formerly DNIF, now Bloo)
Jun 2024 - Present
Managed and processed security telemetry across endpoint, firewall, cloud, and application log sources. Normalized heterogeneous security events into structured SIEM schemas to ensure reliable detection execution and event consistency. Developed and refined detection rules targeting authentication abuse, endpoint anomalies, firewall violations, and suspicious cloud activity. Designed dashboards and visualizations improving SOC visibility and investigation workflows. Identified ingestion gaps and resolved schema inconsistencies impacting telemetry quality and alert reliability. Built structured extraction logic for proprietary enterprise applications using Regex and YAML-based configurations. Maintained compatibility with evolving vendor log formats and improved telemetry standardization across customer environments. Performed malware analysis and generated attack telemetry in controlled environments to validate detections and improve alert effectiveness. Validated in-house security product functionality from a SOC operations perspective and reported behavioral inconsistencies to engineering teams.
System Administrator
Tata Consultancy Services (TCS)
Oct 2021 - Jan 2023
Administered Windows Server environments (2008–2019) in production infrastructure. Managed Active Directory, DNS, DHCP, and Group Policy configurations. Deployed security patches via SCCM to maintain patch compliance. Reviewed Windows Event Logs to support operational incident analysis. Managed Hyper-V virtualization and failover clustering. Assisted in incident troubleshooting and root cause analysis.
Education
PG Diploma in Cyber Security & Forensics (PG-DCSF) - Centre for Development & Advanced Computing (CDAC)
2023 - 2024 · Afghanistan
Bachelor of Engineering in Mechanical Engineering - Mumbai University
2018 - 2021 · Afghanistan
Diploma in Mechanical Engineering - MSBTE, Maharashtra
2015 - 2018 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (14)
Click a skill to find developers with the same skill
