About
Having Around 4.5 Years of experience in IT having experience in SIEM, Information Security, and Cyber Security. Cyber Security Analyst with Proficient, Thorough Experience and good understanding of Information Technology. Experience in L1/L2 as a soc analyst along with I have experience in VAPT as well. Experienced in network monitoring, Identifying and analyzing suspicious Events and alerts. Having Exposure on various tool to perform analysis. Managed 24x7 SOC operations, including event monitoring, incident tracking, and real-time threat analysis. Monitored network and security components such as firewalls, routers, Windows/UNIX servers, and web applications. Analyzed and investigated security incidents, created cases for identified threats, and escalated to relevant teams for remediation. Generated comprehensive log monitoring reports to maintain compliance with strict SLAs. Conducted phishing investigations and took proactive actions in O365 Defender to contain email-based threats. Collaborated with Incident Response teams for detection, analysis, and remediation of cyberattacks. Supported the development of security strategies, policies, and process improvements. Demonstrated quick learning and adaptability in mastering new tools and enhancing team productivity.
Skills & Expertise (39)
Work Experience
Soc Analyst
INFOSOL TECHNOSOL
Mar 2021 - Present
Experienced in SIEM tools including Splunk and Microsoft Sentinel, with hands-on expertise in monitoring, investigation, analysis, reporting, and escalation of security events from multiple log sources. Incident Management: Monitored and responded to security incidents, ensuring data security and clearance procedures for employee offboarding. Threat Detection & Response: Led real-time incident response activities, managing escalations for brute-force attacks, phishing, malware, and APTs in compliance with client SLAs. SOC Optimization: Enhanced SOC operations, improving threat detection accuracy and reducing incident response times through process and tooling optimization. Microsoft Security Stack: Skilled in Azure Sentinel and Microsoft Defender for Endpoint (MDE) for endpoint protection, incident correlation, and automated remediation. Continuous Monitoring: Provided 24/7 monitoring support for client environments, proactively mitigating both known and emerging cyber threats. Phishing Resilience: Designed and implemented phishing resilience programs, significantly reducing enterprise-wide phishing success rates. Performed log analysis, email analysis, and generated detailed incident investigation reports. Analyzed SIEM alerts and created security incidents in ServiceNow, addressing alerts such as brute force, DDoS, phishing, malware infections, excessive login failures, and remote access detections.
Education
MSc Forensics - Osmania University
- · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
Skills (39)
Click a skill to find developers with the same skill
