About
Cybersecurity Professional with 4+ years of hands-on experience in SOC environments, specializing in threat detection, incident response, and GRC. Expert in managing SIEM platforms (Splunk, QRadar, Sentinel) and Endpoint Security (CrowdStrike, Microsoft Defender). Proven track record in reducing security incident response times (MTTR) by 25% and securing hybrid environments (AWS, Azure, On-prem). Skilled in vulnerability remediation and ensuring compliance with ISO 27001 and PCI DSS standards.
Skills & Expertise (40)
Work Experience
Security Operations Analyst
Tata Consultancy Services
Sep 2019 - Jul 2022
Monitored high-volume alert queues using Splunk and IBM QRadar; performed initial investigation for potential breaches, ensuring all tickets were resolved within agreed SLAs. Identified repetitive false positives and collaborated with SIEM engineers to refine correlation rules, directly improving detection accuracy and reducing analyst fatigue. Partnered with Network and Desktop Support teams to isolate infected hosts and revoke compromised credentials, preventing lateral movement of malware across the enterprise. Monitored Active Directory logs for anomalous sign-in patterns and unauthorized access; supported RBAC audits to ensure strict adherence to Least Privilege principles. Translated technical scan data into high-level tracking reports for senior management to prioritize remediation of critical infrastructure risks.
Cybersecurity Consultant
Staples Canada
Aug 2024 - Present
Monitor and analyze network traffic using Splunk and Microsoft Sentinel; perform deep-dive TCP/IP analysis via Wireshark, contributing to a 20% improvement in Mean Time to Detect (MTTD). Manage and optimize endpoint protection (CrowdStrike Falcon, Microsoft Defender for Endpoint), reducing malware-related tickets by 30% through custom IOC tuning and policy hardening. Lead credentialed scans using Nessus and Qualys; integrate findings into ServiceNow to coordinate remediation, ensuring 100% adherence to ISO 27001 audit controls. Secure AWS and Azure environments through IAM protocols and SSO; utilize Azure Security Center for continuous monitoring, identifying and remediating high-risk cloud misconfigurations within defined SLAs. Support internal penetration testing and phishing simulation programs; deliver training that reduced employee click-rates on simulated social engineering attacks by 40%.
Education
MS Informatics (Information Security Management) - Northeastern University
2022 - 2024 · Afghanistan
Bachelor of Technology (Electronics & Communication) - Sastra University
2015 - 2019 · Afghanistan
Certifications
Google Cybersecurity Professional Certificate
· 2025
Certified Ethical Hacker (CEH)
EC-Council · 2019
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (40)
Click a skill to find developers with the same skill
