About
Dedicated SOC Analyst with 2.9 years of experience in Security Operations, specializing in SIEM monitoring, endpoint detection, and incident response. Hands-on expertise in Splunk, CrowdStrike Falcon EDR, ServiceNow, and Cortex XSOAR for security incident management and response automation. Strong practical exposure to OSINT tools for threat investigation and IOC validation. Experienced in log analysis, threat detection, alert triage, incident handling, and SOC workflow management in 24x7 environments. SIEM XPERT certified with solid understanding of MITRE ATT&CK framework and incident response lifecycle.
Skills & Expertise (31)
Work Experience
SOC Analyst L1
Galaxy Data Solutions Pvt. Ltd.
Jun 2023 - Present
Monitor and investigate security alerts using Splunk SIEM. Perform endpoint detection and response using CrowdStrike Falcon EDR. Manage security incidents using ServiceNow (Incident and Security Incident modules) ensuring SLA compliance. Hands-on experience with Cortex XSOAR for incident response playbooks, case management, and automation workflows. Perform initial triage of phishing, malware, brute-force, suspicious login, and privilege escalation alerts. Conduct OSINT-based investigations using tools such as VirusTotal, AbuseIPDB, Hybrid Analysis, and WHOIS lookup for IOC validation. Analyze Windows event logs, firewall logs, proxy logs, VPN logs, and authentication logs. Escalate validated incidents to L2/L3 teams with structured investigation notes and recommended containment actions. Perform IOC enrichment, threat intelligence correlation, and host isolation activities. Assist in alert tuning and false positive reduction activities.
Education
Bachelor of Engineering (Mechanical Engineering) - Shivaji University
- · Afghanistan
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Need Sponsorship
Relocation
Depends on Offer
