About
Results-driven Cybersecurity Analyst with over 3+ years of specialized experience in safeguarding critical systems. Expertise in SIEM management, threat intelligence, incident response, and security automation. Skilled in monitoring and analyzing security events using tools like Splunk, QRadar, and Azure Sentinel. Proficient in enhancing endpoint security with CrowdStrike, Symantec, McAfee, and Palo Alto Cortex XDR. Strong background in cloud security (AWS, Azure, GCP), firewall management (Palo Alto, Fortinet, Cisco ASA), and DLP solutions (Symantec DLP, Microsoft Purview). Experienced in Vulnerability Assessment and Penetration Testing (VAPT) to identify and mitigate security risks. Adept at automating security processes using Python, PowerShell, and Bash, applying frameworks like MITRE ATT&CK, and conducting vulnerability assessments and forensic investigations to bolster cybersecurity posture.
Skills & Expertise (59)
Work Experience
Security Engineer
USAA
Nov 2023 - Dec 2025
Conducted end-to-end security testing of web applications, identifying and mitigating critical vulnerabilities such as SQL injection, XSS, IDOR, CSRF, Broken Access Control, and Authentication Bypass. Performed assessments of Android and iOS applications, including static code analysis, reverse engineering, local data storage inspection, and runtime analysis using Frida, MobSF, and Burp Suite. Executed security assessments of APIs, focusing on REST and SOAP interfaces, identifying flaws in authorization logic, session management, rate limiting, and token-based authentication mechanisms like JWT, OAuth2, and SAML. Conducted network security testing using tools such as Nmap, Nessus, Metasploit, and Netcat, uncovering misconfigurations, exposed services, and privilege escalation paths. Delivered detailed security reports with CVSS scores, business impact analysis, risk ratings, and actionable remediation steps, aligned with OWASP, CWE, and NIST standards. Collaborated with development and DevOps teams to provide remediation support and secure coding guidance, reducing vulnerability recurrence rates. Engaged in retesting cycles to validate the effectiveness of applied fixes and ensured ongoing security compliance for clients. Produced compliance documentation and audit reports as part of the ongoing security assurance process. Participated in the security architecture review process to ensure alignment with industry best practices. Provided training and guidance to internal teams on emerging security threats and secure coding practices.
SOC Analyst
Cisco Systems
Apr 2022 - Oct 2023
Monitored and analyzed security events using QRadar and Azure Sentinel, detecting, investigating, and responding to potential threats. Provided Level 1 support for SIEM components and security tools like IDS/IPS, ensuring efficient operation and issue resolution. Developed and maintained security protocols, ensuring confidentiality, integrity, and availability of sensitive information. Conducted regular audits and tests to assess the effectiveness of information security measures and identify areas for improvement. Utilized advanced analytics tools to proactively identify cyber threats and enable early response actions. Created and managed security cases for suspicious activity, coordinating with the onsite SOC team for advanced investigation. Delivered technical support and problem-solving expertise to address security issues and maintain system performance. Applied ITIL best practices in incident management, enhancing response times and resolution rates. Communicated cybersecurity threats and defensive strategies to clients and stakeholders, promoting awareness and collaboration.
Education
Bachelor of Technology - Vignan Institute of Technology and Science
- 2021 · Afghanistan
