Presently working as a SOC Analyst at Telenor Pakistan. My primary responsibilities are but are not limited to:   +  Onboarding network, application, DB logs, etc., as per best practices and ensuring availability and troubleshooting in case of any issue.    +  To monitor, maintain and protect the organisation’s networks, system, and assets for and from malicious activity.    +  Assist the Business Security team in investigating and responding to various security threats, incidents, and investigations.    +  To respond rapidly and effectively to IT security incidents, professionally managing them, including evidence gathering and preservation.    +  Obtain and analyse system data, logs, and status to create and maintain automation tasks.    +  Evaluate new and emerging security products and technologies and serve as subject matter expert for decision-making, implementation, and integration.

Worked as a SOC Analyst at BluTech Consulting. My primary responsibilities are but are not limited to:   + Manage productive monitoring of IBM QRadar SIEM Multi-Domain Deployment.   + Real-time Security Log reviews and reporting of identified threats.   + Integration of Log Sources with SIEM.   + Create Use Cases as per the requirements of the clients.   + Analyse violations/offences to determine their root cause.   + Responsible for making Reference set and dashboard.   + Responsible for generating reports, checking health, and generating backups if needed.   + Collaborated with a remote security team.

Worked as a SOC Analyst at the KMBL. Where my main responsibilities were:
+ IBM QRadar SIEM Management+ QRadar Custom Rules/Offense Creation, Parser Writing, Property extraction, Tuning of Custom Rule Engine+ Real-time Security Log reviews and reporting of identified threats+ Expertise in Traffic Analysis based on Threat Intelligence+ Offense Management, Incident Detection and Response+ SIEM logs backup and management on primary and DR Site+ Hands-on Experience with Symantec Antivirus+ Daily, Weekly and Monthly reports+ Trend Micro EDR, XDR, and DSS-related tasks+ Monitor critical threats over the EDR+ Monitor security alerts over the XDR workbench+ Monitor XDR Observed Attack Techniques+ Investigate offences raised over the SIEM on XDR and EDR+ View server-related events over the TM DSS+ IBM Security SOAR

Responsible for implementation & design of the following products to the customers:

Symantec Endpoint Protection Manager
Trend Micro Deep Security
Trend Micro Apex One

Following are the projects done at ABM:

ZTBL Islamabad POC of Trend Micro Deep Security
Providing support to Zong CM-Pak related to SEPM
Passport Office POC of Symantec Endpoint Protection Manager
Wi-Tribe Symantec Messaging Gateway (SMG) upgradation
Quaid-I-Azam University POC of Trend Micro Apex One SaaS
Khushhali Microfinance Bank POC of Trend Micro Apex One SaaS
Pakistan Islamabad Stock Exchange Trend Micro Apex One & Apex Central deployment

Along with other IT-related jobs.