Web version

Fatima Qureshi

Senior Cybersecurity Analyst / SOC Tier 2

Hyderabad, India • +91 99480 27361 • fatima.qureshi@hey.com • linkedin.com/in/fatima-qureshi-secops • github.com/fqureshi-sec

Portfolio: www.eliorexa.com/portfolio/cybersecurity-analyst-mid

Professional Summary

Cybersecurity analyst with 5 years in 24x7 SOC and threat-detection teams across BFSI and SaaS. Owns the full incident-response lifecycle — detection through containment, eradication and lessons-learned — and tunes SIEM content (Splunk, Microsoft Sentinel) that materially cuts dwell time. Runs vulnerability-management programs, supports ISO 27001 audits, and mentors Tier 1 analysts on triage quality and ATT&CK-driven hunting.

Skills

Detection & response: SIEM (Splunk, Microsoft Sentinel), EDR (CrowdStrike, Defender), Incident response, Threat hunting, MITRE ATT&CK, SOAR playbooks

Vulnerability & offensive: Vulnerability assessment, Penetration testing, Nessus / Qualys, Burp Suite, Patch & risk prioritization (CVSS)

Network & cloud: Firewalls (Palo Alto, Fortinet), IDS/IPS, AWS security (GuardDuty, IAM), DNS/HTTP analysis, Zeek

Governance & compliance: ISO 27001, NIST CSF, PCI-DSS, Risk assessment, Security awareness, Audit support

Core Competencies

SIEM · threat detection · vulnerability assessment · penetration testing · incident response · firewalls · ISO 27001 · SOC · MITRE ATT&CK · threat hunting · SOAR · NIST CSF

Work Experience

Cybersecurity Analyst (SOC Tier 2)Aegis FinServ

Apr 2022Present

Hyderabad

  • Lead incident response for a 24x7 SOC protecting 12,000 endpoints; reduced mean time to detect 41% (38 min → 22 min) by re-engineering Splunk correlation searches.
  • Resolved 300+ security incidents/year including 3 confirmed intrusions, containing the worst within 35 minutes and limiting blast radius to a single segment.
  • Built 26 SOAR playbooks in Splunk Phantom that auto-triage phishing and isolate hosts, saving the team ~18 analyst-hours/week.
  • Ran the vulnerability-management cycle across 900+ assets with Qualys, driving the critical-finding backlog down 73% in two quarters.
  • Mentored 4 Tier 1 analysts and authored the ATT&CK-aligned hunt playbook now used as the team standard.

Security Analyst (SOC Tier 1/2)Cobalt Cloud Systems

Jul 2020Mar 2022

Bengaluru

  • Monitored Microsoft Sentinel and CrowdStrike alerts for a SaaS platform, tuning rules that cut false positives 35% and lifted true-positive yield.
  • Conducted quarterly internal penetration tests and vulnerability assessments, reporting 120+ findings and verifying fixes in re-tests.
  • Hardened firewall and IAM policies during an ISO 27001 certification effort, closing 19 audit non-conformities ahead of the assessor visit.

Projects

DwellCut — detection engineering — −41% MTTD

Internal initiative to systematically lower attacker dwell time across the SOC.

  • Mapped detection coverage to MITRE ATT&CK and closed 28 technique gaps, raising coverage from 61% to 88%.

Tech: SIEM, Threat detection, MITRE ATT&CK

Interactive 3D Portfolio

WebGL portfolio built on Eliorexa, linked from this résumé.

  • Reactive three.js hero, scroll-driven case studies, lazy-loaded and reduced-motion safe — LCP 1.2s on mobile.

Tech: three.js, React, Performance

Education

B.E. Computer Science & Engineering

2020

Osmania University, Hyderabad

First Class with Distinction

Certifications

  • GIAC Certified Incident Handler (GCIH)GIAC (2023)
  • CompTIA CySA+CompTIA (2022)
  • ISO/IEC 27001 Lead ImplementerPECB (2023)