Abdul Uman

Experienced SOC Analyst with hands-on exposure in 24×7 MSSP environments, supporting enterprise clients across Oil & Gas, Manufacturing, and Corporate infrastructures. Skilled in end-to-end security monitoring, alert triage, investigation, RCA, and incident closure using Microsoft Sentinel, Microsoft Defender XDR, Splunk, and Elastic.

Strong experience in SIEM implementation, log onboarding, detection engineering, use-case tuning, and KQL-based threat hunting. Worked with SOAR playbooks and automation for alert enrichment, IOC handling, and response actions. Actively involved in phishing analysis, malware investigation, identity threats, and network security events.

Experienced in preparing daily, weekly, and monthly SOC reports, RCA documents, SOP creation, and maintaining operational documentation. Proven ability to coordinate with IT, Network, Endpoint, and Cloud teams for remediation and incident resolution, while ensuring SLA compliance and effective client communication.