Muhammad Irfan

Cyber Security Analyst

Unity Solutions

Dec 2022 - Mar 2026 • 3 yrs 3 mos

Performed comprehensive enterprise infrastructure and Microsoft 365 assessments, identifying misconfigurations, DNS issues, and internal risks. Conducted vulnerability scanning and recommended corrective actions. Executed authorized penetration testing of systems and networks. Audited and monitored antivirus, XDR, MFA, and other security controls to ensure effectiveness and compliance. Supported internal audits, ensuring alignment with policies and regulatory requirements. Deployed, configured, and optimized Wazuh SIEM, Suricata IDS, endpoint security solutions, and firewall systems. Administered Active Directory, managed privileges, reviewed GPOs, and strengthened email and endpoint security controls. Conducted incident response, threat hunting, and root cause analysis of security incidents. Implemented containment and remediation strategies, including isolating affected systems, blocking malicious traffic, and removing malware. Conducted proactive threat hunting, developing detection use-cases and correlation rules to reduce dwell time. Led high-priority security investigations with deep analysis of logs, malware, and behavioral patterns. Participated in SOC tuning, red/blue/purple team exercises, and continuous process improvements. Delivered security awareness training and phishing simulations to employees. Mentored junior staff and maintained SOPs for cybersecurity operations. Hands-on experience with Burp Suite, Metasploit, Nmap, BloodHound, Wireshark, Python, and PowerShell scripting.