Open to opportunities

Muhammad Naveed

@muhammadnaveed5

Message

Experienced SOC Analyst specializing in threat detection, incident response, and SIEM tuning.

Pakistan

Message

What I'm looking for

I seek a hands-on SOC leadership role where I can lead incident response, improve SIEM detections, collaborate with CERTs, and mentor teams in a proactive, security-first culture.

I am an experienced SOC Analyst with six years in cybersecurity, focused on incident detection, response, and threat hunting. I hold CTI, CySA+, and CHFI certifications and have strong hands-on experience with SIEM platforms such as QRadar, ELK, and Wazuh.

I have served in leadership and liaison roles—coordinating with outsourced 24/7 SOC vendors, national CERTs, and cross-functional teams to reduce false positives, prioritize incidents, and improve response workflows. I have implemented SIEM rule tuning, developed incident response playbooks, and produced dashboards and reports for senior management.

My technical strengths include intrusion detection, forensic analysis, patch management, NAC, and external attack surface monitoring using tools like DarkOwl and CTM360. I am committed to proactive cyber defense, vendor performance oversight, and continuous improvement of security operations.

Experience

Work history, roles, and key accomplishments

Current

Assistant Director Cybersecurity

Current

Capital Development Authority

Feb 2025 - Present (11 months)

Serve as primary liaison to a 24/7 outsourced SOC, validating alerts, reducing false positives, coordinating threat hunting and investigations, and leading internal incident containment, eradication and recovery while ensuring SLA compliance.

SIEM Tuning Incident Response Threat Hunting Vendor Management QRadar ELK Wazuh

IT Officer SOC Analyst

Pakistan Telecom Authority

Jan 2024 - Dec 2024 (11 months)

Managed full lifecycle of cybersecurity incidents using SIEM and EPP, conducted proactive monitoring and investigations, and disseminated threat intelligence across telecom stakeholders to improve national preparedness.

Wazuh SIEM Threat Intelligence DarkOwl Log Analysis

Assistant Director SOC Analyst

National Database and Registration Authority

Jun 2022 - Jan 2024 (1 year 7 months)

Monitored and analyzed logs in an ELK-based SIEM to detect and triage incidents, led threat hunting and playbook development, produced management reports, and built dashboards for real-time security visualization.

Runzero ELK SIEM Threat Hunting Incident Response Playbook Development RunZero Nessus Dashboarding

Assistant Manager Cyber Security

Naval Headquarters

Apr 2019 - Jun 2022 (3 years 2 months)

Implemented and operated IBM QRadar stack and supporting security tools, conducted real-time monitoring and forensic analysis, managed endpoint patching with BigFix, and trained staff in cybersecurity best practices.

QRadar Malware Analysis Incident Response Vulnerability Management