Senior SOC Analyst

• Sep 2021 - Present

Cyber Security Analyst

• Sep 2018 - Jan 2022

Information Security Role in maintaining the security of Client Network. Monitoring and Administration in SIEM, Monitoring the client network through multiple Security devices Information Security Role in maintaining the security of Client Network. Monitoring and Administration in SIEM, Monitoring the client network through multiple Security devices

Engineer - SIRT

• Nov 2016 - Aug 2018

Incident Response Team. In this we mainly gather information about security incident and response Incident Response Team. In this we mainly gather information about security incident and response

SOC Analyst

• Nov 2015 - Oct 2016

The following are the primary responsibilities: • Implementation and deployment AlienVault SIEM for all our clients. • To assist clients for deploying AlienVault USM server in their environment. • Enabling Ossec HIDS agents on servers and workstations. • Enable logging on various devices and servers. • Forward the logs to AlienVault sensor and troubleshooting during the same process. • Written custom parsers (AlienVault plugins) for unsupported devices, servers, application logs or as per the client's specific requirements. • Analyzed the client's requirements and accordingly wrote use cases (correlations) and deploy on AlienVault server to generate alarms. • Security Events and Logs monitoring, analysis and optimization. • Monitoring, Collection and Reporting of data from various sources and Storing of Security Events, Logs and Reports. • Monitor System and Network Inspection tools, SIEM, IDS/IPS etc. and identify potential threats affecting the client environment and generate client specific threat reports. • Providing updates for various Correlation Directives and various other signature and non-signature based updates for the Security Infrastructure. • Timely escalation of detected threats or abnormalities to the respective team and providing the possible resolution available. • Specializing in Network Architecture, Behavioral Analysis, SIEM and Event Correlation. • Shouldering a versatile Managed Security Program, enabling advanced threat visibility, 24/7. • Generating advanced custom reports to meet customer requirements using SQL Queries and Reporting Tools. Show less

Trainee Engineer

• Aug 2014 - Oct 2015

Helps in network cabling, structured cabling, routers and switches Helps in network cabling, structured cabling, routers and switches

Engineer

• Jun 2014 - Jul 2014

Worked as a computer engineer helps in troubleshooting of networks inside the organization. Worked as a computer engineer helps in troubleshooting of networks inside the organization.