Experience

Potomac Technologies

• India
• Software Development
• 1 - 100 Employee

• Senior Engineer

  • Apr 2022 - Present

  • Good Understanding of VPN and IP/TCP Models. • Performing Real-Time Monitoring, Investigation, Analysis, Reporting Escalation of Security Events from multiple log sources. • Administrating various incidents/security alerts triggered from various Security Controls. Security event analysis and intrusion detection by review and analysis of events generated by various components including IDS/IPS, firewalls, Routers, OS and various types of security devices. • Better understanding on Threat detection and Threat Hunting. • Creating reports for IT team on the terminated users for revoking access. • Identify Unknown threats and prevent attackers from evading existing security defences. Proactively research relevant threats, provide threat intelligence briefings to stake holders and produce reports and intelligence products. • Served as Analyst in SOC operations for real-time monitoring, analysing logs from various security/Industrial appliances. • Has knowledge of cyber threat intelligence principles to include IOC types. • We are also responsible for monitoring SOC mailbox, where it has been forwarded with suspicious/ spam/ phishing emails by the employees whenever they receive any suspicious attacks. • Maintain keen understanding of evolving internet threats to ensure the security of client networks. Contacting the customers directly in case of high priority incidents and helping the customer in the process of mitigating the attacks. • Creation of reports and dashboards and rules fine tuning. • Identify, investigate, or resolve security breaches and incidents. • Handling multiple customers globally analysing the customer networks for potential security attacks. • Support security incident response processes in the event of a security breach by providing incident reporting. • Good understanding about the vendor management which include approve/reject the vendor, adding for remediation and associated with vendors regularly. Show less



NTT Global Data Centers EMEA

• Germany
• IT Services and IT Consulting
• 100 - 200 Employee

• Cyber Security Analyst

  • Apr 2018 - Apr 2022

  I currently hold 5.2 years of Experience, out of which 3.3 years is into Cyber Security. Moreover my duties which include • Working on incidents and reviewing the alerts and doing detailed analysis on alerts in Splunk, and Rapid7. • Minimizing False positive alerts (Fine tuning process). • Performing different scans using Insight VM. • Generating monthly reports on priority based to the clients. • Attending Periodic calls & SIRP Meetings on High Severity issues. • Monitor and analyse the emails for threats malware and make recommendations for email rules to minimize malicious or undesirable emails. • Working on client assigned assignments • Pulling data, reports from VM. • Preparing reports on monthly basis and weekly basis to the clients • Assigning, Reporting and adding note while closure of tickets on Fresh desk. • Blocking ports, rules in firewall, defender. • Configure dashboards as per client requirement. • Advisory activity for actively exploited vulnerabilities. Show less



Cognizant

• United States
• IT Services and IT Consulting
• 700 & Above Employee

• Process Executive

  • Jan 2017 - Oct 2018

  Delivered business strategy and developed systems and procedures to improve the quality and efficiency of operations Supported regulatory compliance by overseeing all audits to ensure adherence to protocol. Delivered customized and effective solutions to clients that met unique demands. Worked on content classification for special content as per project requirement. • Root cause analysis for employees with low scores. • Performance improvement support for team. • Power point presentation for better understanding of concepts Show less