Keywords
Security Information and Event Management
Microsoft Azure
Computer Security
Log Analysis
Nmap
Open Source Technology
Vulnerability Management
Nessus
Splunk
Network Server
Skills
Security Operations, Log analysis, Azure, Nessus, Servers, NMAP, Open-Source Tools, Security Information and Event Management, SIEM, Vulnerability management, Splunk
Project history
03/2023
-
03/2023
Security Analyst
IBM
04/2019
-
12/2021
Security Analyst
Capgemini; SIEM Technologies : IBM-QRadar, SOAR- IBM Resilient
Previous Experience:
* Name of Organization : Capgemini
* Work Location : Mumbai
* Position : Security Analyst
* SIEM Technologies : IBM-QRadar, SOAR- IBM Resilient.
* Tenure : 19th Apr 2019 - 6th Dec 2021.
Description:
Worked for 19+ global clients in a single project where the activities consists of 24/7 monitoring
alerts, Responding to Adhoc requests, Creating and publishing Daily-weekly-biweekly-Monthly Reports
to clients. Sound Knowledge on Service Now ITSM module as a ticketing tool.
Project Roles and Responsibilities:
* Working in Security Operation Center (24x7), monitoring Real-Time Security threats, detecting
and preventing the Intrusion attempts.
* Performing Detailed scans for all the log sources/ Servers using Nessus Vulnerability
management tool.
* Monitoring real-time alerts/Offenses using SIEM tools like IBM QRadar, SOAR- IBM Resilient &
XSoar-Palo Alto.
* Monitoring, analyzing and responding to infrastructure threats and vulnerabilities.
* Ad hoc report for different clients and scheduled reports as per requirements.
* Performing Historical searches and analyze the logs to find the suspicious activities.
* Performing detail Log analysis in-case of any threat identified and providing Remediation
action.
* Preparing daily, weekly, Biweekly and monthly reports as per client requirements.
* Frequent checks on threat Intelligence for IOC's and adding to Reference sets in SIEM tools
for Real-time threat monitoring.
* Creating Rules and building blocks for events, Reports, Dashboards over SIEM Console.
* Performing Detailed Health Check for SIEM tool on daily basis.
* Name of Organization : Capgemini
* Work Location : Mumbai
* Position : Security Analyst
* SIEM Technologies : IBM-QRadar, SOAR- IBM Resilient.
* Tenure : 19th Apr 2019 - 6th Dec 2021.
Description:
Worked for 19+ global clients in a single project where the activities consists of 24/7 monitoring
alerts, Responding to Adhoc requests, Creating and publishing Daily-weekly-biweekly-Monthly Reports
to clients. Sound Knowledge on Service Now ITSM module as a ticketing tool.
Project Roles and Responsibilities:
* Working in Security Operation Center (24x7), monitoring Real-Time Security threats, detecting
and preventing the Intrusion attempts.
* Performing Detailed scans for all the log sources/ Servers using Nessus Vulnerability
management tool.
* Monitoring real-time alerts/Offenses using SIEM tools like IBM QRadar, SOAR- IBM Resilient &
XSoar-Palo Alto.
* Monitoring, analyzing and responding to infrastructure threats and vulnerabilities.
* Ad hoc report for different clients and scheduled reports as per requirements.
* Performing Historical searches and analyze the logs to find the suspicious activities.
* Performing detail Log analysis in-case of any threat identified and providing Remediation
action.
* Preparing daily, weekly, Biweekly and monthly reports as per client requirements.
* Frequent checks on threat Intelligence for IOC's and adding to Reference sets in SIEM tools
for Real-time threat monitoring.
* Creating Rules and building blocks for events, Reports, Dashboards over SIEM Console.
* Performing Detailed Health Check for SIEM tool on daily basis.
Local Availability
Only available for remote work