4. ORGANIZATION : Kensium IT Solution.
DOMAIN : Application development & Security.
DESIGNATION : Security Engineer
EXPERIENCE : June 2016- Nov 2016
Key Responsibilities:
* Work on the Arcsight ESM SIEM providing operations support at the Security Operations Center.
* Monitors devices, application on HP service manager tool.
* Interacts with internal groups, assisting in the identification of root causes of problems.
* Regular review of process and support documentation where necessary.
* Handle the complete incident management framework cycle right from incident identification,
incident containment, performing root cause analysis, suggestion and implementation of preventive
and corrective controls and perform network analysis as needed on a case to case basis.
* Perform mitigation process for malicious traffic.
* Managing and Supporting Symantec Endpoint Protection(SEP)
* Performs real-time monitoring, investigation, analysis, reporting and escalations of security
events from multiple sources including events like Network intrusion detection, Host based
intrusion detection, Firewall logs, Proxy Logs, System logs applications and databases.
* Identify custom reporting requirements, translate requirements into SIM technical specifications
and implement SIM changes. ie creating filters, active channel and dashboards.
* Working on Mcafee for servers and desktop with DAT version.
* Monitoring the health and critical services running on servers (switches, firewalls, hosts).
* Preparing Security Advisory for the new vulnerabilities released and informing to the customers.
* Escalation and coordination with the respective team for all unresolved incidents.