About
Cybersecurity professional with 12+ years of experience in Security Operations, Incident Management, and Threat Analysis across enterprise-level environments. Expertise in Security Monitoring & SIEM tools with strong capabilities in real-time event correlation, log analysis, and incident triaging. Specialized in Data Loss Prevention (DLP) and email security, including phishing detection, malicious URL/IP analysis, and attachment investigation. Hands-on experience with enterprise security tools such as Cisco IronPort, Forcepoint (Websense), FireEye, Splunk, and ArcSight. Strong command over the incident response lifecycle and log analysis across security devices (firewalls, IDS/IPS, WAF, proxy, antivirus) ensuring timely resolution within SLA-driven SOC environments. Proven strengths in threat intelligence, vulnerability assessment & stakeholder reporting with SOC, CSIRT, and security teams to enhance overall security posture and operational efficiency.
Skills & Expertise (23)
Work Experience
Desktop Support Engineer
IT Source Technologies Pvt. Ltd.
Oct 2012 - May 2015
Managed and supported data center infrastructure, ensuring smooth operations, proactive maintenance & accurate network inventory documentation. Monitored and troubleshot network alerts and issues, including router configurations and L2 switch management, ensuring minimal downtime. Utilized tools such as CA Sysedge, CA Spectrum & e-Health to analyze network performance, generate utilization reports & optimize network resources. Coordinated with internal L2/L3 teams and external service providers (ISP/SP) to resolve network issues (link down, latency, packet loss), ensuring timely ticket resolution and stakeholder communication.
Information Security Consultant
Netconnect Global
May 2023 - Present
Monitored and analyzed security alerts and incidents using SIEM/SOAR tools to ensure timely detection and effective response. Performed triage and investigation of incidents reported via multiple channels, validating threats and determining impact. Collected and interpreted logs from firewalls, IDS/IPS, proxy servers, Cisco devices, WAF, antivirus, and email security systems. Conducted false positive/negative analysis to enhance detection accuracy and reduce alert fatigue. Managed end-to-end incident lifecycle through ITSM tools (e.g., ServiceNow), ensuring accurate documentation and tracking.
Project Engineer
Wipro Limited
May 2015 - Aug 2021
Monitored and analyzed DLP alerts using Triton and SIEM (ArcSight) to prevent data leakage across channels such as email, USB, and web uploads. Managed incident lifecycle by raising tickets in ServiceNow, performing triage and basic forensic analysis, and ensuring timely follow-up and closure. Monitored critical network devices including firewalls, IDS/IPS, routers, switches & Lancope, identifying suspicious traffic & reporting potential security breaches. Prepared daily, weekly & monthly security reports, conducted system health checks & developed documentation and SOPs to support security operations.
Associate Engineer
Atos Paladion Networks Private Limited
Feb 2022 - May 2023
Monitored, investigated, and analyzed security events in real time across multiple log sources, ensuring timely reporting and escalation of incidents. Analyzed and triaged security alerts within SLA timelines, proactively reviewing raw logs to identify potential threats and suspicious activities. Investigated malicious files, including executables and scripts detected via EDR tools, and performed in-depth threat analysis. Conducted phishing investigations by analyzing emails, domains & IP addresses using open-source tools, recommending appropriate blocking actions. Researched emerging threats and vulnerabilities, leveraging tools like Splunk for log analysis to assess potential impact on the environment. Prepared & delivered daily, weekly & monthly security reports covering threat insights, configuration changes, failed logins, AV status & network security events.
Senior Engineer – Service Engineering
Tata Communications Transformation Services (TCTS)
Aug 2021 - Feb 2022
Monitored and analyzed security alerts generated by Cisco StealthWatch, ensuring timely identification and response to potential threats. Managed incident lifecycle including service request creation via Suvidha Portal, follow-ups, and timely closure of incidents. Prepared and delivered daily, weekly, and monthly reports on device performance, security events, and overall system health for clients. Conducted system health checks and developed standard operating procedures (SOPs) and documentation to support consistent service operations.
Education
Bachelor of Engineering (B.E.) - Mumbai University
- 2011 · Afghanistan
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
