About
Over 8.5 years of total experience on various platforms VMware and Windows. As a SOC Analyst with 4+ years of experience in threat detection, incident response, and vulnerability assessment. Skilled in using SIEM tools like Microsoft Sentinel and Splunk to monitor security events and mitigate risks. Proven track record of reducing incident response times and enhancing overall network security. Skilled in Cyber Security SIEM tools, VMware and Windows platforms. Self-motivated, multi-tasking team player with excellent interpersonal skills. Maintaining better Coordination between the team and team members.
Skills & Expertise (22)
Work Experience
SOC Analyst Tier-1
VIS Networks Pvt Ltd
Oct 2024 - Present
Experience in security monitoring and analysis, incident response. Utilize the SIEM for researching and creating alerts, dashboards and reporting. Skill in detecting host and network-based intrusions via IPS & IDR. Analyzing Phishing and Spam related mails using header analysis. Monitoring log streaming continually address for investigations. Experience with investigate, identifying threats, and incident response. Initiating escalation procedures if triggers and threshold are met. Maintaining documentation of logic, rules, policies, and procedures. Experience on Office365 into email security to overcome phishing attacks. Experience of Security Information Event Management systems (Sentinel, Splunk). Good experience in SIEM tools like Microsoft Sentinel. Good experience on DHCP, DNS, Networking devices, MITRE ATT&CK framework. Taking ownership highly technical investigations. Preparing daily and weekly dashboard on the security threats. Good experience of SOC process & Email Analysis. Identifying information security incidents.
SOC Analyst
VIS Networks Pvt Ltd
Aug 2024 - Present
Having good experience in SOC Monitoring, with security operations including Incident management through SIEM. Experience on working in 24x7 operations of SOC team, offering log monitoring, security information management. Experience in Security Monitoring and Operations. Experience on SIEM (Security Information and Event Management) tools like Microsoft Azure sentinel and Splunk. Creating the tickets in ticketing tool. Working on Email security tools like Phisher & Proof Point. Worked with core teams to investigate the false and true positive alerts. Responsible for following all the steps in incident response process. Filling the Daily health checklist. Created SOP RUNBOOKS for various alerts. Preparing daily, weekly and monthly reports as per client requirements. Remaining effective during stressful situations and during incidents. Working effectively with other teams to address and mitigate threats. Good Network experience (Protocols, Ports, Router, Switch). Maintaining documentation of logic, rules, policies, and procedures. Provided customers with accurate information on incidents and logs related. Working with other security and IT teams, such as incident response or network operations.
Lab engineer
Avaya India Pvt Ltd
Sep 2019 - Apr 2022
Installation, Configuration and Maintenance of VMware Servers. Creating and managing VMware cluster. Enabling HA and DRS in Cluster. Creating Virtual Machine Templates, Snapshots, Cloning and Patching. Live migration of VMs and their storage files with Storage Vmotion. Creating Resource Pools and Setting limits and priorities on CPU, RAM. Implemented Group policy to manage to Users, Computers, and Servers. Installing and configuring ESXi servers Through ILO. Updating ESXi Servers using VMware Update Manager. Managing and resolving server and user level issues. Understand & maintaining all the Security standard of customer. Basic understanding in Networking and Storage concepts. Creating Domain, Local users and troubleshooting Domain Login Problems. Troubleshooting the problems with the help of Event Logs. Converting High Availability feature, DRS features. management: Creation, Deletion, Assigning rights/privileges to users. Managing and resolving server and user level issues. Create regular reports for Management requirements. Coordination with Server managers/other teams. Create and manage VM templates and snapshots. Hot and cold migration on host to host and storage based. Regularly check vCenter for active alarms and host hardware issues. Creating incidents on critical alerts and updated to service portals. Ensure VMware Tools are up-to-date for all virtual machines.
Education
No education history added yet
Certifications
VMware Certified Technical Associate
· 2024
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Need Sponsorship
Relocation
Open to Relocation
Skills (22)
Click a skill to find developers with the same skill
