About
To utilize my technical skill with self motivated and positive approach with an organisation that will help to improve my professional and personal growth.
Skills & Expertise (38)
Work Experience
Information security Analyst L1
Tcs
08-2022 - Present
Working in the Security Operation Centre (24x7), Monitoring SOC events, Detecting and Preventing Intrusion attempts. Monitoring Real-time events using SIEM tools like Splunk, QRadar. Investigating endpoint alerts and suspicious behavior using EDR tools like CrowdStrike and Microsoft Defender enabling proactive threat hunting. Analyzing security logs from various sources including firewalls, IDS/IPS, WAF, proxy, antivirus, and database systems to identify threats, patterns, and potential security breaches. Performing phishing email analysis using Mimecast, detecting spoofing, malicious links, attachments, and ensuring user safety through detailed email header and sandbox examination. Responsible for Preparing the Root Cause Analysis Reports Based on the Analysis Filling the Daily Health Checklist Report Analyzing and Making Daily, Weekly and Monthly Reports Tracking the pending tickets and following up until closure. Managing and resolving incidents via ticketing tools like ServiceNow, ensuring accurate documentation, escalation, and closure of security events within defined SLAS. Conducting vulnerability assessments using Qualys, interpreting scan results, and coordinating with relevant teams for remediation of identified vulnerabilities. Investigating and analyzing malicious files, malware Files, and suspicious executables using internal tools and sandboxing techniques to determine threat impact. Collaborating with cross-functional teams for escalation and remediation, and providing actionable recommendations based on analysis of security incidents. Maintaining detailed documentation, including daily health checks, incident reports, and periodic dashboards/reports as per client requirements. Knowledge of MITRE ATT&CK framework and its application in threat detection and response. Creating technical documents as Knowledge base (SOP) for the SOC Team. Conducted comprehensive vulnerability assessments on servers, endpoints, and network devices using Nessus and Qualys scanning tools. Forwarding network vulnerabilities to penetration testing team for patch management. Creating MFA for the users and setting password vault to their browser.
Education
Bachelor degree - University of Mumbai
- 2022 · Afghanistan
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Depends on Offer
