Gautam Agarwal

.Recently, I have completed MSc Cyber-security in August 2022. I am an experienced Cyber & Cloud Security professional with more than 5 years of proven track record in Security Operations. I am responsible for keeping information systems secure, determining access requirements, and planning and implementing information security programs, to help protect against cyber-crime threats, including malware, phishing, viruses, denial-of-service attacks, information warfare and hacking.

I also hold in-depth knowledge of SIEM operations, UEBA and Digital Forensics. I also have extensive knowledge on regulations like GDPR and HIPAA & controls based on frameworks like ITIL, ISO27001 and NIST. I also hold a CEH certification and also preparing to undertake ISO 27001 Lead Implementer, AZ-500: Microsoft Azure Security Technologies, and Certified Cloud Security Professional (CCSP) by (ISC)2 soon.

VISA Status – Graduate Route Visa (August 2024)

Monitor security information and event management (SIEM) systems to identify potential security incidents and threats.

• Triage security events and employ a methodical and coherent response to security incidents adopting playbooks where necessary.
• Liaising with the Engineering teams on incident response, vulnerability management and remediation actions.
• Create, follow and improve security incident playbooks to protect the enterprise.
• Experience using frameworks such as cyber kill chain and MITRE ATT&CK framework in a Detect and Respond environment.
• Applied knowledge of IAM, PAM, toxic combinations when reviewing roles and rights, securing privileged access and identity tooling.
• Root Cause Analysis (RCA) and remediation to determine the root cause of an incident and provide remediation recommendations.
• Experience with analyzing Emails, malware analysis, endpoint lateral movement detection methodologies and host forensic tools.
• Organize and communicate with external vendor to manage installs, upgrades and support of Varonis (DatAdvantage) • Experience with Cloud and M365 security technologies.
• Experience using and maintaining Endpoint Detection and Response technologies.
• Detailed knowledge and experience of relevant computer forensics, incident response and e-discovery tools, including password recovery, EDR, UEBA, honeypots, data loss prevention, SIEM, and Log Managers.

.▪ MSc Cyber-security, 2021 - 2022 Northumbria University London, UK. ▪ Bachelor of Science: Computer Science , 2012 - 2016 Dr. A.P. J Abdul Kalam Technical University - India ▪ Diploma in engineering (Computer Application) 2009-11 William Carey University - Indi