Having 7+ years of total expirence and 6+ years of relevent expirence in Security Domain
Experience
Senior Information security professional with more than 6.7 years of experience in Security domain (Security Operation Center - SOC).
Have gained strong knowledge on Various SIEM tools – Azure Sentinel, Splunk Enterprise, Q radar, Incident Response and Vulnerability Management, Cyber kill chain and Network Analysis with good analytical skills.
Strong Knowledge in spotting the possible phishing threat by analyzing and investigating each URL. Classify the URL’s and come up with type of Phishing attacks and technique used by phishers.
Handling Spam Attacks, Spam Mail Analysis, IOC, and Attachment Analysis • Aware of various security devices related to Antivirus, Proxy, Firewall, IPS, IDS etc.
Good understanding of different types of attacks such as DOS, DDOS, MimiKatz attack, SQL injection etc.
Ability of Log analysis from various security devices and web servers.
Malware Analysis on virtual platforms by both static and dynamic techniques (VirusTotal, Hybrid Analysis, IBM X Force Exchange).
Good knowledge of Networking concepts (TCP/IP, DLP, IPS, IDS) • Hands on Kusto Query Language (KQL) and Microsoft PowerBI • Microsoft certified: Security Operations Analyst (SC-200)
