Experienced IT professional with broad set of skills applicable across different roles in Security Operation Center (SOC) and Network Operations Center (NOC).
الخبرة
Experienced IT professional with broad set of skills applicable across different roles in Security Operation Center (SOC) and Network Operations Center (NOC).
Expert in handling and managing 24/7 day-to-day activities of SOC and NOC.
Demonstrated experience of developing and managing to Service Level Agreements (SLAs) and Key Performance Indicators (KPIs).
Experience in security technologies: Security information and event management (SIEM), IDS/IPS, Proxy, Web Application Firewall (WAF), Anti-Virus, Sandboxing, firewall etc.
Hands on experience in real-time logs monitoring, analysis, investigation, incident handling, reporting and escalations of security events and its mitigation.
Worked on Qradarfor collecting logs from multiple devices such as Firewalls, AV, IDS/IPS and other devices.
Log analysis, detection, analytical and problem-solving skills.
Documenting the tickets with all the action taken for the incident and update it on frequent basis with all the required comments and Root Cause Analysis (RCA).
Good Knowledge about EDR and vulnerability assessment tools.
Experience in Data Loss Prevention (DLP) incident handling using Symantec tool.
Hands on experience in Monitoring alerts generated from the DLP tool.
Incident management and follow up with concerned teams to resolve Incidents and escalate to senior management. Conduct daily review, triage and escalation of detected and user reported information security events.
Experience in Incident Management, problem management and change management.
التعليم
Bachelor of Engineering in Electronics & Telecommunication
