Cyber Security Analyst
1.PROLIM Solutions India Pvt Ltd
مجموع سنوات الخبرة :6 years, 5 أشهر
(Client -Joyson Safety System Pvt Ltd)
Cyber Security Analyst (June 2023 - Present)
• Deep dive analysis of triggered alerts using SIEM, XSOAR.
• Hands on-experience in Integration of several devices like Firewall, IPS, Antivirus, etc... with SIEM tool
• Onboarding log sources using diferent collection methods.
• Develop content for SIEM by writing custom parsers, correlation rules, dashboards, report, and alert.
• Good knowledge of playbook creation using SOAR.
• Handling escalated alerts from L1 security analyst.
• Investigating incidents, remediation, tracking and follow up for the incident closure with concerned teams.
• Identifying root cause analysis of incidents/breaches.
• Experience in log monitoring, filtering, and report generation as per requirement.
• Review reports on daily basis for any type of malicious activity and follow-up with incident response team for remediation.
• Drafting shift handovers.
• Creating dashboards and setting alerts and sharing reports in Splunk enterprise.
Cyber Security Engineer with over 4+ years of experience in manage and
maintain security tools and technologies such as SIEM, EDR, and SOAR systems.
Demonstrates a strong working knowledge of security solutions, ensuring effective
protection and response to cyberattacks.
Experienced with SIEM tools including Microsoft Sentinel and Splunk ES, conducting indepth analysis of triggered alerts, and handling escalated alerts from L1 security
analysts
Create and fine-tune correlation rules, use cases, and alerts to detect potential security
threats and anomalies.
Possesses a solid understanding of network fundamentals and protocols, along with a
comprehensive knowledge of SOC processes such as monitoring, analysis, escalation,
incident documentation, and SLAs.
Proficient in integrating various security devices such as Firewalls, IPS, and Antivirus
with SIEM tools and adept at responding to security incidents to safeguard
organizations from cyber threats.