Information Security Analyst
Brio Technologies
Total des années d'expérience :8 years, 10 Mois
Roles and Responsibility
* Train and mentor Level 1 SOC Analysts.
* Managing integration, troubleshooting, fine tuning, creating rules, alerts and end to end handling of SOC tools - RSA Netwitness, RSA DLP, RSA Archer, Mcafee ePO, Mcafee DLP, Mcafee ATD, Cisco IronPort, Cisco ESA, WSA, Arbor DDoS, Arcos PIM
* Reviewing information security policies, incident response plans, change management,
vulnerability management, patch management policies, as they apply to various facets of the
infrastructure in scope.
* Investigating security incidents and classifying them based on criticality using CSIRP. Also, end to
end consulting for remediation of IT environment damages post an incident accompanied by
sanitization of the organization assets after an attack.
* Performing an early warnings within the organization when security alerts received from Saudi
CERT and US-CERT.
* Fine-tune SOC monitoring and incident management tools to reduce false positive and responding
to incidents.
* Performing network vulnerability assessments to provide a comprehensive view of the clients`
network weaknesses that are exposed to threats and planning patch management for different
applications.
* Communicate and follow-up with all levels of management on audit related issues.
* Preparation of recommendations for corrective action and risk mitigation for new modules w.r.t
ISMS policies.
* Preparation of Information Security awareness Videos, posters and Seminar Sessions for
Employees.
Roles and Responsibility
* 24x7 monitoring of security log events from various IT platforms, included but not limited to
Roles and Responsibility:
* Responsible for Installation/Configuration and Maintenance of system hardware and software.
* Ensure that the Hardware, Operating Systems, Software are adhere to Organizations Values.
* Assist teams with any technical issues in any phase of project management.
* Install new or re-build existing servers and configure hardware, services, directories and storage
in accordance with requirement.
* Manage users and system environment and access to resources by using Group Policy.
* Manage tasks associated with LAN, WAN and internet links.
* Managing Domain, users, user accounts, file access privilege, DHCP, DNS and Active Directory
services.
* Perform daily system monitoring and Verifying the integrity and availability of all hardware,
server resources, services, reviewing system and application logs.
* Perform daily backup operations and ensure all required files and system data are successfully
backed up.
* Applying OS patches and upgrades on regular basis and perform periodic performance reporting.
from
courses: and Trainings: * CEH V9– Certified Ethical Hacker (Certification Number: ECC48239737556) * Certified in CompTIA Security+. * Splunk Certified User. * Certified in CISCO Cyber Ops. * CCNP Sec– Cisco Certified Network Professional- Security (SITCS 300-207) * CCNA Sec – Cisco Certified Network Associate- Security * CCNA R&S– Cisco Certified Network Associate (Cisco ID Number: CSCO12895336) * Completed Training for Introduction to Cybersecurity from CISCO Networking Academy. * Presently undergoing training for IBM Qradar SIEM and Vulnerability Manager from IBM Security Academy. Other training & Honours: * Published a research paper in an International Journal