Prince Dubey

• Lead CSIRT operations managing detection, triage, containment, eradication, recovery,
and post-incident reviews.
• Develop and maintain Incident Response Plan aligned with NIST and ISO 27001.
• Design SIEM detection rules improving coverage and reducing false positives.
• Conduct Root Cause Analysis (RCA) and implement long-term remediation strategies.
• Mentor analysts and support audits, compliance, and security initiatives.
• Worked on GCP incident Response Plan and playbooks.
• Reported user for policy violation and informed insider threat.

• Led high-severity incident response including phishing, wire fraud, and privilege misuse
cases.
• Directed vendor compromise investigations and coordinated cross-functional
remediation.
• Supervised L1 analysts ensuring SOC playbook adherence and quality assurance.
• Supported vulnerability management through CVE review and remediation tracking.

• Monitored and triaged alerts using IBM QRadar, Splunk, Cortex XSOAR, and Phantom.
• Executed containment and recovery using CrowdStrike, Cylance, and Microsoft
Defender.
• Performed phishing investigations, IOC blocking, and alert fine-tuning.
• Supported GDPR compliance reporting and vulnerability tracking.

• Operated in 24/7 SOC environment monitoring enterprise infrastructure.
• Performed threat hunting, UEBA investigations, and DDoS/brute-force analysis.
• Improved response SLAs and enhanced SOC documentation standards.