رالف لاسرادو

•Working experience on product related to ""SIEM Solution - IBM QRadar""

•Involved in SOC Operations activities such as Network traffic monitoring, real time security event and log monitoring, log analysis, responsible for identifying and classifying attempted compromises to client networks through identification of suspect traffic.
•Performs real-time investigation, analysis on events logs using SIEM solution.
•Performed effective Fine tuning of - Rules, Generated various Reports based on the Use Cases defined and also worked on Real Vulnerabilities and Offense and correlated it with SIEM Solutions.
Worked on basic implementation, Policy & Rules, Reporting and Queries related to DB Security product - IBM Gaurdium at full production site.
• Assisting and coordinating with customers in their day to day Offense - Log Monitoring, Security Event, Report generation queries, Rules Fine Tuning, etc.
• Detailed reporting of the offenses and reporting customer with feedback and recommendation based on the SLA.
• Performed duties overseas at customer sites, implemented and correlated products with SIEM solution.
• Implemented and built process related products for smooth internal communication within SOC like “Manage Engine Service Portal - Ticketing system”, “Knowledge Base Transfer portal : DokuWiki”.

• Performed CIS Benchmark Standards for our organization to be compliance with ISO27001, tasks performed from scratch -
I. Built and Security Hardened Windows Server - with roles such as AD, DC, WSUS, Network Monitoring System(NMS) - SpiceWork, Manage engine Ticketing system, DokuWiki - Knowledge base tool.
II. Built and Security Hardened Ubuntu Server - with roles to run DokuWiki knowledge base tool

• Working experience and also basic knowledge on IT Security products like
---IBM Gaurdium - Database Monitoring solution
---BlueCoat Solera - Advanced Threat protection & resolution system
---FireEye - Threat forensic & Advanced Malware protection
---nCircle - Vulnerability Management, Security Performance
---Trend micro - Internet Content Security

• Travelled on Oversea projects to customer locations in Kingdom of Saudi Arabia.