روهيت Franco

: Financial Organization, Abu Dhabi.
* Handling Cyber Security Attacks and providing a fully qualified
incident report to the customer using the workflow framework
followed in the organization.
* Ensuring that proper incident handling steps are carried out for
all the alerts and if requested will be providing a complete root
cause analysis (RCA) report with reference of Cyber kill chain
or MITRE ATT&CK framework.
* Weekly review of the use-case list configured in SIEM for the
devices Arbor (DDOS), WAF, IPS/IDS, Firewall, Proxy, Anti-Virus,
Forcepoint DLP and all the devices facing internet.
* Skilled at using SIEM tool for content management like (case
creation, report creation, rule creation, dashboards and lists and
ensuring that proper measures are in place in order to safeguard
the organization by creating a trend analysis based on the
offences and advisory received.
* Hands on experience on Forcepoint DLP, as an

Currently working in Abu Dhabi
CORE COMPETENCIES
* ArcSight.
* Qradar.
* Forcepoint DLP.
* FireEye.
* Cofense Inc.
* Flex Development.