Cyber Security Analyst
Central Forensic Science Laboratory (Central Government)
Total years of experience :2 years, 7 Months
• The report generation following various attack scenarios, incident response, and risk assessment utilizing a range of analytical methods and instruments.
• Collaborate with a distributed team to detect and resolve information security incidents.
• Prioritize and resolve problems in a timely manner using analytical thinking, critical thinking, and following the incident management lifecycle.
• Perform analysis of Packet Capture (PCAP) files, domains/URLs, and emails to determine indicator legitimacy using Wireshark and OSINT tools such as Virus Total, and MX Toolbox Detection & Response (ED) systems and Proofpoint (TAP & TRAP), reporting findings in real time.
• Analyse information security posture of next-gen firewalls, domain name systems (DNS) and virtual private networks (VPNs) using Open-Source Intelligence (OSINT) tools Fortinet, Proof Point.
• Analyse malware infections and phishing.
• Currently enrolled in CEH certification course provided by EC Council.
• Lead a team in setting up security infrastructure and site security plan and helped in establishing security procedures for green-field projects.
• Monitored and analysed log events generated from a variety of platforms including IDS/IPS, Firewalls, WAFs, Endpoint Security and application logs.
• Configured the Web application assessment tools like Burp suite, and map and OWASP ZAP.
• Responded to crisis or urgent situations within the network to mitigate immediate and potential cyber threats Vulnerability Assessment & Penetration Testing of Networks and Network architecture redesigning with security as primary point of consideration.
• Performed complete security audit (both black box and white box) for clients.
• Analysed information security events, including threat model development, and resulting security risk analysis of systems.
• Utilized Ethical Hacking procedures to ensure proper handling of false positives.
• Participate in data security incident response, malware analysis, and the development of corrective and preventive activities.
URL removed due to policy violation. Please contact support for further information.