SOC Analyst
Tata Consultancy Services
Total years of experience :2 years, 6 Months
Experienced Security Analyst with a strong background in safeguarding digital assets, ensuring comprehensive
protection from unauthorized access, and effectively mitigating risks. Following are the day-to-day tasks I
undertake.
Provides continuous monitoring and serves as an incident handler to identify, investigate, mitigate, and
respond to cybersecurity events and incidents impacting the network or endpoints.
Monitoring and analysis of security events to determine intrusion and malicious events.
Create processes or playbooks to make recommendations and promote the continuous improvement of
the capabilities of the Security Operations Center and to advance the security posture of the organization.
Mentors and guides freshers to assist in their professional development and ensure quality of work for
the team.
Perform incident response handling and management of forensic evidence, meeting SLAs and customer
experience metrics.
Manage and monitor SIEM and other tools for suspicious system activity and handle investigations using
proper forensic methodologies and regulations.
Monitors and maintains the company’s network email system; provides inputs on messaging initiatives,
maintains email security infrastructure, and deploys security controls to manage and mitigate risks.
Manage inbound and outbound security rules for email (filtering, whitelists, spam, etc.). Create and
maintain documentation for security procedures and protocols. Provide training and education for
employees on email security best practices.
Expertise in setting up and configuring Microsoft Defender for Endpoint, protecting diverse devices such
as Windows Servers, VDIs, and Linux Servers. Experience in troubleshooting and remediating high CPU
utilization alerts and anomaly situations caused by Defendeer.
Managing Infra vulnerabilities through Nexpose (running/scheduling scan, creating scan templates, asset
handling, asset grouping, sites, report templates, exception handling).
Assisting teams with vulnerability resolution, including providing assistance researching vulnerability
solutions and addressing false positives to reduce system workloads, performing confirmation scans
when appropriate, meeting regularly with the remediation team, and building reports to provide teams
with necessary data.
Generate the reports on a daily basis and execute the daily tasks. Review and advise on existing reports
and suggest reports that would solve current business use cases as well as factor the relevant metrics to
track the Vulnerability Management program.
Proficient in onboarding, offboarding, and managing different McAfee products. Actively participated in
threat handling and remediation activities, effectively neutralizing malware and other security risks.
Strong communication skills in presenting complex technical concepts to both technical and non-
technical audiences.
Completed