Submitting more applications increases your chances of landing a job.

Here’s how busy the average job seeker was last month:

Opportunities viewed

Applications submitted

Keep exploring and applying to maximize your chances!

Looking for employers with a proven track record of hiring women?

Click here to explore opportunities now!
We Value Your Feedback

You are invited to participate in a survey designed to help researchers understand how best to match workers to the types of jobs they are searching for

Would You Be Likely to Participate?

If selected, we will contact you via email with further instructions and details about your participation.

You will receive a $7 payout for answering the survey.


User unblocked successfully
Thank you. Your report has been submitted and will be reviewed shortly.
Umang Solanki, SIEM Architect

Umang Solanki

SIEM Architect·Ooredoo

Qatar

Bachelor's degree, Electronics & Communications

Work experience

Total years of experience: 14 years, 10 months

SIEM Architect

January 2019 - Present

Ooredoo

Doha, Qatar

January 2019 - Present

Leads the Design and Implementation of the LogRhythm SIEM
platform, encompassing core components such as Platform
Manager (PM), Data Processor (DP), Data Indexer (DX), and
Sysmon agents.
Successfully executed a complete SIEM migration from legacy
ArcSight to LogRhythm, ensuring seamless Data Flow, Optimized
Performance, and Minimal Downtime.
Integrated multiple advanced security solutions — including Attivo
BOTsink®, Nexthink Cloud, Anomali TIP, RSA ECAT, CloudSEK
XVigil, Cisco IronPort, F5 ASM Bot, IBM Guardium, FortiGate,
Zscaler, FireEye, Arbor DDoS, O6ce 365, McAfee Web Gateway,
and many more — to enhance centralized visibility and Threat
Correlation.
Engineered a High-Availability, Load-balanced SIEM architecture
(Sysmon, PM, DP) with Optimized Licensing, Refined MPE parsers,
and Grafana-driven Health Monitoring to enhance Performance,
Resiliency, and Investigation e6ciency.
Developed and maintain custom MPE parsing rules for Telco
Business applications, enabling deeper visibility and tailored
Detection Logic.
Regularly evaluate and onboard new detection use-cases aligned
with the MITRE ATT&CK Framework, followed by detection
simulation & validation.
Conduct Threat Hunting for IOCs and tune Suspicious Detections
into actionable SIEM alerts.
Integrated Kibana with LogRhythm for enhanced log analytics and
investigative capabilities; design custom dashboards, metrics, and
reports for various operational and management audiences.
Mentor SOC analysts on SIEM and investigations, and advise
management on platform growth, security strategy, and SOC
optimization.
Manage and optimize Cisco Stealthwatch (SNA) for Enterprise
Network Tra6c Monitoring, Anomaly Detection, and Proactive
Threat Identification.

Company industry:
Telecommunications

SOC Analyst Lead | QRadar SIEM

April 2018 - December 2018

Asian Development Bank

Pune, India

April 2018 - December 2018

Investigated QRadar oGenses and produced actionable incident
reports, identifying key risks and improvement opportunities.
Delivered rule fine-tuning recommendations to reduce false
positives, consistently achieving 5+ KPI recommendations per
week.
Led weekly Team Meetings and Monthly Governance calls with
clients, ensuring alignment on security posture and incident
response.
Mentored and developed Team Members, enhancing Technical
Skills and SOC operational eGectiveness.

Company industry:
Banking

Technology Analyst

December 2014 - March 2018

Infosys Ltd.

Pune, India

December 2014 - March 2018

Implemented a distributed Splunk SIEM architecture, deploying
Search Head, Indexer, Deployment Server, and Forwarders for
Centralized Log Collection and Analysis.
Developed and fine-tuned Dashboards and alerts to enhance
Incident Response (IR) team e6ciency and Threat Detection.
Deployed Trend Micro Deep Security across multiple OS platforms,
including Policy Configuration and Endpoint Protection
Management.
Designed and managed a Vulnerability Management program using
QualysGuard, performing monthly scans, reporting findings, and
guiding remediation eGorts.
Administered ArcSight platform, maintaining core components
(Logger, ESM, and connectors) for operational health and
reliability.

Company industry:
IT Services
Job role:
Information Technology

Sr. Network & Security Engineer

September 2011 - November 2014

Sophos

Ahmedabad, India

September 2011 - November 2014

Provided Cyberoam UTM Tech-support to Global Customers,
ensuring High-quality Service and Customer satisfaction.
Delivered Advanced Troubleshooting for installation, configuration,
network, and OS-level issues across Windows, Mac, and Unix
environments.
Achieved 75%+ First Day Resolution (FDR) on low-priority cases
and 85%+ CSAT consistently across consecutive quarters.
Handled Technical Escalations, serving as the Last Escalation Point
during Weekends & Night Shifts, achieving Team Response and
Resolution targets.
Mentored team members, conducted monthly training sessions,
and collaborated with development teams to implement Feature
Requests and resolve issues.

Company industry:
IT Services
Job role:
Information Technology

Education

Charotar Institute of Technology

January 2010

January 2010

Bachelor's degree, Electronics & Communications

India

Skills

CYBER SECURITY

Intermediate

ANALYTICS

Intermediate

DATA ENTRY

Intermediate

INCIDENT RESPONSE

Intermediate

LEADERSHIP

Intermediate

OPERATIONS

Intermediate

PHYSICAL SECURITY OPERATIONS

Intermediate

SECURITY INFORMATION AND EVENT MANAGEMENT SIEM

Intermediate

THREAT DETECTION

Intermediate

WEBSITE DEPLOYMENT

Intermediate

Languages

English

Native Speaker

Hindi

Native Speaker

Gujarati

Native Speaker

Training and Certifications

Certifications
CEH CCNA Splunk Certified User
Qatar National Cyber Drill Participation