SOC Engineer
Cisco Systems - United Arab Emirates
Total years of experience :0 years, 7 Months
● Analyze and correlate logs to identify security incidents.
● Investigate deep on incidents escalated from L1, L2 to identify real time threats and attacks.
● Create and manage Correlation Searches, Notifications, Jobs.
● Fine tune correlation searches as per the requirement.
● Creating Daily, Monthly reports and Ad-hoc reports of various devices as per the requirement.
● Extract unparsed data from custom log files using Regular Expressions.
● Perform regular health check and ensure efficient operation of Splunk.
● Performs installation, upgradation of Arcsight components like Connectors, Loggers, ESM.
● Creating and finetuning Rules, Dashboard, Filters, Reports, Queries etc. in ArcSight.
● Device integration to Arcsight including Flex connector development.
● Creating Daily, Monthly reports and Ad-hoc reports of various devices as per the requirement.
● Expertise to analyze and correlate alerts raised by L1 Team
courses: Certified Courses 1.CISSP (ID - 649553) 2.MicroFocus Arcsight Advanced Analyst 4. CCNA (Cisco Certified Network Associate)
Year of passing:
Percentage: 59% 2. Higher Secondary Education (HSE) Year of passing:
courses: Certified Courses 1.CISSP (ID - 649553) 2.MicroFocus Arcsight Advanced Analyst 4. CCNA (Cisco Certified Network Associate)