Manjunath MD

 Monitoring & investigation of security incidents using Alien vault SIEM tool.  Investigation on security logs/events coming from various sources such as firewall, IPS/IDS, Windows server.  Analyzing & identifying false positive incidents. Bringing them into superior’s notice. Suggesting appropriate action needs to be taken to reduce false positive.  Performing analysis of Spam and Phishing mails and notify it with remediation.  With proper analysis creating incident tickets and report it to respective teams and meet the SLA requirements using ticketing tools like Optimus.  Building Reports on the behavior of the logs for the mentioned devices and configuring the alerts if anything is of that critical. ∙ Creating case for the suspicious issue and forwarding it to Onsite SOC team for further investigation.  Creation of reports, queries and filters for the events that are generated based on severity and priority of the events.  Documentation of alerts and Draft Shift Ha