Vinod Mashyal

Monitoring security incidents 24/7 from various SOC entrychannels such as SIEM(Splunk), shared email, IDS, IPS, Firewall. Analyze and investigate security events from various sources. Following SOP for examining security alerts and PICERL forevaluating incidents. Responding to alerts as per SLA and following up with clients ontickets if we get no response. Creation of tickets in JIRA ticketing tool if valid security incidentfound in Proactive Monitoring. Preparation of Security Advisory for clients on latest threats incybersecurity and details steps on how to overcome. Assist L1 analysts in case of help needed in handling the incident. Collaborate with Development team in creation and correction ofexisting and new use cases. Collaborating with inhouse SOC team during SLA breach meet andemerging threat meet to bring out desired outputs byaccomplishing individual and team goals. Worked with various clients as POC meeting their security demands and delivering high values as a team. (UK & USA) Understanding basics of Networking concepts and security infrastructure (Anti-virus, Anti-malware, Firewalls). Understanding of various security protocols like PCIDSS,NIST,HIPPA. Mapping of MITRE Framework with SIEM Tools. Monitor various security tools health and performance consistently. Full packet capture using Wireshark. Responsible for submission of reports to the next shift to look after the raised incident referred as shift handover.