SHANKAR SURYA BURRA
About Candidate
| Having 2.3 Years of hands on IT Experience in securing the network environment. • Experience in Information Security on security operations, incident management, intrusion detection, and security event analysis using SIEM tool Azure Sentinel, Splunk and Qradar. • Experience in Monitoring & Investigating the incoming Events. • Experience of working in 24×7 operations of SOC team, offering log monitoring, security information management, global threat monitoring. • Experience in generating Daily, Weekly & Monthly Reports. • Experience on performing log analysis and analyzing the crucial alerts at immediate basis through SIEM Handling critical alerts from Symantec Endpoint Protection and working for resolution. • Handling alerts from Crowd strike EDR and investigation. • Responsible for triage of a variety of alerts stemming from Malware Responsible for monitoring the Phishing attempts. • Exposure to Ticketing tool like Service Now. • Strong knowledge on Incident management life cycle. • Good communication, problem solving skills and the ability to acquire new skills in a timely manner. Strong in team coordination and managing tasks. |
Education
Work & Experience
Working on the Splunk, Qradar, Azure SIEM (console & web console) providing operations support at the Security Operations Center for different member firms. • Monitoring alerts (SIEM, IPS, wireless devices, tripwire and other security devices). Performed threat analysis through research and examining log data. • Monitoring & analyzing incoming Events in a network. • Monitoring Windows logs & raising cases for login failures & lockouts based on defined thresholds. • Monitoring Tripwire logs for critical file modification on windows servers. • Monitoring IPS logs & Firewall to identify external threats. Experience in creating Filters and applying Filters to Active Channels. • Integrating the Commands, Applying the Inline Filters in an Active Channel to make the investigation process reliable. Exposure to Ticketing tool like Service Now. • Collecting the logs of all the network devices and analyze the logs to find the suspicious activities. SHANKAR SURYA BURRA SOC Analyst bshankarsurya30@gmail.com 7396349279 • Monitor alerts generated in the security analytics solution includes intrusion detection/prevention systems, firewalls, routers, switches, servers, databases, applications and other devices. • Working on SIEM tools providing operational support for preventing of Cyber Attacks. Identifying potential information security incidents like security attacks and anomalous activities. • Checking the overall system health, Connectors health & reporting it to the Admin. Team on daily basis. Providing daily, weekly and monthly reports of incident activity. • Analyzing Phishing and Spam related activities and notifying to the users. • Preparing daily and weekly dashboard on the security threats and trends on the network. • Working on Real time network traffic by analyzing the logs from IDS and Firewalls through SIEM Tool. • Analyzing findings from document review and field review to ensure they meet ISO 27001 requirements Implementing improvements, as needed, based on audit findings. • Participate in weekly and monthly review calls with client and team meetings to review status of the issues and to provide process updates. • Providing 24x7 on-call support & coordinating with required Teams to resolve the high security issues.
