Aashish Gontal

•Monitoring SIEM and EDR tools to Identify various network or host-based anomaliesincustomer environments. •Performing Global Threat Intel IOC’s and research reports-based hunting. •Offline searches to detect suspected communication. •Reports alert and investigate issues identified during monitoring the live traffic. •Monitoring Server status and Analyzing Log Source Trend logs if is reportingonTime. •Preparing reports for the customer and Maintaining the records for audit purposes.

• Primarily responsible for investigating and processing security events.` • Deep dive analysis of triggered alerts using SIEM and other analysis tools. • Monitor and investigate real time AI based cyber threats fromDark trace threat visualization dashboard and EDR Console. • Solving security incidents under defined SLA’s. • Monitor MS Azure Security center check real time events and take necessaryactionsfor mitigation. • Investigation of Phishing emails that the user reports to SOC and quantify themasgenuine phishing emails or spam emails. • Provide Scheduled and Adhoc Scan reports on daily weekly monthly basis uponcustomer’s requirements. • Daily checks on threat-intel platforms for latest breaches and taking appropriateactionon related IOCs. • Creating Daily security reports, Weekly security reports as per CISOrequirements.