Akash Sahu

A competent professional with 5 years and 4 months of experience as Security Analyst on Splunk Tool and
have overall 9 years 4 month of working experience. Along with the CEH (Certified Ethical Hacker)
certification.
 SIEM Tools: Splunk Enterprise and Enterprise Security
 Incident Analysis Tools: CISCO Talos, Mx Toolbox, Virus Total, IBM-Xforce etc.
 Ticketing Tool: Service Now
 EDR: Falcon Crowdstrike
 Certification:
o EC Council – CEH (Certified Ethical Hacker) validity up to 2027
o Fortinet Certified Fundamentals in Cyber security (Validity up to 2026)
o Oracle Certified Professional (OCP) – Oracle9i
 Cyber Security Analyst with proficient and thorough experience and a good understanding of information
technology. Specialized in proactive network monitoring of SIEM
 Good understanding of security solutions like Anti-virus, Firewall, IPS/IDS, Email Gateway, Proxy etc.
 Hands on experience with Splunk SIEM tool for logs monitoring and analysis, using Service Now ticketing
tool for incidents response
 Good knowledge on networking concepts including OSI Model, Sub netting, TCP/IP, ports, DNS, DHCP etc.
 Manage 24×7 operations at SOC, including event monitoring which includes incident detection, tracking
and analysing on real time basis, report generation.
 Create Log monitoring reports on daily, weekly and monthly basis in order to maintain strict SLA
adherence.
 Good Knowledge on integration of devices with SIEM Splunk (Windows, Linux, Firewall, etc.)
 Provide initial level of threat response for Security Event Management team at Security Operations
Centre (SOC).
 Hands on experience on Falcon Crowdstrike EDR (Endpoint Detection & Response) – Basic operation,
Creating policy, Analysis of Alert, etc.
 Motivated team player and can adapt and learn new technologies, tools and applications.
 Good knowledge of Splunk Distributed cluster Architecture
 Working experience in Splunk SPL queries
 Installing Universal forwarders to integrate Windows and Linux devices
 Creating inputs on Splunk Enterprise to receive the logs
 Integrated FortiGate Firewall with Splunk
 Installation of the Splunk apps and Add-on on the Splunk
 Monitoring Real-time Incidents in Splunk Enterprise Security