Arun Patel

• Managed ArcSight and LogRhythm SIEM platform for enterprise-wide security event monitoring and incident response. • Collaborated with security analysts to ensure timely response to critical security incidents by fine- tuning alerting and notification mechanisms. • Performed regular health checks and system performance tuning, optimizing query performance and minimizing false positives. • Knowledge of Installing ArcSight Connectors. • Knowledge of Integration of new devices with ArcSight such as Windows, Linux. • Knowledge of Implementation of Custom Queries, Filters, Active Channels, Dash Boards. • Performing Real-Time Monitoring, Investigation, Analysis, Reporting and Escalations of Security Events from Multiple log sources and incident response. • FireEye monitoring. • Phishing mail analysis. • Coached team members in techniques necessary to complete job tasks. • Proactively monitor the escalated security alerts and events from multiple tools (SIEM, EDR, DLP, IDS, WAF, DAM, IRM, FIM), promptly identifying and analyzing potential security incidents. • Conduct in-depth investigations to determine the root cause, attack vectors, and potential impact of identified incidents. • Collaborate with IT, Network, and Legal teams to ensure timely and effective incident containment, eradication, and recovery. • Provide clear and concise communication to management, executives, and technical teams regarding incident status, impact, and actions taken. • Worked in 24x7 Operational support.