ATTADEEP PATIL
About Candidate
| Computer security professional with 4.5 years of progressive experience in service as well as product based industry. Detail-oriented team player with strong organizational skills. Ability to handle multiple projects simultaneously with a high degree of accuracy. Good knowledge and ability to adapt new technologies and applications so as to improve and maintain performance, reliability, administration and maintenance of multi-site technology infrastructure. Knowledge of Authentication, End Point Security, Firewalls, NIDS, HIDS, Sys Logs ,Data Loss Prevention (DLP), Identity and Access Management (IAM) solutions to determine the correct remediation actions and escalation paths for each incident. Active threat hunting based on EDR and additional tooling. Assist with the development of processes and procedures to improve incident response times, analysis of incidents, and overall SOC functions. Conducting Security Incident investigations for root cause analysis with demonstrated in-depth knowledge of networks, operating systems, intrusion detection systems, event logs and event correlation while ensuring the SLA compliance. |
Education
Work & Experience
[BFSI and Federal Clients in Middle East, UK, Australia and India] Incident Detection, Analysis, Response, Remediation and follow-up for incidents Collection of necessary logs that could help in incident containment and security investigation Follow up with more than 20 clients to ensure proper closure of incidents Acknowledge, analyze and validate incidents received through other reporting mechanisms such as email, phone calls, management directions, etc Fine tuning of default rules, reports and alarms Escalate validated and confirmed incidents to L2 Analyst. Worked flexible hours across night, weekend and holiday shifts.
Monitoring and analysis of Security events through Splunk and Phantom. Reviewed violations of computer security procedures and developed mitigation plans. Performed risk and vulnerability assessments and provided results and recommendations to senior management. Applied leading theories and concepts to development, maintenance, and implementation of information security standards, procedures, and guidelines. Document tickets fully with all actions taken for incidents and update it on frequent basis and maintain ticket quality by documenting it with all required comments & artifacts. Worked on multiple security tools such as Splunk, Phantom, ATP Defender, Symantec Vontu, BIG-IP Advanced WAF, Azure Sentinel, Crowdstrike and Proofpoint . Reviewing and performing deep analysis of escalated incidents to determine business impact.
