CHANDAN GOWDA NJ

Acknowledging and closing false positives and raising tickets for validated incidents. Hands-on experience with the "SPLUNK tool" and raising tickets for validationincidents. Follow-up with incident response team for remediation. Monitoring and troubleshooting Silent Log Sources. Creating policy's according to the organization requirement in order to protectorganization from attacks. Basic understanding of OWASP top 10 vulnerabilities. Exposure to using MITREATT&CK for threat hunting and Incident Response. Drafting shift hand-overs.

Conduct monitoring, investigation, mitigation of security incident. Monitoring network with(Cisco meraki firewall), content filtering for the organization,VPN connectivity, creating group policy for departments and monitoring data usage byusers Implemented EDR tool(Checkpoint Harmony EDR) in the organization with firewallpolicy. Creating policy blades for organizational assets with Checkpoint Harmony EndpointDetection and Response security solution. Analysis of attacks and alerts using EDR,Threat hunting and creating Reports. Monitored various Security events and logs of multiple application in WAF(RadwareCWAF). Creating policy's for organization portals by analyzing web traffic and blockingsuspicious or malicious requests, Bot activities, Geo location blocking using RadwareCWAF. Escalating and handling tickets within SLA time(ITSM). Implemented Device management software(PC visor) used for Patching endpoints,applications, functions, license and policies in a scalable manner, Ensuring thatendpoints perform consistently, Monitoring and tracking endpoints. Handeled Active directory of the organization. Handeled organizational asset management. Handeled organizational Microsoft 365 account related issues. Handeled organizational basic configuration and desktop support work.