Deepak Shrivastava

• Coordinating and maintaining SOC Audit. • Produce and maintain Standard Operating Procedures and appropriate documentation for SOC. • Identify gaps, disseminate findings and reports to the system owners and follow up for closure. • Analyse new security solutions, identify potential security concerns, develop approaches that can be used to mitigate identified risks and works with IT teams to implement recommendations. • Classification of risk associated with data leakage. • Identify threat scenarios, quantifying the risks and working out and executing effective mitigation controls including evaluates security incidents and determines what response, if any, is needed and coordinates organization’s responses, including technical incident response teams, when sensitive information is breached. • Assess risks to IT systems’ availability, integrity and confidentiality to ensure security and service continuity. • Investigating in advert data disclosure. • Classification of data disclose (e.g. Confidential, Highly Restricted etc). • Taking remediation again data leakage and for in advert data disclosure. • Recommend security improvements to optimize security controls including identifying industry best practices, standards, methods, tools, and application to optimize the organization business risk management. • Malware analysis through Sandbox. • Investigating reported security incidents, threats and violations • Collecting data and creating regular reports of security related activity and SOC metrics. • Open change control to mitigate identified risk. • Log analysis of events reported by SIEM tool.

• Responsible for taking action on alerts, events, and incidents escalated from analyst. • Monitoring for emerging threat patterns and vulnerabilities. • Handling High and Critical Incidents. • Communicates with management on incident updates. • Identify and remediate or escalate gaps. • Review and Fine Tune for SIEM alerts. • Manage and improve information security documentation as required. • Compiling SOC (Security Operation Centre) Runbook. • Manage Internal Audit for SOC. • Manage Documentation for ISO Audit. • Fine Tune suggestions of IDS, Firewalls, network monitoring sensors. • Perform network and system forensics in response to security incidents. • Perform security monitoring, Investigation and analysis of Event towards internal/external environment. • Log Analysis and event traffic patterns investigation. • Making report on Current IT Threat landscape and upcoming trends in security. • Review Low and Medium Severity Incidents work done by L1 Team Members. • Providing KT to new L1 and L2 Team Members. • Providing Training Session on Cyber Security to CFC Team. • Review Tripwire, PCI, CyerArk and Solidcore Reports. • Analysis of Phishing Incidents • Analysis for Firewall, IPS/IDS logs

• Managing Window Server 2008, 2012 • Managing Exchange Server 2010 • Managing Kaspersky EPO Server • Managing Fort iGATE 90D Firewall. • Managing SonicWALL NSA TZ 600 firewall • Creation of SSL VPN and Site to Site VPN • Vulnerability assessment of Server and web application • Implementation of ISO 270001 Security Audit • Install security patches to window server, EPO server, Exchange Server • Review system logs • Report malicious or suspicious activity on systems to ISO immediately • Report sensitive information stored on systems to ISO • Maintain user access administration • Disaster recovery planning • Physical security • Disable unnecessary services on servers • Comply with password requirements • Access control • Environmental protection (i.e., protection from possible exposure to water damage, excessive heat)

• Maintaining Audit Documentation. • Providing training of Ethical Hacking, Network Security, VAPT Training with kali Linux and Backtrack. • LMS Implementation PAN India and Training of LMS. • Preparing log sheet. • Preparing assignment for students. • Administration & Management of LABs for student. • Giving the project to the students on real scenario. • Take care all the labs updating & maintenance. • Manage & update technical team including lab assistance.