Gokaur Teja Sri Goud

• Performed software/network troubleshooting via remote control and provided complete remote desktop support as needed. • Resolving VPN issues by taking remote access of the client systems. • Complete MICROSOFT OFFICE 365 support which majority includes OUTLOOK issues. • Well experienced with ticketing tools such as SERVICE-NOW. • Provide diagnostic and corrective installation for desk-top, laptop and network connectivity issues and also keeping track of the users SAP, Mainframes and other software accounts. • Configured IP Phones using Avaya systems

Provided Support to employees through remote desktop and delivered level two support for the specialist I. • Hands of experience on active directory, Microsoft Support Managment and Exchange Management (On-prem, O365, M365) • Creation and management of Active Directory infrastructure. • Provided license for apps in Microsoft Office 365 Admin Center and Creating Teams Channel in Microsoft Teams Admin Center. • Placing access to Severs along with the maintenance and rolling out communication email chain. • Creation Security groups for drive access and Provided access to applications for users such as CAPS, Global scape, CDS, DUO, Appian Workflow, Spira, Clarity etc. • Worked on identifying Spam and suspicious email. • Having hands-on experience on Exchange Admin Center. • Well experienced with ticketing tools such as SERVICE-NOW. • Resolved and managed Microsoft and DUO Authenticator Problems.

Manage the SIEM tool (Splunk) from a monitoring and reporting perspective based on the business needs. • Perform incident response activities such as host triage and retrieval, malware analysis, remote system analysis and remediation efforts. • Raising Tickets, assigning tickets to concerned teams and taking follow-ups on respective SLA’s. • Provide network intrusion detection to support timely and effective decision-making of when to declare an incident. • Analysis of multiple sources including events like: Email gateway events, Firewall logs. Proxy logs. • Checking day to day integrated devices logs health status of critical devices and making reports, updating incident management day-to-day trackers. • Analyze a variety of network and host-based security appliance logs (Firewalls, WAF, IPS, NIDS etc.) to detect any threats and provide the correct remediation actions. • Collect New/Existing Threat Feeds from various open-source Threat Intelligence Platforms and • Provide advisory reports, Working on Cert Advisory IOC Reports.

• Monitoring alerts in Splunk • Perform incident response activities such as host triage and retrieval, malware analysis, remote system analysis and remediation efforts. • Supporting the day-to-day operations of the security operations • Follow detailed processes and procedures to analyze, escalate, and assist in remediation of critical information security incidents with respective with SLA. • Raising Tickets, assigning tickets to concerned teams and take follow ups on respective SLA’s. • Provide network intrusion detection to support timely and effective decision making of when to declare an incident. • Monitor and maintain intelligence related to security events. • Analysis multiple sources including events like: Email gateway events, Firewall logs. Proxy logs. • Checking day to day integrated devices logs health status of critical devices and making reports,updating incident management day to day trackers. • Analyze a variety of network and host-based security appliance logs (Firewalls, SWIFT server, WAF, IPS, NIDS etc.) to detect any threats and provide the correct remediation actions. • Assist in conducting investigations. • Collect New/Existing Threat Feeds from various open-source Threat Intelligence Platforms and Provide advisory reports, Working on Cert Advisory IOC Reports. • Preparing the daily alert status and weekly report