K C Vinayaka

•Monitoring and analysis of logs using SIEM tool. •Real-Time Monitoring of Security Alerts generated by SIEM. •Analysis of Alerts using different tools and databases like Virus Total, AbuseIPDB, IP Void, MX Toolbox. •Created dashboard and query has been written in SIEM tool called RSA Nettwittness, Splunk ES to collect logs for analysis. •Working and monitoring on SIEM tool called RSA Netwittenss. •Depending upon organization requirement for monitoring risks, threats, vulnerabilities and suspicious DNS . •Administered as a corporate security by ensuring technical security planning, testing, verification and risk analysis. •Assisted with firewall/IDS/IPS and VPN monitoring and configurations as needed. •Providing response support to users, advising users on adherence to security policies. •Daily tracking of events, alerts, and requests submitted from various sources. •Performed Root cause analysis of incidents and propose control uplifts. •Working on different type of IOCs, Spam mails, threat analysis. •Managing SLA’s for real time alerting, response and reporting. •Creating tickets for validated Incidents. •Assist in Handling and follow up for closure. •Assist in Generation of Reports. •Transforming analysis into actionable intelligence. •SOP discussion and in-house training. •Monitoring ZScaler and working on different types of decoys. •Monitoring XSOAR and working on XSOAR playbooks. •Draft Shift Handover. •Attending weekly meeting on Ticket review.