Rajkumar D

Managed SIEM platform for clients, preparing daily, weekly month reports as per client requirement.  Managing multiple accounts with regards to client escalations and overall service delivery.  Provide recommendations and implement to optimize SIEM performance at the client environment.  Analyses and investigate the alerts in SOC monitoring toll to report any abnormal behaviors suspicious activities, traffic anomalies etc.  Assist with the development of processes and procedures to improve incident response times, analysis of incidents, and over all SOC functions.  Provide functional and technical support to peers and helping then which solution without breaching SLA and meet client satisfaction.  Security incident management process and procedures development.  Security monitoring of their business environment through client owned SIEM (Log Rhythm).  Alerting and notification of potential and qualified security incidents.  Security monitoring operations standardization as per industry benchmarks.  Assessment of SIEM infrastructure to enhance the quality of overall security operation process.  Security monitoring of client’s website from vulnerability malware infection and reputation perspective.  Identifying malicious hits using threat intelligence platform.  Blocking of malicious signatures and IPs after analysis with the help of network team.  Identifying latestIOC’Sand vulnerabilities through various blogs like bleeping computers, Threat post, certain and us Cert.  Experience on Performing LOG analysis. Malware analysis, phishing mail Analysis, incident analysis and analyzing the crucial alerts on immediate basis.  Conducted Information security policy analysis and review as per GDPR standard.  Experience in Wireshark or TCP dump to identity normal and abnormal/malicious traffic patterns.  Monitoring and auditing continuous monitoring of user activities, especially privileged users.  Conducted handling the different issues like phishing, spam and malicious Email working on security.  Good understanding of security solutions like firewalls (Palo Alto), Anti-virus, IPS, EMAIL security Etc.  Good Knowledge on network concepts include OSI Layer, Subnet, TCP/IP, Ports, DNS, Etc.  Performed IT Internal Audits, IT Regulatory Compliance and IT Audits.