RAMASURIBABU KOPPISETTI
About Candidate
| Having 2.3 years of IT Experience with Information Security as Security Analyst (Security OperationCentre team) Good understanding of security solutions like Anti-virus, DLP, Proxy, Firewall monitoring, IPS, EmailSecurity, WAF etc. Hands on experience with Splunk SIEM tool for logs monitoring and analysis, ServiceNow ticketing tool. Hands on experience on Endpoint Detection and Response (Microsoft 365 Defender), Rapid7, Recordedfuture[AI Tool] Good knowledge on networking concepts including OSI layers, Subnet, TCP/IP, ports, DNS, DHCP,Firewall monitoring, proxy, security concepts, cyber kill chain, MITRE ATT&CK,etc. |
Education
Work & Experience
Served as Analyst in SOC operations for real-time monitoring, analyzing logs from varioussecurity/Industrial appliances. Carrying out log monitoring and incident analysis for various devices such as Firewalls, IDS, IPS, database,web servers and so forth. Monitoring the customer network using SIEM tools– Splunk, Q-Radar. Performing Real-Time Monitoring, Investigation, Analysis, Reporting and Escalations of SecurityEvents from multiple log sources. Contacting the customers directly in case of high priority incidents and helping the customer in the process of mitigating the attacks. Good knowledge on IDS, IPS and Cyber Attacks. Identify, investigate, or resolve security breaches and incidents.
Monitoring the customer network using SIEM tools– DEVO . Hands on experience on Firewall (Palo Alto) . Hands on experience on VPN (GLOBAL PROTECT). Security event analysis and intrusion detection by review and analysis of events generated by variouscomponents including IDS/IPS, firewalls, Routers, DB, OS and various types of security devices. Handling multiple customers globally analyzing the customer networks for potential security attacks. Administrating various incidents/security alerts triggered in SIEM tool.
