SANYAM RUSTAGI

Paladion is a specialized cyber security company offering end-to-end information security services & solutions in USA, Canada, UAE, Qatar, Kuwait & India. We act as a robust managed security service provider trusted by organizations all over the world . Working in a Client Dedicated Environment and Managing and Maintaining complete SIEM ArcSight Infrastructure for effective Log Flow Content . ArcSight Connector Installation and Uninstallation and integration of devices with ArcSight ESM and Logger from multiple vendors. Configuring Connectors in Cluster Role Node on Agent Servers to prevent Loss of logs as per the Security Concern and ensuring Connector Service to run on particular cluster node . Installation and Management of ArcSight Solutions (HPE ArcSight ESM), HPE Logger, ArcMC , Super and Smart Connectors . Troubleshooting in case of ArcSight Components or data flow – ESM , Smart Connectors ,SuperConnector , Logger , Database and Console for security flow of events .

At HCL Technologies , part of an Infosec Team(SET) responsible for providing services and handling daily operations over ArcSight(SIEM).Main responsibilities were :- ArcSight Smart Connector Installation and Uninstallation and integration of devices with ESM from multiple vendors . Troubleshooting in case of ArcSight Components or data flow – ESM , Smart Connectors ,SuperConnector , Logger for effective Log Flow Content . Creating Users on ArcSight ESM and Migration of Customers from one setup to another . Enabling Batching, Aggregation and Filtering of traffic events at Connector Level End. Creation of Correlation Rules as per the business use cases and fine tuning of correlation rules based on existing content and use cases and adapting them to meet business requirements . Creating Active Channels for monitoring and viewing of events . Creation of Active Lists and their implementation in Correlation Rules . Creating Dashboards and datamonitors for data representation in ESM , modify and optimize event based datamonitors to provide real time view of traffic . Generating and creating reports,queries, trends and scheduling Trends and Reports in real time scenario . Installing and Managing ArcSight REPSM and Super Connectors . Creating Users over ArcSight Web and granting them permissions/access as per the requirements . Creation of Forwarders , Receivers , Summaries , Reports , Queries and Dashboards on Logger for Effective Log Flow and Content Analysis .