Vijayalekshmi KB

24x7 Monitor real-time event logs on SIEM tool console and Events analysis and investigating and mitigation. Working on incidents and reviewing the alerts and do detailed analysis on alerts. Log Analysis Detecting suspicious logs, raising ticket with concern teams Followed and reported incidents with the SLAs and Procedure. Take follow ups and closing of the tickets based on the client response. Hands on Experience in monitor events and investigate incident a daily basis. Accountable for identifying instances of false positives and providing recommendations for fine-tuneing alert systems. Create Daily,weekly and Monthly reports and delivering them on time . Assist SOC lead in daily reports creation Drafting shift hand-overs Coordinated cyber security risk assessment at system and enterprise levels and managed formal risk remediation activities SIEM Tools (Qradar,Logpoint, ELK,Data Dog, Azure Sentinel,) Endpoint detection and response (EDR-Sentinel One) Had also worked as POC for two clients, coordinating and initiate on the activites like integration of asset,databases and conducted meetings with clients regarding the issues like asset disconnection, tickets followup and other soc related activities. Troubleshooting the SIEM-related issues by contacting clients and support desk team