🔹Develop and implement custom detection rules to enhance organizational security.🔹Prepare comprehensive incident management procedures for effective response.🔹Train internal teams on incident management using Microsoft security products.🔹Deploy various Microsoft Security products including MS, M365 Defender, XDR, Identity and MDCA.🔹Develop hunting query using KQL to investigate incident and mitigate risk.🔹Adhered to organizational guidelines while performing various… Show more 🔹Develop and implement custom detection rules to enhance organizational security.🔹Prepare comprehensive incident management procedures for effective response.🔹Train internal teams on incident management using Microsoft security products.🔹Deploy various Microsoft Security products including MS, M365 Defender, XDR, Identity and MDCA.🔹Develop hunting query using KQL to investigate incident and mitigate risk.🔹Adhered to organizational guidelines while performing various engineering tasks.🔹Embrace and integrate new technologies to enhance organizational security.🔹Adopt and utilize different security tools to bolster security measures.🔹Create new automation rules to streamline and enhance incident management processes. 🔹Integrate diverse data sources to consolidate logs in MS.🔹Modify and create custom analytics to mitigate security risks effectively.🔹Manage conditional access policies to ensure secure access to the environment.🔹Research and implement new technologies to stay ahead of security threats.🔹Troubleshoot and resolve issues arising within the environment promptly.🔹Provide customer support, ensuring high levels of service and satisfaction.🔹Prepared detailed reports, high-level designs (HLD), and conduct peer reviews before deploying new technologies. 🔹Create playbook to perform various activities using LogicApp. Show less

🔹Monitor, investigate, triage, contain, and mitigate cybersecurity alerts and incidents using Microsoft’s XDR, SIEM, and MDCA tools.🔹24X7 SOC monitoring with SIEM (Sentinel) analysis, reporting and fine-tuning.🔹Utilizing advanced hunting techniques with KQL queries to proactively analyze, mitigate security incidents.🔹Managing organization SLAs for real time alerts, response and reporting.🔹Performing incident management in accordance with the standard… Show more 🔹Monitor, investigate, triage, contain, and mitigate cybersecurity alerts and incidents using Microsoft’s XDR, SIEM, and MDCA tools.🔹24X7 SOC monitoring with SIEM (Sentinel) analysis, reporting and fine-tuning.🔹Utilizing advanced hunting techniques with KQL queries to proactively analyze, mitigate security incidents.🔹Managing organization SLAs for real time alerts, response and reporting.🔹Performing incident management in accordance with the standard operating procedures 🔹Implementing incident management procedures and utilizing the latest documentation to align with the updated protocols set forth by the Security Operations Center (SOC) management team.🔹Staying up-to-date with emerging security threats including applicable regulatory security requirements.🔹Leveraging OSINT tools to conduct thorough analysis of phishing and spam emails.🔹Maintaining and improving the security posture of the Azure platform, identifying, and remediating vulnerabilities by using a variety of security tools.🔹Resolving system-related issues through effective troubleshooting techniques.🔹Updating or modifying the analytical rule to enhance its effectiveness and accuracy.🔹Enhancing the security procedure by establishing effective communication with the management team.🔹Collaborating with the team to address and mitigate critical security incidents.🔹Monitoring the system's health status to identify and address potential issues proactively. Show less

🔸 Integrate on-demand Cyber Security solutions -(VA, PT, EDR, XDR, Sandbox, PAM, WAF, SIEM, SAST, DAST, IAST, Micro segmentation, Zero Trust)🔸 SOC consultancy 🔸 Analyze different Cyber Security tools, Communicate with OEM, and give consultancy as per client's requirements.🔸 Conduct vulnerability assessments, and penetration testing of the organization. 🔸 Troubleshoot solution-related issues and provide technical support. (Remote/On-premise)🔸 Prepare technical… Show more 🔸 Integrate on-demand Cyber Security solutions -(VA, PT, EDR, XDR, Sandbox, PAM, WAF, SIEM, SAST, DAST, IAST, Micro segmentation, Zero Trust)🔸 SOC consultancy 🔸 Analyze different Cyber Security tools, Communicate with OEM, and give consultancy as per client's requirements.🔸 Conduct vulnerability assessments, and penetration testing of the organization. 🔸 Troubleshoot solution-related issues and provide technical support. (Remote/On-premise)🔸 Prepare technical documentation, and technical proposals, evaluate technical specifications as per the organization's requirements. Show less

🔸Analyze and monitor the system's raw logs using RSA Netwitness SIEM.🔸Reviews the latest alerts to determine relevancy and urgency.🔸Creates new trouble tickets for alerts that signal an incident and require respective tier Incident Response review.🔸Runs vulnerability scans and reviews vulnerability assessment reports.🔸Manages and configures security monitoring tools🔸Respond to an incident by giving proper remediation. 🔸Using threat intelligence, IOCs to… Show more 🔸Analyze and monitor the system's raw logs using RSA Netwitness SIEM.🔸Reviews the latest alerts to determine relevancy and urgency.🔸Creates new trouble tickets for alerts that signal an incident and require respective tier Incident Response review.🔸Runs vulnerability scans and reviews vulnerability assessment reports.🔸Manages and configures security monitoring tools🔸Respond to an incident by giving proper remediation. 🔸Using threat intelligence, IOCs to pinpoint the affected systems and the extent of the attack.🔸Carries out in-depth threat intelligence analysis to find the perpetrator, the type of attack, and the data or systems impacted. Creates and implements a strategy for containment and recovery. Show less