Support Activities: As an InfoSec Engineer at AVASOFT, I provided support through the following actions,• Phishing Alert Monitoring: Managed continuous phishing alert systems for real-time threat detection and response.• Email and Outlook Issue Resolution: Addressed undeliverable emails, mail flow problems, and Outlook-specific challenges.• Threat Management: Handled suspicious and malicious threats in Microsoft Defender by analyzing user activity logs in detail.• Weekly Report Submission: Prepared weekly reports based on the security incidents of the week and updated security policies to mitigate future incidents.• Cookbook Development: Created comprehensive cookbooks for standardized incident responses.• Incident Response Planning: Developed detailed incident response plans for all security events and prepared RCA documents for all priority 1 (P1) issues.• Engineering and Enhancement: In my engineering role, enhanced AVASOFT’s M365 environment security through, • Policy Assessment and Implementation: Conducted comprehensive policy assessments and implemented best practices across Defender for Office 365, Exchange Admin Center, Microsoft Purview, SharePoint Admin Center, Microsoft Defender for Cloud Apps, and Azure. • Email Forensics and Security Enhancements: Performed forensic analysis on emails, blocked suspicious domains, users, and patterns. • Conditional Access Policies: Implemented conditional access policies in Azure for location-based control and secure sign-in procedures.

Microsoft Cloud Apps Security ImplementationSummary: Microsoft Cloud Apps Security (MCAS) is a Cloud Access Security Broker (CASB) solution that integrates with Microsoft 365 applications and third-party cloud applications to monitor all user activities within the environment.Key Contributions:• Conducted an assessment at AVASOFT to detect vulnerabilities in the cloud environment and implemented security best practices to prevent unauthorized access to the organization's data.• Connected the Microsoft 365 environment, Azure Active Directory, and other business applications such as AWS, Azure, and Salesforce with MCAS to monitor user activities.• Also connected custom-built applications, such as the HR management and cab booking applications currently used in AVASOFT, with MCAS to monitor user activities in real time.• Developed threat detection policies to identify and mitigate suspicious user activities in the connected applications.• Created information protection policies based on data classification to restrict file downloads to personal devices and sharing with external parties according to data sensitivity.• Enabled real-time protection for all connected applications to secure corporate resources by allowing access only from corporate devices and networks.• Developed custom activity policies to detect and prevent unauthorized access through automated protection measures.• Implemented Shadow IT Discovery at AVASOFT by integrating MCAS with the Microsoft Defender for Endpoint solution to identify application usage on each end-user device and blocked unnecessary cloud application usage at both the device and network levels.