● LogRhythm Platform Upgrade and Collector Upgrades and post-upgrade performance check-up.● New Log Source On-boarding, troubleshooting, and retiring old log sources.● Active Directory integration with the LogRhythm● Creating new AIE use cases based on current security standards and as per customers’ requests.● Fine-tuning of existing use case as per the security risk.● New Log Source integration and retiring old log sources.● Creating GLPR (Global Log Processing Rule) based on Project Requirements.● Maintaining and creating a List of the Log Sources and Log Sources Type.● Managing team of 22 L1 and 6 L2 members.● Implementing Smart Response for blocking Malicious IP Addresses on the Firewall, Disabling/Enabling Active Directory Accounts, Getting info on an AD account, etc.● Report Creation on a weekly, monthly, quarterly, and yearly basis as per client requirements.

● Working as LogRhythm SIEM administrator.● Upgradation of LogRhythm and Synchronization of Knowledgebase to the latest available version.● Acting as a Team Lead and handling a team of 13 L1 analysts.● Integrating various log sources in LogRhythm and retiring old log sources.● Creating GLPR (Global Log Processing Rule) based on Project Requirements.● Creating new AIE Use cases and fine-tuning existing cases to maintain security hygiene.● Creating Dashboards based on different applications and use cases like Active Directory, Cisco, Log Source Trends, Antivirus, etc.● Creating different widgets on dashboards for monitoring using Lucene Query.● Implementing Smart Response for blocking Malicious IP Addresses on the Firewall, Disabling/Enabling Active Directory Accounts, Getting info on an AD account, etc.● Generating Reports based on client requirements.● Monitoring and investigating suspicious network activities using NetMon and SIEM.● Report Creation on a weekly, monthly, quarterly, and yearly basis as per client requirements.● Continuously updating the runbook/playbook of the MSOC department after troubleshooting.● Creating Policy and Blacklisting Malicious IP Addresses on Cisco Firepower Firewall.● Health Check report of the tool.● Preparing and sending Security Advisories to all relevant customers.● Working with different clients/vendor and their security applications.● Taking care of day-to-day monitoring tasks and ensuring the SLA (Service Level Agreement) is not breached.● Creating new policy and Blacklisting Malicious IP Addresses on the FortiGate firewall.● Maintaining Forcepoint Email security and Web security Gateway.● Report Creation on a weekly, monthly, quarterly, and yearly basis per client requirements.● Continuously updating the runbook/playbook of the MSOC department after troubleshooting.● Preparing and sending Security Advisories.

Project: Becton, Dickinson (R&D Center, Chandigarh)

Project: - Becton Dickinson and Company- (Research and Development Site)The project first involves to help BD accelerate research innovations to develop new products and markets and achieve time-to-market advantage for its product. This will also allow BD to focus on creating innovative solutions by using HCL’s expertise in sustenance engineering and product – testing service.Responsibilities• Implementing Security Policies to Checkpoint Firewalls.• Monitoring of application traffic based on Smart view tracker logs and providing the solution for issues related to application.• Monitoring of security devices through Smart View Monitor.• Using tcpdump and Wireshark to capture the packets for user/application troubleshooting.• Preparation of change plans and representing changes in TAB / CAB meetings.• Preparation of SOPs for technical tasks.• Managing / resolving the Incidents / SR / CRQs in Service Now ticketing tools.• Vendor management; Case opening with vendors and following up with them for resolution.

Project: - Becton Dickinson and Company- Medical/Health Care TechnologyThe project first involves to help BD accelerate research innovations to develop new products and markets and achieve time-to-market advantage for its product. This will also allow BD to focus on creating innovative solutions by using HCL’s expertise in sustenance engineering and product – testing service.Responsibilities• Implementing Security Policies to Checkpoint Firewalls.• Monitoring of application traffic based on Smart view tracker logs and providing the solution for issues related to application.• Monitoring of security devices through Smart View Monitor.• Using tcpdump and Wireshark to capture the packets for user/application troubleshooting.• Preparation of change plans and representing changes in TAB / CAB meetings.• Preparation of SOPs for technical tasks.• Managing / resolving the Incidents / SR / CRQs in Service Now ticketing tools.• Vendor management; Case opening with vendors and following up with them for resolution.

Project: - Haryana Excise and TaxationHaryana Excise & Taxation department is primarily a tax collecting agency of the State Government head office in Panchkula Sec-5, The projects include developing an online tax collecting/ VAT returns submission, which provide a transparency system to external and as well as internal users. This help department to increase the total revenue with great hike.Trend Micro Antivirus Responsibilities• Daily health check that includes malware alerts on servers and global updates.• Rectification of Non-Compliant server by agent reinstallation where agent is corrupt.• Implement, monitor the compliance and effectiveness of the Incident Management Process.Other Resposibilities• Windows Server 2008 Installation configuration & patch updation.• Global access management operations like User creation, User Deletion, User Password Reset on Domain Controller.• Re-imaging machines and OS installation using Altiris Server.• Managing 300+ users.• Hardware Inventory management• Provided application support to the end users. Co-ordinate with field engineers to fix the breakdown on priority.• Shared information about Planned/Unplanned Downtime to the users and providing them the outage information of service.

Develop Prototype for Haryana Excise & Taxation Department project