Sandeep Sahoo Email and Phone Number

Innovative Automation Engineer | FortiSOAR Expert | Empowering Security Operations🚀 Thriving as an Automation Consultant at Fortinet, leveraging cutting-edge FortiSOAR technology to revolutionize security operations through automation.⚙️ Harnessing the power of FortiSOAR and admin tools, I design and develop custom playbooks to streamline and automate workflows for diverse customers.🔧 Spearheading the creation of tailored automation solutions that drive efficiency, accelerate incident response, and mitigate security risks.💡 Collaborating closely with customers to understand their unique requirements, I deliver bespoke playbooks that align with their specific needs and boost operational effectiveness.💻 Managing the administration and configuration of FortiSOAR, I optimize its capabilities and ensure a seamless experience for SOC teams.📈 Continuously enhancing automation processes, I drive continuous improvement initiatives to refine playbooks, increase efficiency, and adapt to evolving security challenges.✨ Passionate about empowering organizations with advanced automation, I enable SOC teams to focus on critical tasks and make informed decisions with increased agility.

Results-Driven Automation Engineer | Splunk Phantom Specialist | Streamlining SOC Operations🚀 Excelled as an Automation Engineer, harnessing the power of Splunk Phantom to transform SOC operations by configuring and building playbooks for efficient automation.⚙️ Leveraged Splunk Phantom to assist and reduce manual work for the SOC team, amplifying productivity and enhancing incident response capabilities.🔧 Developed custom playbooks to streamline repetitive tasks, orchestrate workflows, and expedite incident resolution, freeing up valuable time for critical analysis.🔒 Implemented intelligent automation solutions to identify, analyze, and respond to security threats, ensuring prompt mitigation and minimizing potential risks.💡 Collaborated with SOC experts to understand and address their unique needs, crafting tailor-made playbooks to optimize operational efficiency and enable faster decision-making.💻 Demonstrated expertise in configuring and fine-tuning Splunk Phantom, maximizing its capabilities and tailoring it to specific organizational requirements.📈 Contributed to continuous improvement initiatives, enhancing automation processes, and fine-tuning playbooks to adapt to evolving security landscape.✨ Enthusiastically drove the adoption of automation, empowering the SOC team to focus on critical tasks and make informed decisions with increased agility.

Dynamic and Results-Driven SOC Lead | Splunk Expert | Agile Team Management🚀 Thrived as SOC Lead for top-tier American and Australian banking clients, delivering exceptional security operations while achieving compliance milestones. 💼 Led teams of up to 10 experts, ensuring seamless SOC monitoring and successfully attained PCI DSS compliance for 2019, with ongoing preparations for 2020 recertification.⚙️ Spearheaded the deployment of SIEM Splunk and TrendMicro Deepsecurity in AWS, configuring log collection and integrating crucial sources like CloudWatch, CloudTrail, AWS WAF, and GuardDuty for comprehensive threat monitoring.🔒 Crafted PCI-aligned Splunk dashboards and alerts, empowering proactive identification and response to potential threats.🔍 Orchestrated regular malware scans, leveraging TM Deepsecurity, to safeguard Linux servers and monitored IDS/IPS and file integrity for enhanced security.💡 Received accolades for creating impactful Splunk dashboards, facilitating effective monitoring, change detection, and suspicious behavior tracking.📊 Developed advanced drill-down and dynamic dashboards for diverse log sources (proxy, VPN, firewall, banking apps), meeting unique customer requirements.🤝 Collaborated closely with clients in an Agile format, delivering prompt updates and gaining additional business opportunities for Capgemini.📈 Automated UF upgrades, performed admin activities, and ensured data masking of sensitive personal information in logs.📋 Generated and scheduled reports, enabling teams to streamline daily monitoring tasks.✨ Configured real-time Splunk alerts with customized notifications, tailored to client needs.

Experienced Security Analyst | Splunk Expert | Incident Response Specialist🔒 Leveraging my expertise in security analysis and Splunk, I contributed to the success of leading Australian companies in the retail and insurance sectors. As a dedicated Security Analyst in a SOC environment, I analyzed security alerts on MacAfee and Splunk, implementing effective solutions such as updating alerts and IP blocking at the perimeter level. I developed customized Splunk dashboards to monitor and combat phishing attacks, ensuring proactive threat detection.💡 Integrated new data sources and applications with Splunk, playing a pivotal role in incident response for an esteemed Australian insurance company. I optimized Splunk infrastructure, performing upgrades and patch installs while creating comprehensive reports, dashboards, and queries for data analysis. By identifying potential threats and enhancing monitoring capabilities, I strengthened security protocols.✨ Recognized as a proficient Splunk Administrator, I also automated Splunk Administration activities and deployed new use cases based on collected logs and detected anomalies. These streamlined operations provided enhanced threat visibility, and enabled rapid response to emerging security incidents, further bolstering the organization's defense against evolving cyber threats.

🔹 Led end-to-end operations for SIEM and RSA Security Analytics, deploying cutting-edge solutions for TCS. Configured and integrated diverse devices, ensuring seamless log collection.🔹 Developed and deployed custom parsers (UDS) to enable configuration of unsupported devices by RSA, amplifying decoder capabilities.🔹 Excelled in creating insightful reports, dynamic dashboards, and real-time alerts using Esper language, enhancing threat visibility.🔹 Leveraged Python scripting for customized use-cases, enabling prompt notifications and action on Security Analytics alerts.💼 Additionally, formulated an efficient incident response process utilizing RSA Archer SecOps, facilitating swift identification and closure of security incidents.💡 Proficient in Websense DLP for incident analysis, Symantec Antivirus operations, and Nexpose vulnerability scanning.

🔒 Experienced Network Security Specialist with Certified Information Security Expert Level 1 and Level 2 credentials (Certification No. 30531 and NS-002).🎓 Extensive training in network security, ensuring a deep understanding of the evolving cyber threat landscape.💻 Developed a standalone application using Python script for network sniffing of live hosts.🔍 Proficient in performing man-in-the-middle attacks through ARP poisoning.📊 Captured and analyzed packets for enhanced network security monitoring.🌟 Passionate about staying at the forefront of technology and dedicated to protecting organizations through innovative security solutions.

1️⃣ Certificate of Excellence: Completed an 8-week Online Certificate Program on "IP, Networking, and Cyber Security," achieving the Certificate of Excellence [Reg. No: B2D2HYD1161].2️⃣ IPv4 to IPv6 Migration: Led the seamless migration of corporate networks from IPv4 to IPv6. Configured Dual Stack and Tunneling protocols in routers, ensuring a smooth transition and uninterrupted connectivity.3️⃣ Cutting-Edge Network Security: Developed an innovative Port Authentication-based security solution. Created software with source, detector, and receiver components, allowing data transmission exclusively to registered receivers with unique port numbers. Enhanced network security by preventing unauthorized access.