SOC Analyst24/7/365 real time monitoringReporting and Investigating Suspicious Activities/Incidents.Logs AnalysisAdvance Searches & Filters.Daily Offense Report

Working in a 24x7 Security Operations Center- Conducting proactive & reactive monitoring, investigation and mitigation of security incidents.- Investigating malicious IOCs using Open Source tools and recommending proper blocking based on analysis- Performing manual threat hunting of events on different log sources related to Active Directory, Firewalls, Email Server, Windows and Linux etc. integrated on SIEM. In-depth analysis of offenses taking proper action.- Using… Show more Working in a 24x7 Security Operations Center- Conducting proactive & reactive monitoring, investigation and mitigation of security incidents.- Investigating malicious IOCs using Open Source tools and recommending proper blocking based on analysis- Performing manual threat hunting of events on different log sources related to Active Directory, Firewalls, Email Server, Windows and Linux etc. integrated on SIEM. In-depth analysis of offenses taking proper action.- Using analytical information from a diverse set of tools- IBM QRadar, FireEye Suite, CTM360 and others to their best advantage to identify threats and trends in addition to current state reactive behaviour.- Researching on worldwide new and evolving threats and vulnerabilities with potential to impact the monitored environment.- Leading and training junior analysts to ensure personnel possess necessary security awareness knowledge and skills to execute relevant tasks- Crafting Threat Advisories and conducting Threat Intelligence to inform proactive security measures.- Incident Management by using SIRP tool and report the threats to Network team for blockage.- Analysis of Phishing/Spam Emails, IPs and different cyber adversaries by deep analysis of events payloads and by applying filters of SIEM. Show less

-Part of 24/7 monitoring team.-Utilized SIEM tool for monitoring & analyzing security alerts.-Developed skills in identifying & investigating potential threats.-Conducted detailed threat investigations for data gathering & analysis.-Emphasized proactive monitoring and quick response in cybersecurity dynamics.-Learned about Governance, Risk, and Compliance (GRC) principles in relation to cybersecurity.

Project: "Privacy-Preserving Searchable Encryption over Encrypted Documents"- An application is created that is capable of probabilistic query searching. This protects against search pattern leakage attacks. This provides the rights to the owner to control their data on cloud by ensuring the confidentiality of content of outsourced data along with efficiently performing required operations (searching) over outsourced data.- Tools: Python (Backend), Tkinter (GUI)

◾ Web Development (HTML & CSS)◾ Software Development (Python & C++)