Lead and manage the Security Operations Center (SOC) team.Develop and maintain operational procedures, policies, and playbooks to ensure efficient and effective incident detection, analysis, and response.Monitor the RSA NetWitness SIEM solution for security events, anomalies, and indicators of compromise.Investigate and respond to security incidents, conducting root cause analysis and implementing corrective actions as necessary.Coordinate with other IT and security teams to ensure timely resolution of security incidents and vulnerabilities.Stay up-to-date on the latest security threats, trends, and technologies, and implement best practices to enhance the bank's security posture.Collaborate with internal stakeholders to develop and implement security controls and measures to protect the bank's assets and data.

 Provide guidance and coordination for customer requirements gathering, understanding customer pain points, develop solutions around them as Pre-sales solution architect and organize PoC (proof of concept). Need strong organizing, coordinating and negotiation skills to engage with other global and member firm teams. Having strong understanding of Security operations concepts and rich experience of security towers like Application Security, SAST, DAST, MAST, RASP, Red Team, Vulnerability Management, SecOps, Shift Lift and corresponding OEM solutions. Experience of working on $Multi-Million proposals/bids for managed security services & Implementation projects. Expertise in bid response (managed service outsource deals, defining service elements, building cost models, providing content Coordinate with OEMs for identifying best solution which is economically and technically a balanced approach to satisfy customer requirements Coordinating with the alliance partners for security products and getting the BOT-outs for different various product teams

 Developing and reviewing all standard operating procedures, policies and mentoring security analyst. Handling all operational tasks like creating custom rules, updates/upgrades, enable relevant plugins, policies, handling exceptions for AlienVault. Monitoring to ensure all the incidents are handled as per the agreed SLA’s. Tracking all the incidents and security events in confluence as well as in JIRA ticketing system. Creating security advisories and perform impact analysis for any new vulnerabilities. Manage Security Incidents, Investigate suspicious behavior, Malware Analysis, Threat Management Coordinating with patch management team to ensure high/critical vulnerabilities are addressed prioritizing based on its criticality. Coordination of incident response activities (escalations, notifications, conference calls, etc.) Participate in threat/malware investigation and deployment of Next Generation of Network Security Monitoring. Analysis: Identify suspicious activity, and respond appropriately RCA (Root Cause Analysis). Develop and design Indicator of compromised (IOC), Leading audit response for internal/external audits and assessment Performing malware analysis using different malware analysis methodologies. Conducting intrusion detection and prevention. Performing log analysis and identifying malicious activities.  Threat Analysis: Manage Security Incidents, Monitoring Tools , Investigate suspicious behavior, Vulnerability Analysis, Threat Management.

 Change Management team (CAB), conducted change reviews, Change Requests (CR) auditing, doing impact analysis of the proposed change, Planning and conducting periodic audits of the existing Application systems/Support functions and IT Security , Network Infrastructure, trend analysis of the system and management reporting. Streamlined the Change Management Review process by developing checklists as per best guidelines across industry, the checklist is being used as a reference by both the Application Development and Review teams. Client has appreciated this effort. Established and facilitated a common platform, for dialogue between Application support and Application Development teams to bridge the Gap between business requirements and operating proceduresProject 2Organiziation : Nucleus software pvt ltdDURATION : June 2010 – Dec 2011Client : Shinsei Technology services (STS- Singapore) as Disaster Recovery centerPart of the Disaster recovery datacenter team and handling all the Emergency related changes, reviewing and approving Project 3 - ISMS Lead auditor Organization : Nucleus software pvt ltdDURATION : Dec-2011 to Feb 2017Client : TokyoHead Office : Nucleus Software P ltd (PUNE Branch) Understanding the interplay between information security and business and understand the role that information security plays in the overall business ecosystem Partnered with Line of Business Program teams to recognize the key risk and remediation efforts for improved security posture. Helped the IT Risk Management group to close the audit findings Understand both technical and non-technical aspects of information security Implemented and maintained 2 ISMS (end to end) complying to ISO 27001 Experiencing in facing external audits for ISO 27001:2005 Facilitate, Conduct & Collaborate in Internal Audits and User Access Reviews activities Creation of Information security policies and procedures Information security training and awareness