Cyber Security Analyst
CurrentResponding to and investigation security incidents, including forensic analysis, containment, and recovery as a successful team member in a 24x7 Cyber Security Operation Center (SOC)● Leverage the power of Splunk to collect, search, filter, correlate, and visualize data to identify the Indicator of Compromise (IOCs) such as login attempts, file modifications etc. and take appropriate action to remediate it● Gaining valuable insight into security posture by using customize dashboards in CrowdStrike Falcon to investigate the incident further to determine the root cause and take additional actions as needed● Provide advanced email analysis, such as header analysis, URL rewriting, and sandboxing feature in Proofpoint to analyze the email, identify threats, generate reports and alerts, and take necessary actions to prevent further damage● Document the findings and actions in IBM Security SOAR (Resilient) to keep track of security incident by prioritizing based on its severity and impact. Effectively using Jira to assign the incident to a specific team for further investigation and response● Performing vulnerability scanning using Tenable.io and NetSparker to identify the severity of vulnerabilities which need to be addressed first and develop a plan to remediate them● Successfully looking for anomalies or suspicious traffic patterns that could indicate malicious activity using Wireshark or tcpdump and document any findings from the analysis to use for further investigation or remediation efforts● Professionally apply the NIST framework to help identify, assess, and manage cybersecurity risks and establish a comprehensive cybersecurity program that protects assets and data from threats