Cybersecurity & Big Data• Threat hunting enablement on MDR• Auto containment implementation using SOAR• Datacentre and cloud (SaaS) Security log collection through ArcSight and Apache NiFi• Knowledge on AWS & Azure fundamental, resources and workload• AWS and Azure security log integration• API integration like Microsoft o365, Microsoft ATP defender, Crowdstrike EDR etc.• Preparing technical design documents (TDD) for security implementation• Skills MySQL, Linux

• Deployment and Managing the QRadar SIEM | UBA Solution.• Developed cross device correlation rule for the advanced threat detection on SIEM.• Developed custom DSM and RegEx for the non-supported data source like SWIFT Alliance, Arcos PIM, TrendMicro Apex Central and Cisco ISE(NAC) .• Involved in QRadar version upgrade & console failure activity in the DR-DC environment and QRadar Centralization and EPS Upgradation.• Worked on NBAD(Network Behavior Anomaly Detection ) by using flow source like Qflow,Netflow/IPFIX.• Handling the IBM Guardium DAM (Database Access Monitoring) includes different types of database integration, Security policy creation & Alerting, Outlier/Insiders detection, Database VA scanning and DAM appliance upgradation. • Conducted WAF (f5) PoC includes Application onboarding, Attacks analysis, blocking & staging , Virtual patching etc.• Worked with RSA Anti-Phishing team includes Identification of phishing websites & Brand abusive content, Involved into phishing website Take-Down process.• Proficiency on Hadoop (Cloudera Distribution) , Database , Linux , MS Office Suite.

#Knowledge of the general security concepts and methods such as vulnerability assessments, privacy assessments, intrusion detection, incident response, security policy creation, enterprise security strategies, architecture and governance.#Preparing technical reports and project plans as per services offered by organization.#Communication with development team to explain and demonstrate vulnerabilities to application/system owners, and assist with the mitigation of the identified vulnerabilities.#Researching the latest security best practices, staying abreast of the new threats and vulnerabilities and helping to disseminate this within the group as well as the organization.#Conceive of and implement technical and process improvement.#Experience in implementing and architecting information security systems.#Strong understanding of information security regulatory requirements and compliance issues.#Strong exposer of source code review - IBM source code scanner.#Worked on ELK stack for deep dive investigation of incident.#Prepared Incident Response(IR) plan for multiple cyber attack scenarios.#Cofigured incident Playbook/Automation on SOAR (DEMISTO) technology for multiple cyber attack scenarios.

•Worked on RFPs for technical aspects such as requirement Analysis, Prerequisites, Sizing of Solution, and Preparing Scoping Documents and Solution proposal Documentation.•Designed Solution Architecture and prepared project plans for PoCs and Implementations.•Given Technical Presentations and Conducted PoCs for ePO suite, Trend micro DS suite, Palo Alto traps , RSA netwitness , Anti-APT ,Deception technology ,OSSEC HIDS, Symantec HIPS,FIM module and Database Activity Monitoring (DAM) •Prepared technical documents, presentations and proposals for Indian as well as International Clients.•Designed Solution Architecture and Implemented SIEM for banking client in West Africa.•Configuration Audit for McAfee SIEM ,ePO and McAfee DLP•Conducted PoC for sand-boxing solution FirEye MVX and EX for leading bank.•Design & Perform technical integration of SIEM solution with other security solutions, vulnerability management, ticketing system, availability and performance monitoring, log management system for security events logs archival and asset management database.•Worked on SOC Service process flow and Automation of reports.•Vulnerability Assessment and Web Application scanning using Nessus ,Acunetix and Qualys Guard.•Penetration testing and web application testing with tool like nmap, Burp Suite, Nessus, kali, Metasploit.•Worked on McAfee SIEM, Implementation, Operations, Troubleshooting and Device Management.