Security Analyst
CurrentSIEM: Splunk, Event Log Analyzer, UEBAEDR: Microsott Defender, Desktop Central(Manage Engine)Scanning Tool: Wireshark & NMAPEmail Security: Ironscales, MS Defender.Firewall & Network Monitoring: CiscoMerakiContent Filter: Cisco UmbrellaCloud Service: Azure Active DirectoryOS: Windows 10,11, Kali Linux, LinuxVirtualization: VMware Workstation,Hyper-V Manager, Virtual Box & CitrixWorkspace.Perform real-time monitoring security events & alerts using SIEMtools.Responsible for running the Vulnerability Assessments andSecurity patching for Endpoints & Servers monthly basis.Reviewed and validated security events as positive or falsepositive and follow an incident response process to log incidentsand begin resolution.Incident Management (phishing, email spam, malware, exploits) toidentify appropriate mechanisms to contain and mitigate risk.Maintain incidents & service request assigned through ticketingsystem within the agreed SLA.