Vipul Bali Email and Phone Number

Worked in 24x7 Security Operations Center• Monitoring customer network using ArcSight SIEM• Act as first-level support for all Security Issues• Analyzing Real-time security incidents and checking whether it's true positive or false positive• Performing Real-Time Monitoring, Investigation, Analysis, Reporting, and Escalations of Security Events from Multiple log sources.• Raising true positive incidents to the respective team for further action• Creating tickets on service now and assigning hem to the respective team and taking a follow-up until closer• Escalating security incidents based on the client's SLA and providing meaningful information related to security incidents by doing in-depth analysis of event payload, and providing recommendations regarding security incidents mitigation which in turn makes customer business safe and secure.• Contacting customers directly in case of high-priority incidents and helping them in the process of mitigating attacks.• Determine the scope of a security incident and its potential impact to the client network; recommend steps to handle the security incident with all information and supporting evidence of security events. • Monitoring security systems and networks for anomalies• Work closely with business units to ensure that they know what and how to feed data into the Arcsight SIEM• Co-ordinate with networking teams to maintain and establish communication to remote Arcsight Connectors• Investigate malicious phishing emails, domains, and IPs using Open-Source tools and recommend proper blocking based on analysis• Installing ArcSight Connectors• Upgradation of ArcSight Connectors• Integration of new devices with ArcSight such as Windows, Linux, CISCO Firewall, Routers, Switches etc.• Doing the troubleshooting if any device is not sending the logs to the ArcSight.• Creation of ArcSight content like Correlation Rules, Query, Report, Dashboards etc.

Monitor, analyze, troubleshoot and resolve system events for various technologies, including Volte, 4G LTE and 3G voice/data, and managing equipment and services supported by the Systems Operations Team• Good experience in trouble shooting• Established robust infrastructure and data capacity for new applications and communication between sites.• Performed virtual machine provisioning, VM priority setup and template cloning.• Organized frameworks for transferring secure data from internal to external and public networks.• Managed, tracked and coordinated problem resolution and escalation processes.• Monitored network capacity and performance to diagnose and resolve complex network problems.