Salman Patel

Experience

• 

  Microsense Private Limited

  Jan 2017 - Jan 2018

  Network Security Engineer

  SIEM: DNIF HYPERCLOUDWAF : RadwareEmail Security IMSVA DDEI Scan Mail: TrendMicroWeb Security Websense IWSVA DDAN : Forcepoint TrendMirco DNS Secuirty : InfobloxEDR: TrilixFirewall Analyser: Skybox Manage device to archive uptime as per SLA and upgrade software's.Handling of day-to-day operation, Troubleshooting and incident investigation.Working with VAPT to virtually patching vulnerability discover on internet facing application.Creation and implementation of custom alerting dashboards in SIEM for investigations.Log related issue, identifying and working with respective stakeholdersMonitoring and management Logs in SIEM On-Boarding new application on WAF Handling day-to-day user related calls of WAFIntegration of application, update SSL certificate and policy on WAF Managing different DNS records for organization.Creation of Policies to improve mail security with Mail Gateway Handling day-to-day user related calls of Email security Upgradation and management of Web SecurityHandling day-to-day user related calls of web Security Monitoring and reporting daily task related to EDROn-Boarding new firewalls in Firewall AnalyserMonitoring and reporting monthly Firewall Analyser Afișează mai puține

• 

  Orient Technologies Pvt. Ltd.

  Aug 2018 - Dec 2021

  SECURITY ANALYST

  Responsible for SOC operations in 24x7 environment.Real time monitoring of alerts in the Security Operations Centre from different devices such as Firewall, IDS, IPS,WAF,Proxy,Email Security,DNS security, Operating systems like Windows, Linux, Windows Servers, Databases, Web Servers and Networking Devices.Conduct proactive monitoring of IOCs, investigation, and mitigation of security incidents to determine intrusion and malicious events across the environment.Follow detailed processes and procedures to analyze, escalate, and assist in remediation of critical information security incidents.Responding to computer security incidents by collecting, analyzing, providing details evidence and ensure that incidents are recorded and tracked in accordance with its guideline and requirements.Ensure the SOC analyst team is providing excellent customer service and supportUnderstanding to develop Use cases, Building blocks and reference set. Analyze Threat Patterns on various security devices and Validation of False/True positive Security Incidents.Investigate all reported suspicious emails and determine whether the emails are malicious, non-malicious or legitimate and reply to the user who reported the suspicious email with a message reporting the findings and any recommendationsPerform investigations and evaluations of network traffics, read and interpret logs, sniffer packets, and PCAP analysis with RSA Security analytics and WiresharkThreat hunting on Fireeye EDR during internal audits and when required. Create and publish daily dashboard report.Conduct knowledge transfer training sessions with new joiners and other team members. Afișează mai puține

• 

  Tata Communications

  Jan 2022 - Jan 2023

  Information Security Analyst

  Risk Assessment & Management: Conducting thorough risk assessments and vulnerability analysis to identify and mitigate potential threats.Incident Response: Assisting in incident response planning and execution, including documentation and reporting.Network Security: Basic understanding of firewalls, intrusion detection systems (IDS), and security information and event management (SIEM) tools.Security Awareness Training: Contributing to the development and delivery of security awareness training for employees.Regulatory Compliance: Knowledge of GDPR, HIPAA, and other compliance standards relevant to data protection.Technical Proficiency: Familiar with security tools such as Wireshark, Nessus, and Metasploit. Afișează mai puține

• 

  Paramount Computer Systems

  Aug 2023 - Jan 2025

  Information Security Consultant

  Assess and analyze clients' current security posture through audits, vulnerability assessments, and penetration testing.Design customized security solutions tailored to meet clients' specific needs and mitigate identified risks effectively.Implement security controls, protocols, and policies to safeguard clients' sensitive data and assets from internal and external threats.Provide guidance and recommendations to clients on best practices for security architecture, network security, endpoint security, and cloud security.Conduct security awareness training sessions for employees to educate them about cybersecurity threats and promote a culture of security within the organization.Collaborate with cross-functional teams to integrate security measures into software development lifecycle processes and ensure the security of applications and systems.Stay updated on emerging security threats, technologies, and industry trends to proactively adapt security strategies and defend against evolving cyber threats• Provided recommendation as per concluding evidence against controls.• Plan and execute operational audits of various business area using risk-based audit methodology.• Identify opportunities to improve risk posture, developing solutions for remediating or mitigating risks.• Manage relationships the security, technology and business stakeholders to identify and communicate security risks and mitigation approach.• Performed User Privilege Validation to implemented user access control• Conducted Process Review and Policy document Review• Advising and providing input to the security and technical teams on risk management.• Recommendations.• Engage with executive and technical stakeholders. Afișează mai puține