Mohammed Yasar H

Experience

• 

  UST

  Aug 2018 - Nov 2024

  – SIEM Management: Detected incidents, applied security rules, and reviewed Splunk-generated reports and dashboards.– Alert Escalation: Processed and escalated SIEM alerts through Palo Alto XSOAR, ensuring follow-ups until resolution.– Network Security: Managed URL blocking and whitelisting requests using Microsoft Defender.– Email Security: Analyzed and mitigated phishing attempts using tools like PhishLabs and Splunk.– IP Reputation Analysis: Evaluated IP reputation using various tools to block harmful IP addresses.– URL Verification and Sandbox Analysis: URL threat analysis using tools such as VirusTotal, Palo Alto Networks URL Filtering, and various sandbox environments.– Malware Incident Handling: Managed infected devices, executed virus removal, and utilized malware analysis tools to safeguard client environments.– Security Alert Investigation: Conducted in-depth investigations and resolved infections using Splunk and Microsoft Defender.– Incident Management: Ensured effective incident response and documentation through Remedy, maintaining proper tracking and timely resolution. Show less -- SSMS installation and configuration -- DDboost installation and configuration.-- Configure Backups, Maintenance jobs creation and Configuring SysAdmin DB.-- On boarding server monitoring and Validating SQL logs.-- Open/Update/Close incidents and catalog tasks using Service Now.-- Monitor and take actions on SQL alert mails.-- Verifying Blockings (Using SQL and AppDynamics)-- Patching for SQL servers and windows servers as part of monthly patching.-- Troubleshooting: Space issues, SQL log Usage, Tempdb Usage and login Issues.-- Work closely with internal support groups to identify, resolve, and coordinate the resolution ofinfrastructure related problems and issues.-- Configuration and troubleshooting of different monitoring tools like CA Nimsoft, Solar winds Orion and AppDynamics.-- Report Generation/Maintenance scheduling on different monitoring tool like Solar winds Orion and AppDynamics. Show less L1 Support:Provided first-level support for Windows/Linux servers, ensuring system uptime and troubleshooting issues.Assisted in data center migration projects and resolved infrastructure problems in collaboration with internal teams.Monitoring and Incident ManagementPerformed 24/7 batch monitoring using tools like Control-M 9.0, CA Nimsoft, SolarWinds Orion, and AppDynamics.Documented and resolved incidents in enterprise ticketing systems while adhering to SLAs and OLAs.Network TroubleshootingConducted first-level network link troubleshooting and coordinated with ISPs for issue resolution.SOP and Knowledge TransferCreated and maintained SOPs for data center operations.Delivered knowledge transfer sessions for seamless team onboarding.Escalation and CollaborationEscalated complex issues to higher-level support teams and ensured prompt resolution through effective collaboration.Process Adherence and OptimizationEnsured compliance with processes and SLAs, and implemented improvements to enhance efficiency.System Uptime ManagementMonitored and maintained system uptime, responding promptly to incidents to minimize downtime.Customer SupportHandled diverse customer issues with effective communication and timely resolutions. Show less

  • SOC Analyst III

    Nov 2022 - Nov 2024

  • Associate II Cloud Infrastructure Services

    Nov 2020 - Nov 2022

  • Associate System Engineer

    Aug 2018 - Nov 2020