Ratan Thakur

Experience

• 

  Hindusthan National Glass & Industries Limited

  Jan 2016 - Aug 2016

  Graduate Engineering Trainee
• 

  Tek Infotree

  Mar 2017 - Jun 2022

  Technical Specialist/Lead
• 

  HCLTech

  Jun 2022 - Jan 2025

  Working with Global Cybersecurity team. • Deep dive analysis of triggered alerts using RSA NetWitness SIEM, SOAR, CrowdstrikeFalcon, UEBA and other analysis tools• Handling incidents escalated by the L1 team in 24x7 rotational shifts• Investigating incidents, remediation, tracking, and follow-up for incident closure withconcerned teams, stakeholders• Conduct security assessments, risk analysis and root cause analysis of security incidents.• Major P1 and P2 incident handling and immediate action to contain and resolve theissue and prevent further damage or loss to business operations.• Perform initial investigation and triage of potential incidents and remediate escalateincidents as applicable.• Build weekly and monthly reports as per SOC Manager and CISO requirements• Co-ordinate with auditing and compliance team by providing requested reports and data• Periodic upgradation/creation of correlation rules based on emerging threats andrequirements following MITRE Attack US-Cert and other TTP sources.• Participate in case review meetings to walk through the handled incidents to peers, SOCManager, and CISO• Develop and provide Information Security Awareness Training and education initiatives toend users and IT staff• Schedule and Provide training sessions to newly joined engineers in team.• Good experience in working/communicating with cross-functional IT infrastructure teams likenetwork, system, database, application, security to build and manage effective securityoperations.• Identify opportunities for process improvement and fine tuning of use cases• Conduct detailed analysis of incidents and create reports and dashboards• Participate in security design discussion with various teams (technical and management) andprovide advice on how SIEM/SOAR can be used effectively.• Incident review and closure as per internal and external audit requirements Show less

  • Team Lead

    Jul 2024 - Jan 2025

  • Senior Engineer

    Jun 2022 - Jun 2024
• 

  NAB

  Jan 2025 - now

  Associate Vice President