Experience

• 

  Ind global digital private limited

  Dec 2011 - Aug 2015

  Network engineer
• 

  Infosys

  Sept 2015 - Dec 2019

  Security analyst
• 

  Inspira enterprise india limited (npci 2019 to 2021 and hpcl 2021 to 2023)

  Dec 2019 - Apr 2023

  Sr network security analyst

  • Responsible for resolving all LAN/WAN connectivity other issues and analyse Vulnerabilities reports from various scans and assessments by acting on high risk / critical Vulnerabilities to other Vulnerabilities.• Management of system security and file system security policies and analysing systems to determine ways of improving performance and conducting routine checks, warranty claims, hardware failure, replacement, software up-gradation, download patches and hotfixes.• Working on upgraded version of IAM tools like SailPoint, Plain ID and application integrations.• We given data access and Application Access control using Plain ID• Plain ID is replaced with CAM OES.• API integrations, identity federation, single sign-on (SSO), and directory services• Infrastructure deployment from the very basis to complete function and Information Security Policy as per PCI-DSS Audit Compliance review controls related to various business process of entity for compliance with COSO framework.• automating tasks, customization, and integration efforts within the Plain ID environment.• Responsible for conducting structured security certification and accreditation (C&A) activities utilizing the Risk Management Framework and in compliance with the Federal Information Security Modernization Act (FISMA) requirements.• Validate Plain ID tool in non-production Environment • Performing OS updates and upgrading application and actively used Splunk to monitoring/metric collection for applications in a cloud-based environment and also maintained all shared resource and monitor free and utilized disk space.• Responsible of setting up projector, audio/video devices for meetings and lectures and keeping and tracking inventory of all loaner laptops issued to students and staffs. Show less

• 

  Atos

  May 2023 - Jan 2024

  Sr network security engineer

  • Monitoring and identify positive security events from Microsoft Azure sentinel dashboard during the shift hours and take necessary action for the critical events. • Managed and monitored Azure Sentinel SIEM for a multi-cloud environment, detecting and responding to security incidents. • Conducted proactive threat hunting using KQL to identify potential security risks and indicators of compromise (IoCs). • Investigated security alerts and incidents, collaborating with SOC teams to mitigate threats and document findings. • Set up and monitor data sources to collect security logs and events from various platforms and applications. • Raising the tickets for true incidents and resolving it within SLA. • Analyzing Phishing and Spam related mails using header analysis, Body analysis using various tools and block them in O365. • Primary responsible for monitoring, analyzing, and responding to network traffic for indications of malware activity • Develop custom queries using Kusto Query Language (KQL) to search for indicators of compromise (IoCs). • Work closely with other security teams, including network security, endpoint security, and identity management teams. • Collaborate with DevOps teams to ensure security is integrated into the CI/CD pipeline. • Investigate alerts triggered by Azure Sentinel to determine the root cause and potential impact. • Coordinate with the Security Operations Center (SOC) or incident response teams to respond to detected threats. Show less

• 

  Grant thornton

  Jan 2024 - now

  Sr security lead

  • Led incident response efforts and optimized SOC architecture with SIEM, EDR, and SOAR solutions.• Developed automated threat detection rules, reducing false positives and improving SOC efficiency.• Integrated Rapid7 Insight AppSec for dynamic application security testing and educated SOC team members on best practices.