Apr 2022 – Sep 2022 · 5 mos · Trivandrum, Kerala, India

• ✓ Worked as a Security Analyst II in SIEM, Log Management, SOC Operations, Phishing email
• Analysis, and Incident Handling, Malware analysis, investigating on the triggered alerts and
• creating tickets and followingup.
• ✓ Investigate malicious phishing emails using Open Source tools and recommend proper blocking
• based on analysis.
• ✓ Responsible for performing security event analysis, incident response, and other related
• activities as part of a global 24x7x365 Security Operations Center.
• ✓ Security incident reviews and investigations for scenarios/alerts such as Email Phishing,
• Malware, Splunk, Cyber Threat Intelligence and Potential Security Issue. Responding to alerts
• from the various monitoring/detection systems and platforms within defined SLAs.
• ✓ Following detailed processes and procedures to analyze, respond to and/or escalate cyber
• security incidents.
• ✓ Help build efficiencies in incident tracking and handling via automation and investigate
• opportunities for process efficiencies. Perform malware investigation through Windows
• Defender ATP(WDATP)
• ✓ Internet Filtering Request – Service request for approval/rejection of Destination URL, Source
• IP, and Whitelist technical account based on the user business requirement.
• ✓ Prioritize multiple high-priority tasks and formulate responses/recommendations to team
• members in a fast-paced environment.Training new joiners, Creating Weekly and Monthly SOC Metrics and coordinating with On-site
• InfoSec Team for Incidents and Weekly-Ops call.

Oct 2019 – Apr 2022 · 2 yrs 6 mos

• ✓ Worked as a Security Analyst II in SIEM, Log Management, SOC Operations, Phishing email
• Analysis, and Incident Handling, Malware analysis, investigating on the triggered alerts and
• creating tickets and followingup.
• ✓ Investigate malicious phishing emails using Open Source tools and recommend proper blocking
• based on analysis.
• ✓ Responsible for performing security event analysis, incident response, and other related
• activities as part of a global 24x7x365 Security Operations Center.
• ✓ Security incident reviews and investigations for scenarios/alerts such as Email Phishing,
• Malware, Splunk, Cyber Threat Intelligence and Potential Security Issue. Responding to alerts
• from the various monitoring/detection systems and platforms within defined SLAs.
• ✓ Following detailed processes and procedures to analyze, respond to and/or escalate cyber
• security incidents.
• ✓ Help build efficiencies in incident tracking and handling via automation and investigate
• opportunities for process efficiencies. Perform malware investigation through Windows
• Defender ATP(WDATP)
• ✓ Internet Filtering Request – Service request for approval/rejection of Destination URL, Source
• IP, and Whitelist technical account based on the user business requirement.
• ✓ Prioritize multiple high-priority tasks and formulate responses/recommendations to team
• members in a fast-paced environment.Training new joiners, Creating Weekly and Monthly SOC Metrics and coordinating with On-site
• InfoSec Team for Incidents and Weekly-Ops call.

Apr 2019 – Sep 2019 · 5 mos

• The project is proposing to develop reports intended to facilitate
• forecasting and help with decision making on Store and Warehouse
• sales for Boots Supply business. The MI project targets to deliver 10
• analytical reports implemented using Microsoft Power BI. The project
• addresses the data load from the source systems, the Data
• Warehouse and the development of the cubes as required for the 10
• Power BI reports in Agile environment.
• Responsibilities:
• ✓ Involved in static Testing
• ✓ Metadata Testing on the database.
• ✓ Cube testing on the KPIs and Non KPIs against DB
• ✓ Power BI Report testing on calculations and UI.
• ✓ Defect tracking in Azure Devops
• ✓ Source data load check on ADF (Azure Devops Factory)
• ✓ ETL testing.
• ✓ Source and target table comparison using Query Surge