Snigdha Saxena — DevOps Manager
SIEM engineer with 10 years of experience in maintaining high availability and performance of Splunk Enterprise platform (SIEM solution), build use-cases to cater end user and business requirements. Using my understanding of Cybersecurity principles, I participate in incident response analysis with SOC team. • Upgrade and maintain the healthy Splunk Enterprise environment • Ingest data from various data inputs like network ports, static files, scripts, etc. • Create and manage knowledge objects like reports, alerts, dashboards in Splunk • Manage log retention and archival policies • Analyze log collection to reduce the cost • Build use-cases as correlation searches for SOC team in Splunk Enterprise Security • Maintain high availability of incident review dashboard in Splunk Enterprise Security • Deploy and manage healthy Splunk User Behavior Analytics (UBA) cluster • Troubleshoot issues in Splunk UBA cluster • Create and manage data sources in Splunk UBA • Work with SOC team to investigate and tune threats and anomalies in Splunk UBA • Integrate Splunk UBA threats and anomalies in Splunk ES data in Splunk UBA • Enhance Splunk ES and Splunk UBA asset tables with CMDB data • Implement role-based access control on indexes in Splunk • Clean, pre-process and onboard data using Cribl Stream • Conduct trainings for other security teams to use Splunk platform optimally • Document the new integrations, implementations and training materials • Conduct regular feedback activities for enhancements • Work with HR and legal teams to recover company assets from ex-employees • Build dashboards to monitor and alert on Splunk Enterprise cluster health • Gather requirements from stakeholders for new projects • Handle privacy tickets and other security incidents as a part of threat management team • Direct exposure to upper-level management and handled stakeholder calls • Manage log retention and archival policies • Re-ingest archived data from thawed buckets
Stackforce AI infers this person is a Cybersecurity and Infrastructure specialist with extensive experience in SIEM solutions.
Location: Bengaluru, Karnataka, India
Experience: 11 yrs
Skills
- Splunk
- Cybersecurity
- Database Management
- Infrastructure Monitoring
Career Highlights
- 10 years of experience in Splunk Enterprise platform.
- Expert in cybersecurity incident response and analysis.
- Proficient in developing dashboards for infrastructure monitoring.
Work Experience
Cisco
Solutions Engineer (1 yr 4 mos)
Splunk
Solutions Engineer (3 mos)
VMware
Security Engineer (3 yrs 1 mo)
Deloitte
Lead Solution Advisor (1 mo)
Solution Advisor (2 yrs)
Baxter International Inc.
Senior IT Analyst Security (1 yr)
Accenture
Application Development senior Analyst (3 yrs 4 mos)
Application Development Analyst (3 yrs 4 mos)
Splunk Developer (3 yrs 4 mos)
Education
Bachelor’s Degree at Graphic Era University
