Oct 2024 – Jun 2025 · 8 mos · Greater Bengaluru Area · On-site

Nov 2020 – Nov 2024 · 4 yrs · On-site

• Managed Tier-3 SOC (Threat hunting and Major/critical incident investigation), Digital forensics and Incident response teams for Microsoft In-house security operations center.
• Increased operational security by making critical security decisions and overseeing a team of cyber experts across the organization to effectively address cyber incidents.
• Developed & enhanced the integrated Security Operations Centre for advanced cyber threat monitoring by implementing cyber resilience frameworks, standard operating procedures.
• Experienced in preparing executive-level reports and presentations, summarizing key findings, incident response actions, and recommendations.
• Investigate and manage major cyber security incidents and breaches.
• Track and perform threat hunting on emerging and advanced persistent threats.
• Build metrics and KPI for daily operations and for projects focused on Microsoft security tools.
• Fostered a healthy and inclusive team environment and Served as a mentor, coach, and facilitator.

Apr 2019 – Nov 2020 · 1 yr 7 mos

Aug 2017 – Apr 2019 · 1 yr 8 mos

• As the Senior Security Analyst of the 24/7 SOC, I assist in the continuous monitoring of alerts from multiple security tools.
• Conduct host forensics, network forensics, log analysis, and malware triage in support of incident response investigations
• Perform Analysis on suspicious samples & submit to AV Vendor for detection.
• Perform analysis on threats, exploited URLs, network packets for malicious URL indicators & submit for blocks.
• Perform analysis of attack activities such as network reconnaissance probing/scanning, DDOS, malicious code activity.
• Perform and create detailed Malware analysis reports and early warning indicator reports.
• Manage and maintain SIEM solution to include developing and monitoring content to support Security Operations analysis.
• Perform Triage and analyze incidents in real-time using security controls and SIEM.
• Identification of security incidents and perform containment, remediation by live response.
• Conducted Red team exercise to identify full impact of a compromise.

Nov 2012 – Aug 2017 · 4 yrs 9 mos · Chennai Area, India

• As the security researcher of Mcafee AV, I have analyzed suspicious files submitted by the users to identify the sample is a malware or clean file, once determined as malware. Malware definitions will be created for the users.
• Virus Information Library and a detailed malware analysis report will be created for the malware as per the user’s requirement.
• Perform Analysis on webpages to identify facets (Downloads, Phishing, Exploits, Links to malicious sites, etc) and reports will be added to Mcafee threat database.
• Providing feedback and motivating team members to achieve SLA and quality while analyzing malware.
• Created SOP & Handbook which streamlined the process, this helped us to acquire new process of Malware Database collection
• Performing QA Audits to make sure the team adheres to the process and quality is achieved.
• Providing prompt and accurate information on individual performance.
• Coordinate with clients and generate Ad hoc reports and excel dashboards as per their requirement.
• Arranging & chairing weekly team meetings, focusing on targets & achievements.
• Implementing new initiatives. Attending scrum calls to make sure that all the information is shared across the zones.