V

VIGNESH KUMAR KANDASAMY

Software Engineer

Singapore, Singapore11 yrs 1 mo experience
Most Likely To SwitchHighly Stable

Key Highlights

  • Over 12 years of experience in cybersecurity.
  • Expert in managing Security Operations Centers.
  • Proficient in SIEM implementation and incident response.
Stackforce AI infers this person is a Cybersecurity expert with a focus on Security Operations and Incident Response.

Contact

LinkedIn

Skills

Core Skills

Network SecurityCloud SecuritySecurity Operations CenterIncident ResponseSecurity Incident ResponseSiem ManagementSecurity MonitoringLog ManagementSecurity Operations

Other Skills

Cloudflare security product supportLayer 3/4/7 DDOS mitigationManage SOC operationsVulnerability managementSecurity Incident ResponderLog analysisMalware analysisThreat huntingSOARThreat intelDigital ForensicSIEM - Splunk and LogRhythmIT Security project implementationKPI & KRI reportingDNS Security

About

12+ years of experience in Security Operation Center and worked on the following areas:- Infra Vulnerability management, PCI DSS - internal & external, Acunetix ,Splunk, Nessus/Tenable & Demisto, Burpsuite Cloudflare security features includes: DNS Security, CDN, WAF , DDOS protection, BOT management, Firewalls, Magic Transit etc. Managed and lead SOC Operations, Threat detection and Incident response. Intrusion analysis, web attacks, malware analysis and analyze spam & phishing emails. Monitor threats at Perimeter network, hosts, system and application. IT Security Operations, ITQ/RFP, Procurement and vendor management Threat Intelligence Platform - Recorded future, Intsight and Bitsight UEBA/UBA- Exabeam and Securonix EDR- Crowdstrike & Trendmicro Digital forensics -FTK & Autopsy SIEM/MSSP Implementation and Administration - Logrhythm, Splunk, ArcSight, Symanetc Log Collection platform Security Device Administration - Splunk, Logrhythm, Menlo, Nexpose, McAfee CASB, TrendMicro cloud app security, Forescout Having experience in building up new SOC, creating Process document , IR , playbooks etc. Enterprise Log management Solution & agents : nxlog , Snare agents and Central, Syslog server implementation and administration

Experience

11 yrs 1 mo
Total Experience
2 yrs 9 mos
Average Tenure
5 yrs
Current Experience

Paypal

2 roles

Senior Cybersecurity Engineer

May 2025Present · 1 yr

Member Of Technical Staff - Information Security Engineer

May 2021Present · 5 yrs

Cloudflare

Security Operation Engineer

Feb 2021May 2021 · 3 mos · Singapore

  • Cloudflare security product support, Layer 3/4/7 DDOS mitigation for customers
Cloudflare security product supportLayer 3/4/7 DDOS mitigationNetwork SecurityCloud Security

Nanyang technological university

IT Security Operations Consultant - Manager

Jul 2019Jan 2021 · 1 yr 6 mos · Singapore

  • Manage SOC operations, Vulnerability management,Security Incident Responder, IT Security, Log analysis, Malware analysis, threat hunting, SOAR, Threat intel, Enterprise Snare, UEBA- Securonix and Exabeam , AV and EDR, Digital Forensic, SIEM - Splunk and LogRhythm, IT Security project implementation and management, KPI & KRI reporting, DNS Security, SOC Process documents, Procurement and Security Strategy.
Manage SOC operationsVulnerability managementSecurity Incident ResponderLog analysisMalware analysisThreat hunting+9

Citi

Information Security Specialist

Jan 2019Jul 2019 · 6 mos · Singapore

  • Implementation and Administration - SIEM, Arbor, NAC appliance
  • Perform UAT & Production implementation, reporting, COB tests
  • Change Request, Coordinating with different teams
  • Help Incident response team in investigation
SIEM implementationNAC applianceUAT & Production implementationIncident responseSecurity Incident ResponseSIEM Management

Olam

Senior Lead Engineer

Jul 2017Dec 2018 · 1 yr 5 mos · Chennai Area, India

  • 1. Managed Security Operations Center for Olam
  • 2. Worked in Splunk SIEM - Correlation rule creation, fine tuning of rules, Dashboard creation, Splunk query & Splunk implementation & administration.
  • 3. Mentoring junior security analyst in SOC
  • 4. Experience in Security monitoring and Incident Response
  • 5. Experience in building up new SOC, creating process and Managing a SOC, managed a new SOC team
  • 6. Analyze spam & phishing emails and take necessary action
  • 7. Incident handling and tracking the incidents status till the closure. Incident Handling & Intrusion Analysis; Log Analysis; Malware Analysis – Behavioral & Visual Analysis; Packet Analysis, Vulnerability & Threat Management; Incident Response & Management
  • 8. Run SOC review meeting every week with to Management to understand the SOC operations, Incident & Security status. Share weekly reports to the management
  • 9. Device integration in Splunk SIEM
  • 10. Building new syslog/centralized servers for log storage
  • 11. Experience in setting up a new SOC, Security policy document creation, SOC process document creation
  • Vulnerability Assessment
  • 1. Perform internal vulnerability assessment using Nessus tool on monthly basis and follow up with the respective team till the closure of the vulnerability
  • 2. Work with Vendors to perform external vulnerability assessment
  • 3. Interacting with difference team members to mitigate the vulnerability
Managed Security Operations CenterSplunk SIEMIncident handlingVulnerability AssessmentSecurity Operations CenterIncident Response

Symantec

3 roles

MSS Security Engineer

Promoted

Aug 2015Jul 2017 · 1 yr 11 mos · Chennai Area, India

  • Onboard device logs to Symantec MSS for security monitoring
  • Manage Linux servers, End to End Implementation and administration of Symantec Log Collection platform
  • Configure end device like Firewalls, AV, Proxy, Databases,etc etc to onboard the logs
  • Validate and analyse the logs to make sure we are receiving the right logs to perform security monitoring of the client infrastructure
  • Create parser, correlation rules , reports, dashboards etc.Troubleshoot network and technical issues, interact with clients to fix the issues
  • Installation log collection agents (nxlog,snare,epilog,splunk),Symantec Event agent and collectors
  • install hot fixes, patches, perform migration of Log collection platforms
  • Work with various teams inside SOC,Help customer to perform POC, presales, help Service delivery managers to resolve customer issue.Project management, client facing environment
  • Worked in Symantec UK SOC,Very good knowledge and exp in Symantec MSS processes and tools
  • Train all new hires who join in our team, both technical as well as process wise, setup LAB for new hires, troubleshoot any technical issues, research or testing purpose.
  • SIEM UAT (User Acceptance Testing):
  • Working as a Technical Lead for Symantec MSS operations side to test the SIEM proprietary product before it was released to Operations
  • Perform SIEM UAT and report back to Management and development team in daily basis
  • Review logs from client devices to support security monitoring in MSS by working with Product Management team
  • Customer Quick Start Guide Review:
  • Working as a Knowledge share Lead for MSS to review all technical KBs created by Engineers and publish it in the Symantec knowledge base and SharePoint sites
  • Schedule meetings with Product Management and Operations to provide feedback on the Technical guides created by Engineering team
  • Review all the public facing Quick Start Guides for MSS Operations and report back to the Engineering team for any changes.
Onboard device logsManage Linux serversSymantec Log Collection platformCreate parser, correlation rulesSecurity MonitoringLog Management

Associate MSS Security Engineer

May 2014Aug 2015 · 1 yr 3 mos · Chennai Area, India

  • Onboard device logs to Symantec MSS for security monitoring
  • Manage Linux servers, End to End Implementation and administration of Symantec Log Collection platform
  • Configure end device like Firewalls, AV, Proxy, Databases,etc etc to onboard the logs
  • Validate and analyse the logs to make sure we are receiving the right logs to perform security monitoring of the client infrastructure
  • Create parser, correlation rules , reports, dashboards etc.
  • Troubleshoot network and technical issues, interact with clients to fix the issues
  • Installation log collection agents (nxlog,snare,epilog,splunk),Symantec Event agent and collectors
  • install hot fixes, patches, perform migration of Log collection platforms
  • Work with various teams inside SOC
  • Perform UAT testing for Log Collection Platform
  • Help customer to perform POC, presales, help Service delivery managers to resolve customer issue
  • Project management, client facing environment
  • Very good knowledge and exp in Symantec MSS processes and tools
Onboard device logsManage Linux serversSymantec Log Collection platformLog ManagementSecurity Monitoring

Trainee MSS Operations

Jun 2012May 2014 · 1 yr 11 mos · Chennai Area, India

  • Security Device onboarding to MSS:
  • Manage customer deployments and integration of MSS Services.
  • Manage MSS SIEM tool.
  • The primary responsibility is to plan and execute the on-boarding of the MSS Service into a client’s environment. This involves working closely with the various sales and operational teams to ensure that all relevant technical information is gathered, agree and produce a technical on-boarding plan with agreed mile stones that is acceptable and realistic to the client and internal MSS teams alike
  • Conduct client meetings to identify and address issues with on-boarding
  • Configure client’s firewalls (Cisco ASA & checkpoint), IDP/IPS (Sourcefire) and SEPM to get the logs to MSS
  • Interacting with clients over the phone or WebEx session to make sure the customer issues are fixed
  • Basic understanding on all the network devices
  • Analyze logs of all network devices of clients to make sure valid logs are received to Symantec MSS for Security monitoring
  • Log Collection Platform Management (RHEL 6.5, 6.6, 6.7):
  • Manage clients Log Collection Platform Management
  • Implement and Baseline the LCP servers to meet Symantec MSS standards
  • FTP configuration
  • Network configuration, DNS, Application installation, IP tables, Log analysis
  • Troubleshoot on all the issues faced in the servers by interacting with clients
Security Device onboardingManage customer deploymentsLog Collection Platform ManagementSecurity OperationsLog Management

Education

BITS Pilani Work Integrated Learning Programmes

Master of Technology - MTech — Computing Systems and Infrastructure

Jul 2022Jul 2024

Anna University Chennai

Bachelor of Engineering - BE

Jan 2007Jan 2011

Stackforce found 100+ more professionals with Network Security & Cloud Security

Explore similar profiles based on matching skills and experience

Tanzeem Khatri

Tanzeem Khatri

Information Technology Security Specialist

at Volkswagen Group Digital Solutions [India]

India9 yrs 7 mos exp
Tim Toa

Tim Toa

Founder & CEO

at Tiger Forensics Limited

Hong Kong, Hong Kong13 yrs 11 mos exp
David French

David French

Senior Manager of Detection Engineering

at Docusign

Fort Collins, United States20 yrs 3 mos exp
Threat HuntingDetection EngineeringMalware AnalysisThreat ResearchBehavior-based Detections
SK

Sudhir Kumar Goswami

CyberSecurity Engineering Associate Manager

at Accenture Czech Republic

Prague, Czechia12 yrs 8 mos exp
ComplianceCyberSecurityResearchSIEM
Mohit Vadehra

Mohit Vadehra

Lead Security Analyst

at Gartner

Sydney, Australia9 yrs 4 mos exp
Penetration Testing
Yogessh Karape

Yogessh Karape

Lead Delivery Manager-Information Security

at Bajaj Finserv Health

Pune, India10 yrs 8 mos exp
ISO 27001Incident ResponseInformation Security Management
Divita Shekhar

Divita Shekhar

Director

at EY

Bengaluru, India11 yrs 7 mos exp
CybersecurityIT SecurityIncident ResponseInformation SecuritySecurity Transformation
Bharath H C

Bharath H C

Principal Security Engineer

at First Advantage

Bengaluru, India18 yrs 10 mos exp
Data Loss PreventionInformation SecuritySecurity ArchitectureZero Trust Architecture