Majid Baba

DevOps Engineer

Pune, Maharashtra, India6 yrs 4 mos experience
Highly Stable

Key Highlights

  • Expert in incident response and security operations.
  • Proficient in deploying SIEM solutions and managing security incidents.
  • Strong collaboration skills with internal teams and vendors.
Stackforce AI infers this person is a Cybersecurity professional with expertise in incident response and security operations.

Contact

LinkedIn

Skills

Core Skills

Incident ResponseSecurity OperationsIncident Management

Other Skills

Analytical SkillsCloud MigrationCloud SecurityCommunicationCritical ThinkingCyber Threat Hunting (CTH)Cyber Threat Intelligence (CTI)DLPDocumentationEDREmail SecurityEvent MonitoringInformation SecurityInfrastructureInvestigation

About

I am a passionate and motivated individual, who enjoys working in an environment where I can learn new skills as well as use my existing knowledge. A hardworking and reliable team player with the ability to meet targets and work under pressure. Adaptable and able to build good relationships at all levels. A friendly and flexible approach to any task that is presented whilst being eager to listen, understand and help others when needed. Willing to take any responsibility or training necessary to progress within the job role

Experience

6 yrs 4 mos
Total Experience
2 yrs 1 mo
Average Tenure
2 yrs 2 mos
Current Experience

Domo chemicals

Cyber SOC Engineer

Apr 2024Present · 2 yrs 2 mos · Pune, Maharashtra, India · Hybrid

  • Primarily working as a Security Deployment and L3 Engineer for security incidents escalated by our security vendor.
  • Deploying use cases in Microsoft Sentinel based on the MITRE ATT&CK framework.
  • Managing XDR solutions (Defender for Endpoint, Microsoft Defender for Identity and Office, Microsoft Defender for Cloud Apps) for investigation, policy creation, and more.
  • Leading incident response for cyberattacks, specializing in phishing, malware, identity compromise, and third-party vendor compromise cases.
  • Deploying workbooks as indicators under SIEM for technical and management dashboards and monitoring purposes.
  • Managing migration projects including cyber security vendor management.
  • Acting as an Escalation Engineer for our security vendor and overseeing all daily SOC operational task including knowledge transfer to SOC analysts, feedbacks, managing L1 team etc.
  • Supporting threat hunting and cyber security documentation in collaboration with the Cybersecurity Architect.
  • Managing SIEM access for internal and external accounts.
  • Collaborating with vendors and internal teams to enhance the organization’s overall security posture (DLP, MDI, Exchange Online).
  • Proposing alternative DLP monitoring solutions by creating indicators in workbooks accessible to both SOC and compliance teams for actionable insights.
  • Creating technical documentation, including SOPs, procedures, dashboards and guidelines, whilst presenting them to executive board members.
  • Handling additional management requests, such as creating SIEM cost alerts, maintaining
  • health monitoring dashboards, and updating executive dashboards.
  • Working on Road Map initiatives to enchante security posture of the organisation.
Incident ResponseMicrosoft SentinelXDR solutionsIncident ManagementCyber Threat Intelligence (CTI)Security Operations+3

Accenture

2 roles

Security Delivery Analyst

Promoted

Nov 2022Apr 2024 · 1 yr 5 mos

  • Provide analysis and incident response support for security alerts.
  • Responsible for monitoring security devices, handling security incidents and health
  • status checks of the security devices and handling suspicious alerts in the client network.
  • DLP Triaging, weekly and monthly reporting and handling escalations.
  • Contribution to preparing SOC documents including SOP, workbooks, and other process
  • related documents.
  • Daily track SLA compliance for monitoring. If any malicious activity found while doing reports, investigation and quick respond is initiated like Isolating device, reset user password, revoking sessions, disabling users and giving the report to the team and client on that activity.
  • Assist the track lead to create and delegate Weekly/Monthly SOC Report to interact with customers and discuss findings and resolutions.
  • Handling the Ad hoc request from the clients.
  • Support in analyzing rules on Firewall. Further, closly working with Senior engineering team in setting up SIEM uses cases, managing EDR, XDR etc.
  • Correlate events and document a security incident report with all collected data from various sources such as Antivirus, Firewall, Proxy, IDS, IPS and other network devices.
  • Tools: MS Sentinel, MCAS, EDR, Log Analytics, Defender Anti-Virus, Service Now
Incident ResponseDLPSecurity MonitoringSIEMEDRServiceNow+1

Security Delivery Associate

Dec 2020Nov 2022 · 1 yr 11 mos

Trigent software inc

Infrastructure Engineer

Jan 2020Nov 2020 · 10 mos

  • Client: Accenture

Education

School of Engineering & Technology, BGSB University (State University)

Bachelor in technology — Electronics and communication

Jan 2015Jan 2019

Stackforce found 100+ more professionals with Incident Response & Security Operations

Explore similar profiles based on matching skills and experience

Shajakhan Kamalmydeen

Shajakhan Kamalmydeen

Sr Staff IT Architect

at Thermo Fisher Scientific

Bengaluru, India17 yrs 6 mos exp
Technical Solution DesignEnterprise Solution DesignNetwork DesignData Center Infrastructure
Hassan K.

Hassan K.

Deputy General Manager | Cloud Solutions Architect – DevSecOps

at iDigiCloud Technologies

Mumbai, India13 yrs exp
Cloud ArchitectureDevSecOpsDevOpsSystem Administration
PAPAN SAHA

PAPAN SAHA

Security Delivery Consultant

at Accenture

Bengaluru, India10 yrs 7 mos exp
Network SecurityFirewall ManagementInfrastructure Management
satya pramod

satya pramod

Technical Consultant

at HCLTech

Bengaluru, India14 yrs 7 mos exp
Wireless NetworkingNetwork AdministrationNetwork ImplementationTelecom SupportNetwork Configuration
Mohammed Musadiq Hussain

Mohammed Musadiq Hussain

Security Engineer

at LTIMindtree

Bengaluru, India3 yrs exp
Network Security ImplementationApplication Security ArchitectureZero Trust
Sridhar Perumal

Sridhar Perumal

Senior Information Technology Specialist

at Great Learning

Bengaluru, India3 yrs 8 mos exp
Vulnerability AssessmentEndpoint SecurityTechnical SupportAsset ManagementNetwork Troubleshooting
Sumant Kumar Nayak

Sumant Kumar Nayak

Network Infra transformation Associate Manager

at Accenture in India

Bengaluru, India16 yrs 9 mos exp
Network InfrastructureChange ManagementOperations ManagementData Center ManagementInfrastructure Implementation
DEEPALI DONGRE

DEEPALI DONGRE

Assistant Manager

at Deloitte

Mumbai, India3 yrs 10 mos exp
IT Audit & AssuranceIT Risk Management