Apr 2023 – Apr 2025 · 2 yrs

• Incident Response Management, Cyber Threat Hunting, Threat Vulnerability Management, DLP, Cloud Security, Threat Intelligence, Malware Analysis, VMWARE Carbon Black deployment and EDR simulation, Vulnerability Management

Apr 2022 – Mar 2023 · 11 mos

• Incident Response, Threat Hunting, Security Operations, Threat Management, Vulnerability management, Incident response Management
• Auditing domain name servers (DNS) for phishing attacks, stale DNS issues, downtime from DNS record deletions, and reducing DNS and web attacks.
• Analysing users' digital footprints to track their activities and detect known security breaches.
• Logging and ingesting network activity through SIEM solutions.
• Detecting an attacker's activity by analysing logs and memory, identifying and pinpointing an attack using these logs, and applying the correct configuration of networks by segregating them.
• Regularly scanning the system for vulnerabilities with vulnerability scanning software and protecting systems with antivirus or anti-malware software

May 2021 – Mar 2022 · 10 mos

• Incident Response, Security Operations, Threat Management
• Keeping an eye on security access
• Internal and external security audits are carried out.
• Identifying the fundamental cause of security breaches.
• Keeping the company's incident response and catastrophe recovery plans up to date.
• Verifying third-party vendor security and working with them to achieve security needs

Sep 2020 – Nov 2020 · 2 mos · Pune, Maharashtra, India

• Cyber Forensic

Apr 2020 – May 2020 · 1 mo

• Social engineering
• Introduction to type of malware

Jan 2020 – May 2021 · 1 yr 4 mos · Bhubaneshwar, Orissa, India · On-site

• Hands on experience of IBM Qradar , Splunk , Symantec endpoint protection, checkpoint , Microsoft ATP defender & Phish me Triage.
• 1. Monitoring alerts on real time basis.
• 2. Real time Log Analysis from different devices like IDS, IPS, FIREWALL & PROXY.
• 3. Maintaining security monitoring tool and investigating suspicious activities.
• 4. Recognizng attacks based on the signatures.
• 5. Differentiation between false positive and true incidents.
• 6. Raising the tickets on the security incident and follow up the tickets.
• 7. Working on unapproved vulnerability scanner attempt(Zgrab, OpenVAS)
• 8. AWS CLOUD ( Failed API request , Login failure to AWS console from outside of network)
• 9. Data loss prevention test and firewall stop logging report
• 10. Hands on experience of DLP tools to analyse the data loss request and tickets.

May 2018 – Jun 2018 · 1 mo · Bhubaneshwar, Orissa

• JAVA INTERNSHIP