ALLAN PRINCE TJ
Cybersecurity Incident Response SOC
Kaliyakavilai
Summary
- A highly organized and hard-working individual looking for a responsible position to expand the learnings, knowledge, and skills in Cybersecurity Domain. Also, looking for an opportunity to mentor the audience who are introduce to Cybersecurity field.
- 7 years of experience in the IT Industry- Cybersecurity Incident Response.
- Experience in handling SEIM tool IBM Qradar, Azure Sentinel.
- Experience in configuring SIEM agent in Private Cloud environments.
- Proven experience in IOC based Threat Hunting from Microsoft log sources such as MDE, MDO, MDI and MCAS
- Hands-on experience in Advance Kusto Query Language (KQL).
- Proven knowledge in investigating Windows Endpoint attack by deriving the process tree.
- Technical work experience in monitoring Trend Micro Anti-Virus tool.
- Experience in working ITIL Incident Management and Change Management tool ServiceNow.
- Responsible for coaching, guiding and mentoring junior members in team to help them to scale up faster for handling committed deliverables.
- Prepare and present weekly, monthly & quarterly reports to the customer.
- Training knowledge in Qualys VM tools.
Overview
7
7
years of professional experience
18
18
years of post-secondary education
5
5
Certifications
Work History
Senior Security Analyst
Tata Consultancy Services
3 2023 - Current
- Experience in Admin, Offense Monitoring, Log Analysis and Report Creation in IBM QRadar SIEM tool.
- Analyzed security incidents post-resolution, identifying areas for improvement in both technical controls and incident response processes.
- Collaborated with IT teams to integrate security measures into development and deployment of new technologies.
- Improved incident response times by developing and maintaining cybersecurity playbooks for common attack scenarios.
- Responsible for doing Admin tasks like Dashboard Creation, Creation and fine-tuning of Use cases, Custom Event Properties, Health Check-up.
- Log monitoring and Incident analysis for various devices such as Firewalls, IDS, IPS, Windows Servers and Web servers etc.
- Sending Security Alert messages on newly found vulnerability to concerned Security team and respective customers without fail.
- Escalation and coordination with other domains for unresolved incidents.
- Configuring SIEM agents in windows Log sources
- Creating Changes for security requirement using ITIL tool ServiceNow and presented before CAB for approvals.
- Preparing weekly, monthly reports on SOC operations and sharing to customers.
Microsoft Threat Analyst
Wipro Technologies Limited
11.2021 - 02.2023
- Investigating trap hit and alerts
- Checking case details from Kusto clusters
- Connecting dots happened during investigations
- Creating story about case and confirming IOCs from VT and Research Studio
- Writing detailed report about case.
- Escalating to DEX team with conclusion (True Positive, False Positive and Benign Positive)
- Training team members with all process
- Maintaining leave trackers and shift trackers for team.
Cybersecurity Analyst
Wipro Technologies Limited
09.2017 - 10.2021
- Monitoring SIEM console and investigating alerts
- Creating Incidents for True Positive alerts and assign to L2 for deep investigations
- Collecting IOC from threat advisories and send for blocking in WAF and Perimeter Firewalls
- Flexibility to work in 24*7 shift
- Attend Trainings related to Cybersecurity.
Education
Post Graduate Diploma - Business Management
Symbiosis Center For Corporate Education
Pune, India 08.2019 - 08.2021
BE - Mechanical Engineering
St. Josephs Institute of Technology
Chennai, India 08.2012 - 04.2016
HSC - Maths Biology
Sacred Heart Matric And Hr. Sec School
Padanthalumoodu 06.2010 - 03.2012
SSLC - General Studies
Sacred Heart Matric And Hr. Sec School
Padanthalumoodu 06.1999 - 03.2010
Skills
Languages: Kusto Query Language (KQL)
IOC Threat Hunting Products: IBM Qroc, Microsoft Defender for Endpoint, Microsoft Defender for Identity, Microsoft Defender for Office365, Microsoft Cloud App Security
Tools: IBM Qradar, Azure Security Center, Kusto Explorer, Azure Data Explorer, Virus Total, Researcher Studio, Excel-plugins, ServiceNow
Training: Cyber Kill Chain, MITRE ATT&CK
Certification
CHFI Computer Hacking Forensic Investigator Certification
Personal Information
- Date of Birth: 10/11/1994
- Nationality: India
Hobbies
Cricket, Tree plantation
Languages
Tamil
Bilingual or Proficient (C2)
English
Advanced (C1)
Malayalam
Elementary (A2)
Timeline
Network Intelligence: SOC Analyst
06-2024
CHFI Computer Hacking Forensic Investigator Certification
07-2022
Microsoft Certified: Security Operation Analyst Associate
05-2022
Microsoft Certified: Azure fundamentals
05-2022
Microsoft Certified: Azure Security Engineer Associate
05-2022
Microsoft Threat Analyst
Wipro Technologies Limited
11.2021 - 02.2023
Post Graduate Diploma - Business Management
Symbiosis Center For Corporate Education
08.2019 - 08.2021
Cybersecurity Analyst
Wipro Technologies Limited
09.2017 - 10.2021
BE - Mechanical Engineering
St. Josephs Institute of Technology
08.2012 - 04.2016
HSC - Maths Biology
Sacred Heart Matric And Hr. Sec School
06.2010 - 03.2012
SSLC - General Studies
Sacred Heart Matric And Hr. Sec School
06.1999 - 03.2010
Senior Security Analyst
Tata Consultancy Services
3 2023 - Current
Similar Profiles
Vrunda ChindhadeVrunda Chindhade
HR Manager at Tata Consultancy Services, TCS, Tata Consultancy Services LimitedHR Manager at Tata Consultancy Services, TCS, Tata Consultancy Services Limited
Sreya BasuSreya Basu
Procare Analyst at Tata Steel(Tata Consultancy Services)Procare Analyst at Tata Steel(Tata Consultancy Services)
Arun VArun V
Program Manager at Tata consultancy services | Financial Ombudsman ServicesProgram Manager at Tata consultancy services | Financial Ombudsman Services