Amar Chawhan
Mumbai
Summary
Results-driven SOC L1 Analyst with expertise in real-time security monitoring and incident escalation. Proficient in Qradar reporting and vulnerability assessments, delivering critical support that enhances client network security and mitigates risks.
Having around 2.1 year of professional experience as Cyber Security Analyst. Good understanding of various SOC processes, like monitoring, analysis, playbooks, escalations, and cyber attacks. Experience on working in MSSP Seeking an Opportunity to join an organization that values innovation by utilizing my skill set in developing strategies for preventing cyber-attacks on corporate systems. Ability to identify and mitigate security threats.
Overview
2
2
years of professional experience
Work History
SOC L1 Analyst
Rime Soft Pvt. Ltd
Mumbai
11.2023 - Current
- Worked in a 24x7 Security Operations Center
- Monitoring Qradar dashboards to keep track of real events.
- Act as first level support for all Security Issues
- Analyzing Real time security incidents and checking whether it’s true positive or false positive
- Performing Real-Time Monitoring, Investigation, Analysis, Reporting and Escalations of Security Events from Multiple log sources
- Raising true positive incidents to the respective team for further action
- Creating tickets in ServiceNow and assigning it to the respective team and taking the follow-up until closer
- Escalating the security incidents based on the client's SLA and providing meaningful information related to security incidents by doing in-depth analysis of event payload, providing recommendations regarding security incidents mitigation which in turn makes the customer business safe and secure
- Contacting the customers directly in case of high priority incidents and helping the customer in the process of mitigating the attacks
- Determine the scope of security incident and its potential impact to Client network; recommend steps to handle the security incident with all information and supporting evidence of security events
- Monitoring security systems and networks for anomalies
- Investigate malicious phishing emails, domains, and IPs using Open-Source tools and recommend proper blocking based on analysis
- Creation of Qradar content like, Report, Dashboards etc
- Maintain keen understanding of evolving internet threats to ensure the security of client network
Education
Master of Commerce -
Rani Chennamma University
Vijayapur06-2018
Certification
Skills
- Security monitoring
- Incident analysis
- Threat investigation
- Qradar reporting
- Event escalation
- Client communication
- Vulnerability assessment
- Malware analysis
- EDR
- Firewall
- SIEM
- Reports and documentation
Languages
English
Proficient (C2)
C2
Hindi
Proficient (C2)
C2
kannada
Native
Native
Marathi
Proficient (C2)
C2
Tools and Technology
- SIEM (Security Information and Event Management): IBM Qradar
- Ticketing tool: ServiceNow
- Endpoint point security tool: Sophos
- Email gate-way: mimecast
- Sandbox tool: App.any.run
- Open Source Tools: Virus total, IP Void, AbuseIPDB, MX tool box, URL scan.io
Declaration
I hereby declare that the above-given information is correct to the best of my knowledge and belief
(Amar Chawhan)
Timeline
SOC L1 Analyst
Rime Soft Pvt. Ltd
11.2023 - Current
Master of Commerce -
Rani Chennamma University
Certification