ANUGRAH Pr. SINGH

• Led client engagement initiatives to identify and address business needs.
• Evaluated security technologies and recommended enhancements for systems.
• Provided expert advice on emergency response planning and crisis management.
• Investigated possible cybersecurity breaches and coordinated response efforts.
• Assessed existing IT infrastructure to identify potential security risks.
• Developed security plans and procedures to protect sensitive data.
• Took appropriate protective actions to secure the network after reviewing vulnerability scanning results.
• Reviewed system logs and identified suspicious activity.
• Conducted training sessions for employees in other departments to alert about various security issues, including issues.
• Accumulated essential security information due to a recent corporate cyber attack, implemented corporate-mandated changes, and enforced new security guidelines and resolution procedures.
• Ensured compliance with applicable laws such as GDPR and HIPAA regulations.
• Mitigated risk by providing immediate and effective emergency response security.
• Streamlined mission preparation by conducting real-world scenarios for intelligence, surveillance, and reconnaissance systems operators on classified aircraft.
• Monitored security equipment and operational logbooks to control building access.
• Maintained essential security knowledge due to recent corporate cyber attack, implemented corporate-mandated changes, and rolled out new security guidelines and resolution procedures.
• Counseled new hires on radio usage and communications protocols between aircraft and ground personnel.
• Collaborated with cross-functional teams to enhance service delivery processes.
• Provided training sessions for junior consultants on best practices and methodologies.
• Managed documentation of project progress and updates for client communication.
• Prepared reports summarizing progress, risks, and issues associated with projects.
• Developed and presented comprehensive business proposals to senior management.
• Supported senior consultants in the development of strategic plans and presentations.
• Provided ongoing support and maintenance for implemented business solutions.

• SOC Escalation handling, High Severity Incident Triage, High visible Incident Troubleshooting, Expected Activities Investigate and remediate threats and alerts escalated from L1, L2 as well as L3
• First-touch for alerts involving VIPs, detection infrastructure, and DLP
• Follow established SOPs, with flexibility to exercise professional judgment
• Escalate significant or complex threats
• Recommend and implement tuning and enhancement to defined alerting rules and SOPs
• The security specialist is responsible for conducting information security investigations because of security incidents identified by the tier 1 security analyst who are monitoring the security consoles from various SOC entry channels (SIEM, Tickets, Email and Phone), Act as a point of escalation for tier 1 SOC security analysts in support of information security investigations to provide guidance and oversight on incident resolution and containment techniques
• Also handling the threat intel que to resolve the security incident and using Microsoft defender for threat hunting.
• Collaborated effectively with stakeholders, partners and project teams to aid timely delivery against technical roadmaps.
• Developed junior staff through targeted coaching and mentoring, improving capabilities and competencies of technical teams.
• Responded to customer concerns quickly and effectively, minimising service disruptions.
• Communicated complex technical information in clear, easy-to-understand ways, aiding swift resolution of service user issues.

• Supported and aligned efforts to gather, document and interpret client requirements to drive system development and meet clients' needs.
• Specified processes for maintaining project documentation, managing scopes and adjusting work schedules for on-time delivery of tasks and milestones.
• Assessed clients' needs to determine specifications and developed and implemented bespoke systems, fulfilling users' requirements.
• Worked with project teams in implementing and testing systems against requirements for error detection and quality assurance.
• Utilised process data to generate reports and articulate ideas and viewpoints to senior management.
• Adapted workflow to meet need business needs.
• Kept updated on advancements to latest information system solutions.
• Investigate security incident daily
• Well-versed with complete event annotation, incident management, attack analysis
• Mainly working as an Incident Responder at L2/L3 level
• Providing complete resolution on every ticket coming to L2/L3 Queue
• Providing complete SOC/IR solution to client
• Perform Security SIEM Operational tasks -Analysis, Suggestion of fine tuning on existing rules
• Answer, evaluate, and prioritize incoming requests for cyber-security assistance from various IT teams across the organization
• Analysing security logs of multiple security devices (Qradar, Proxy, FireEye HX, Cylance AV, Firewalls) and raising incident for any kind of security breaches
• Providing support on Creation of Rules, Reports and Dashboards
• Performing Weekly, monthly reports to present Infront of customer
• Taking necessary action to prevent reoccurrence and suggest mitigation steps

• Ensure the SOC analyst team is providing excellent customer service and support Working on escalated ticket coming from L1
• Providing complete RCA at L2 end if possible if not than further escalating to L3 and working with them to resolve tickets
• Endpoint detection and analysis
• Evaluate existing technical capabilities and systems and identify opportunities for improvement
• Interpret information provided by tools to form a sound hypothesis regarding the root cause of an event
• Perform incident response activities such as host triage and retrieval, malware analysis, remote system analysis, end-user interviews, and remediation efforts
• Creates new ways to solve existing production security issues
• Provide cloud security support to the clients
• Research and test new security tools/products and make recommendations of tools to be implemented in the SOC environment.
• Growth Path: Key Result Areas: Maintaining Creation & access to the security groups, shared drives & distribution lists via active directory
• Maintaining access through Oracle Identity Manager (OIM), Active directory & Forefront identity manager (GLAM)
• Monitoring, measuring and reporting on process efficiency and effectiveness
• Ensuring timely (SLA) coordination and completion of incidents, outages, alerts during the shift
• Meetings with client on weekly/daily basis as required discussing process updates and improvements/ escalations
• Handling major and critical incidents, SLA breaches
• Follow up that customer handling is according to commitments.

On Payroll of Adecco working for Sterlite Technology Ltd at client site (IIIT-Allahabad). Sterlite is the Internet service provider of IIIT-A Girls Hostels. Sterlite has installed their router, switches, firewall and access points in Girls Hostel area. so my primary responsibilities are :

• To taking care of company installed devices at client site.
• Weekly check the configuration of all devices and send the report to reporting manager.
• Daily check the health status of all devices and create the report.
• If client facing any internet connectivity, configuration and other technical issues then provide the complete support to resolve that issue.
• Taking calls, tickets from client side and resolving them on priority basis.
• Maintained up-to-date licences and certifications for dependable software and systems compliance.
• Performed thorough fault resolution and triage through expert technical support, escalating complex issues to completion.