Anurag J K

• Responsible for the recruitment, training, and management of a team of 10 associates.
• Extensive experience in creating operating procedures, incident handling documents, and other process documents.
• Perform real-time monitoring, analysis, and escalation of security events from multiple log sources using Splunk and Azure Sentinel SIEM.
• Coordinate with different teams to resolve queries.
• Manage SLA and deep-level analyses of escalated alerts.
• Gathering all the information of security alerts, evidence, and providing it to the L3 analyst.
• Follow up incidence response team for Remediation.
• Identify false positive and work with the appropriate team.
• Responsible for handling biweekly stand-up meetings.

I was part of the Cyber L2 Team for the Securonix SIEM Team, handling the following tasks using the SNYPR tool along with multiple native tools for investigation.

• Fine-tuning suggestion.
• Working on Top violators, violations and multiple Threat
• Models to capture high severity violators.
• handling Client call and expectation
• Weekly, monthly Report Preparation
• Handling multiple High priority P1 and P2 issues
• Datasource health check report preparation
• Dashboard creation in SNYPR
• KT to Team and junior resource
• Preparing Baseline Report for Clients.