Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Avinash Nandurkar

Cyber security analyst
Pune

Summary

Cybersecurity professional with 4 years of hands-on experience in a 24x7 Security Operations Center (SOC), specializing in incident handling, threat detection, and response. Proven expertise in using industry-standard tools such as IBM QRadar, Microsoft Sentinel, CrowdStrike, SentinelOne, and Bitdefender to monitor, investigate, and contain security threats. Skilled in firewall log analysis, rule review, and configuration management across platforms like Checkpoint and Palo Alto, with a strong focus on identifying misconfigurations and unauthorized traffic. Adept at conducting end-to-end investigations, correlating data from multiple sources, and providing clear incident documentation to support compliance and continuous improvement. Known for swift and effective incident escalation, root cause analysis, and cross-team collaboration in high-pressure environments.

Overview

8
8
years of professional experience
4
4
years of post-secondary education
3
3
Certifications

Work History

Cyber Security Analyst IH

Securityq
Pune
10.2022 - Current
  • Proficient in IBM Qradar & Microsoft Sentinel for monitoring and responding to security alerts with reduced false positives.
  • Used SIEM (IBM QRadar / Azure Sentinel) to correlate firewall logs with other security data for incident detection and threat hunting.
  • Conducted firewall rule analysis to identify misconfigurations and unauthorized traffic, enhancing overall network security posture.
  • Used SIEM tools to correlate firewall logs with endpoint and identity data, supporting threat detection and incident investigation.
  • Proficient in analyzing firewall logs to identify signs of port scanning, lateral movement, and suspicious outbound connections.
  • Utilized EDR tools like CrowdStrike, Bitdefender, SentinelOne and Trend Micro to enhance endpoint threat visibility and response.
  • Checking the VPN logins / Remote access of the users & verify the legitimacy of the logins through the logs.
  • Applied expertise in configuring and fine-tuning security rules within IBM QRadar to meet specific customer requirements, including the establishment of whitelisting and exclusion policies.
  • Performed comprehensive log analysis using IBM QRadar and Azure Sentinel, applying various methodologies to effectively detect and investigate potential security breaches.
  • Investigated security incidents with identifying root causes and determining appropriate containment and remediation strategies.
  • Escalated incidents as necessary and documented findings meticulously to facilitate post-incident analysis and continuous improvement of security measures.
  • Utilized open-source tools such as VirusTotal, AbuseIPDB, and SecurityTrails to investigate and analyze malicious phishing emails, domains, and IP addresses, delivering well-founded recommendations for blocking or mitigation based on in-depth analysis.
  • Proactively identified and analyzed suspicious or malicious activities and code within the network environment, ensuring prompt detection and mitigation of potential threats.
  • Worked within a 24x7 Security Operations Center environment, collaborating closely with cross-functional teams to coordinate response efforts and implement remediation measures effectively.
  • Maintained detailed documentation of security incidents, including incident timelines, findings, and actions taken, to facilitate future reference and analysis and to ensure compliance with regulatory requirements.
  • Analyzed security incidents post-resolution, identifying areas for improvement in both technical controls and incident response processes.

Network Analyst

GTT Communications
Pune
10.2017 - 12.2020
  • Supported firewall rule analysis during security incidents to identify unauthorized traffic patterns and configuration issues.
  • Collaborated with firewall teams to review and update Access Control Lists (ACLs), ensuring accurate rule implementation during incident response.
  • Analyzed firewall logs to detect suspicious activity such as port scanning, unauthorized access attempts, and lateral movement.
  • Documented firewall configurations and rule justifications to support compliance audits and regulatory requirements.
  • Conducted fault reporting and resolution for DWDM systems including Huawei U2000, Huawei 1600, Huawei ADM & Ciena.
  • Investigated and resolved connectivity issues for end-users, ensuring minimal service disruption.
  • Performed troubleshooting of both network and hardware issues, including server-related problems, for international clients.
  • Opened alarm tickets for optical and equipment-related faults using the CMD tool and followed up to ensure resolution.
  • Created and managed maintenance windows in coordination with customers for link testing and upgrades.
  • Monitored BMS (Building Management System) alarms and dispatched appropriate teams to resolve onsite issues.
  • Addressed and resolved access issues at colocation sites to maintain uptime and security compliance.

Jr Customer Service Executive

Tata Communication LTD
Pune
10.2017 - 12.2020
  • Alarm Monitoring Fault Reporting and Fault Rectification of ADVA3000, ADVA2000, Huawei U2000, CIENA, OLP.
  • Supporting SOC team to provide observations and solutions on customer's dockets. Working on OSP and ISP (Outside POP and Inside POP) issues which are related to MAN media.
  • Working on Crammer, Remedy, CBOSS, SPOTLIGHT, NMS tools.
  • Working in FMS-SA NOC Team, Monitoring of MAN Backbone Network Alarm & Monitoring Mux related issue.
  • Taking weekly power reading for ADVA 2000 & ADVA 3000 Mux for fiber degradation report.
  • Opening optical or equipment related alarm docket by SERVICE NOW, REMEDY.
  • Inform to FE for any problem as alarm LOS, RDI, LINK DOWN, ISOLATION (FIBER Related Alarms) and AC MAINS FAIL, DC UV, HIGH ROOM TEMP and LOAD ON DG (INFRA related Alarms) in network for immediate action.
  • Provide Technical Support to FE on Field to solve problem at INFRA, FIBER & equipment related solutions.
  • Escalating Major Problem immediately to higher authorities for immediate effect & Support customers to understand problems on circuit & resolving fault within TAT.
  • Enable daily Operation and Maintenance activities to ensure that all related alarms are effectively clearing with minimum outages. Closing it with proper RFO.

Education

Bachelor of Engineering - Electronics & Telecommunications

Dr. D.Y. Patil School of Engineering
Pune
08.2012 - 08.2016

Skills

Siem (Qradar)

Phishing analysis

Email Investigation

Azure Sentinel

Crowd strike

DarkTrace

Sentinel One

EDR

undefined

Certification

CSA (Certified SOC Analyst)

Timeline

Cyber Security Analyst IH

Securityq
10.2022 - Current

Network Analyst

GTT Communications
10.2017 - 12.2020

Jr Customer Service Executive

Tata Communication LTD
10.2017 - 12.2020

Bachelor of Engineering - Electronics & Telecommunications

Dr. D.Y. Patil School of Engineering
08.2012 - 08.2016

Similar Profiles

CREATE PROFILE
Avinash NandurkarCyber security analyst