Summary
Overview
Work History
Education
Skills
Certification
Disclaimer
Timeline
Generic
Bessy Baby

Bessy Baby

SOC Lead
Ernakulam

Summary

A dedicated and passionate professional with extensive customer service experience and task management skills serving a career in Cyber Security around 8 years.
Aiming to be a leading cyber security professional who can provide cutting edge security solutions to my employer and co-ordinate various state of the art security devices and solutions to safeguard our network infrastructure against data breaches, all by being part of an organization that pushes me to rewrite my boundaries.

Overview

8
8
years of professional experience
8
8
years of post-secondary education
3
3
Certifications

Work History

SOC Lead

TCS
12.2024 - Current
  • Managed a team of Security Operations Center (SOC) and dealt with security incidents.
  • Quickly assisted in resolving escalated security incidents.
    Provided technical subject matter expertise to identify and mitigate IT & Information Security risks related to incidents.
  • Performed Post Incident Reviews (PIR) on reported security incidents to assess the effectiveness of corrective measures.\
  • Runbooks created and updated with recommendations in line with best practices.
  • Assessed advisories and indicators of compromise (IOCs) and recommended precautionary measures to prevent security incidents.
  • Investigate and react to spam and phishing emails that are reported by users. with notification emails with precautionary measures.
  • Taken actions on brand abuse cases and reported and actioned on priority.
  • Interpret information security policies, analyze events and correlate data to develop new and/or fine-tune existing uses cases.
  • Conducted the security assessments to internally.
    Trained and mentored IT SOC Analysts and performed knowledge transfer.
  • Perform regular check on all the cases/INC's raised by L1 & L2 to ensure they are being actioned daily.
  • Perform Monthly audit on the all the INC/Task that are categorized as Security Alert and submit to CSIRT team for additional level of review.

Security Incident Handler

Eviden(Atos)
08.2022 - 11.2024
  • Managed a team of Security Operations Center (SOC) and dealt with security incidents
  • Quickly assisted in resolving escalated security incidents
  • Provided technical subject matter expertise to identify and mitigate IT & Information Security risks related to incidents
  • Performed Post Incident Reviews (PIR) on reported security incidents to assess the effectiveness of corrective measures
  • Runbooks created and updated with recommendations in line with best practices
  • Assessed advisories and indicators of compromise (IOCs) and recommended precautionary measures to prevent security incidents
  • Investigate and react to spam and phishing emails that are reported by users with notification emails with precautionary measures
  • Taken actions on brand abuse cases and reported and actioned on priority
  • Interpret information security policies, analyze events and correlate data to develop new and/or fine-tune existing uses cases
  • Conducted the security assessments to internally
  • Trained and mentored IT SOC Analysts and performed knowledge transfer

Senior Security Analyst -Tier 2

Netrix Worldwide
01.2022 - 08.2022
  • SIEM Work with asset owners to ensure the timely and efficient collection of computer security events and logs for the purpose of detecting and responding to information security incidents
  • Responsible for Incident Validation, Incident Analysis, Solution Recommendation, Resolve Complete
  • Addressed problems with information management in doing so, increased efficiencies, resulting in improved service outcomes

Cyber Security Specialist

Wipro Technologies
09.2016 - 01.2022
  • Project involves 24
  • 7 security event monitoring, analysis, triage incident alerting and reporting using Splunk SIEM console
  • Operating in a close team of computer/digital forensic, fraud, and other IT investigative experts
  • Ensure that all incidents are recorded and tracked to meet audit, compliance, and legal requirements
  • Publish reports to applicable teams
  • Continuous fine tuning of the SIEM tool according to new global threats by tracking the suspicious IP traffics Recognizes successful intrusions and compromises through review and analysis of relevant event detail information
  • Attended the training in Splunk Analysis and learned about its Operations, Architecture, the flow process
  • Worked effectively as a part of team with minimum supervision and on boarded new team members by providing KT
  • Responsible for deployment and fine tuning of correlation rules, reports, alarms as per customer requirement
  • Hands on knowledge of implementation and management of IPS/IDS, Firewall, VPN and other security products is an added advantage & antivirus and content filtering, URL filtering, authentication techniques, DMZ
  • Respond to network and host-based security events
  • Participate in detecting, investigating, and resolving security events
  • Provide documentation and project support
  • Act as second and/or third-tier support for the ISOC Analyst I
  • Act as a peer group leader to help train support staff
  • Serve as an escalation point for difficult problems and complex inquiries
  • Server as shift lead when necessary
  • Conduct detailed security event analysis from network traffic attributes and host-based attributes to identify information security incidents
  • Provide feedback on security control capability gaps based off security intrusion trends
  • Develop and maintain analytical procedures to improve security incident identification efficiency
  • Demonstrate ability to drive process improvements and identify gaps

Education

High School -

St.Joseph EMHSS
06.2011 - 03.2013

Bachelor of Science - Computer Science

Amrita School of Arts And Science
06.2013 - 03.2016

Master of Science - Software Engineering

Birla Institute of Technology And Science
02.2017 - 12.2020

Skills

Threat Hunting

Certification

Splunk Certified User 6.x

Disclaimer

I hereby declare that the above-mentioned particulars are true to the best of my knowledge and belief., Bangalore

Timeline

SOC Lead

TCS
12.2024 - Current

Security Incident Handler

Eviden(Atos)
08.2022 - 11.2024

Senior Security Analyst -Tier 2

Netrix Worldwide
01.2022 - 08.2022

Master of Science - Software Engineering

Birla Institute of Technology And Science
02.2017 - 12.2020

Cyber Security Specialist

Wipro Technologies
09.2016 - 01.2022

Bachelor of Science - Computer Science

Amrita School of Arts And Science
06.2013 - 03.2016

High School -

St.Joseph EMHSS
06.2011 - 03.2013

Similar Profiles

  • Raghu Uppatala

    Raghu UppatalaRaghu Uppatala

    Data Engineer at TCSData Engineer at TCS

    View Profile
  • Judy Thomas

    Judy ThomasJudy Thomas

    Senior Process Associate (Pharmacovigilance) at TCSSenior Process Associate (Pharmacovigilance) at TCS

    View Profile
  • HANAMANT MANE

    HANAMANT MANEHANAMANT MANE

    DevOps Engineer at TCSDevOps Engineer at TCS

    View Profile
Bessy BabySOC Lead