Summary
Overview
Work History
Education
Skills
Certification
Skills
Timeline
Generic

C CHAITANYA

Bengaluru

Summary

With a proven track record at Capgemini, I excel in leveraging Cloud Security and SIEM tools like Azure Sentinel and Splunk to enhance cyber defense capabilities. My expertise in incident response and my analytical approach have significantly improved security postures. Skilled in collaboration and strategic problem-solving, I drive effective cybersecurity solutions.

Overview

7
7
years of professional experience
1
1
Certification

Work History

SECURITY Analyst II

Capgemini
Bengaluru
01.2024 - Current
  • Experience with SIEM Azure Sentinel perform technical investigation and RCA and recommend remediation techniques for the true positive incidents and prepare SOPs for the resolved issues
  • Experience in Configuring Sentinel Incidents, Workbooks, Hunt queries, Notebooks
  • Experience in Developing SIEM and SOAR use cases and log data collection the Aure Sentinel and Azure log analytics tool
  • Expertise in building use cases around NIST and MITRE ATT&CK framework to enable detection at various stages of a cyber attack
  • Implementation of use cases using KQL with complex correlation SSL across different data sources in Azure sentinel
  • Service Health & Security monitoring using Microsoft 365 console and compliance actively review and respond based on system/security alerts and notification
  • Experience in Handling Indicators blocking and Whitelisting in 365 defender portal
  • Performed Folder exclusion policies and integration other device based polices, tags in Defender for endpoint
  • Working on research Microsoft Defender Security Centre as Endpoint Security tool where we investigate and Analyse different threats with different levels of severity
  • Preparation of incident analysis reports based on daily checklist and monthly reports for clients, including top virus-infected machines, top vulnerabilities

Senior system Engineer

EPAM Systems India Private Limited
Hyderabad
05.2023 - 12.2023
  • Expertise in Splunk Enterprise architecture such as Search Heads, Indexers, Deployment server, License Master, Heavy/Universal Forwarders
  • Extensive knowledge of Splunk architecture development and various components
  • Passionate about Machine data and operational Intelligence
  • Hands-on experience in Splunk SIEM and Advanced security tools like EDR and Cloud security
  • Constantly monitoring the dashboard, analysing the alert triggered in SIEM tool (Splunk, Q-radar) on daily basis in rotational 24/7
  • Good knowledge experience on central logging, log management, and Rich Experience in Handling Phishing emails, Malware outbreaks and Brute force attacks in soc environment
  • Experience in monitoring & responding to basic support parsers cases raised with CrowdStrike support
  • Presenting weekly software overview report to US management which contains data of performance in terms of incidents

Associate

PWC India
Kolkata
09.2021 - 03.2023
  • Monitor and troubleshoot Known/Unknown treats
  • Monitor daily Server and client component updates
  • Knowledge of Email Fraud Defence and authentication mechanisms (DKIM/DMARC/SPF)
  • Investigation, containment, and other ai end to end response activities with business stakeholders and groups in SOC
  • Detailed phishing analysis with email containing malicious files and URL
  • Proxy logs analysis and suspicious files downloaded analysis and educating users about security policies
  • Good Knowledge on MITRE ATT&CK, diamond model, or other cyber threat kill chains
  • Good working knowledge of abuse disk encryption using native tools BitLocker
  • Monitor network activity to identify issues early and take proactive steps
  • Experience in performing host-based analysis, and artifact analysis using EDR solution - Carbon Black Response
  • Experience in performing infrastructure and tuning problem solving and provide decision making solutions network packet analysis, and malware analysis in support of security investigations and incident response
  • Experience in working on Host isolation syslog strategy and advanced threat analysis using the EDR Carbon Black Response
  • Performed Coordinate collaborate web security service level agreements (SLA) investigate either security issues or complex operational issues
  • Experience SLA troubleshooting risk management reviewing system interface and application logs database (e.g., web or mail server logs), feedback either regex or complex operational issues

System Engineer

KADER EXPORTS (P) LTD.
BHIMAVARAM
11.2017 - 03.2021
  • Responsible for Deployment, Administration, Monitoring, Management, Maintenance, and Support of Trend Micro Security solution
  • Update and Manage Anti Malware and firewall policy as per customer requirements
  • Strong technical understanding of network fundamentals and common Internet protocols, DNS, HTTP, HTTPS / TLS, TCP/IP, Linux and SMTP
  • Experienced in information technology operating systems innovation examining suspicious emails for malicious content and provide parsers recommendation collaboration scope customer bash service actions to user experience manner
  • Implemented VLANs to node execution real time data analysis research and development testing segment traffic to improve consulting hardware network efficiency and update status
  • Managed day-to-day critical thinking analytic statistics operations for device networking, ensuring seamless connectivity for communications end users
  • Teamwork validation communicate with non – technical staff to improve technical skills on testing network best practices and security protocols
  • Recommendations computer security information systems Strengthened strategic network security by deploying firewalls, configuring access control lists (ACLs), and conducting growth routine vulnerability assessments and continuous improvement

Education

Bachelor of Technology - ECE

Bhimavaram Institute of Engineering & Technology
Bhimavaram
04.2015

Skills

  • Cloud Security: Azure Sentinel
  • SIEM: Splunk
  • SIEM: Q-radar
  • EDR: Crowd strike falcon
  • EDR: ATP Defender
  • Cortex XDR
  • Email Security: Proofpoint
  • Email Security: TRAP
  • Email Security: TAP
  • IDS/IPS: Alert investigation & Remediation
  • Symantec Data Loss Prevention – DLP
  • THREAT INTELLIGENCE: Virus total
  • THREAT INTELLIGENCE: URL Scan
  • THREAT INTELLIGENCE: IP Void
  • THREAT INTELLIGENCE: MX Toolbox
  • THREAT INTELLIGENCE: Abuse IPDB
  • THREAT INTELLIGENCE: IBM X-force
  • THREAT INTELLIGENCE: ANY RUN
  • Incident response: ServiceNow
  • Incident response: ITSM

Certification

Certified Azure Fundamentals, AZ-900

Skills

Azure Sentinel, Splunk, Q-radar, Crowd strike falcon, ATP Defender, Cortex XDR, Proofpoint, TRAP, TAP, Alert investigation & Remediation, Symantec Data Loss Prevention – DLP, Virus total, URL Scan, IP Void, MX Toolbox, Abuse IPDB, IBM X-force, ANY RUN, ServiceNow, ITSM

Timeline

SECURITY Analyst II

Capgemini
01.2024 - Current

Senior system Engineer

EPAM Systems India Private Limited
05.2023 - 12.2023

Associate

PWC India
09.2021 - 03.2023

System Engineer

KADER EXPORTS (P) LTD.
11.2017 - 03.2021

Bachelor of Technology - ECE

Bhimavaram Institute of Engineering & Technology
C CHAITANYA