CHINTALAPUDI RAVITEJA
Lead SIEM Engineer
Benguluru,Karnataka
Summary
- I am currently working as a Lead SIEM Engineer on the Next Gen SIEM & UEBA tool (SNYPR) at Securonix with a total of 7+ years of experience.Hands-on experience with Securonix SNYPR , IBM Qradar & Google Chronicle in Implementation,Analytics and Administration.
- Strong experience in Individually handling all severity (Sev:1, Sev:2, Sev:3, Sev:4) issues related to Incidents and adhoc requests from client using SIEM technology. • Demonstrated excellence in the field of managing SOC,reviewing alerts, incident management ,Malware analysis , Use case/ Policy Development and Administration.
- Organized and dependable candidate successful at managing multiple priorities with a positive attitude. Willingness to take on added responsibilities to meet team goals.
- Hardworking and passionate job seeker with strong organizational skills eager to secure a position. Ready to help team achieve company goals.
Overview
7
7
years of professional experience
4
4
years of post-secondary education
8
8
Certificates
1
1
Language
Work History
Lead SIEM Engineer
Securonix India PVT LTD
08.2020 - Current
- I am currently working as a Lead SIEM Engineer on the Next Gen SIEM & UEBA tool (SNYPR) at Securonix with a total of 6+ years of experience.
- Hands-on experience with SNYPR & Qradar in Implementation,Analytics and Administration.
- Configuring and monitoring Reports/ Dashboards based on the needs of the clients and working on the data to co-relate the sequence of events in an Investigation.
- Integration of various log sources around 100+ Vendor types GLobally with SIEM Secuornix Next Gen(SNYPR) using syslog-ng and nxlog and API based Connectors across Global Customers.
- Hands-on MYSQL database.
- Responsible for developing new content in the master content package and Highlighting any gaps in parser / policies and remediating the same.
- Development of SIEM Custom Use-Cases based on data sources and developing new threat models based on the various attack vectors; combining various exfiltration channel to highlight the inherent threats .
- Architecting the UEBA Content based on the needs and requirements of the customer
- Developing parsers to ensure the data flow into the solution.
- Mentoring and managing the team to scale up on various tasks.
- Handling around 200 + Onboarded Customers globally .
SOC Analyst
Tech Mahindra Limited
04.2017 - 08.2020
- A focused professional with total of 3+ years of experience in Information security at Tech Mahindra .
- Have hands on experience on the SIEM tool (IBM QRadar) with QRadar Administrator activities and expertise on analysing offenses
- Strong experience in Individually handling all severity (Sev:1, Sev:2, Sev:3, Sev:4) issues related to Incidents and adhoc requests from client using SIEM technology
- Demonstrated excellence in the field of managing SOC,reviewing alerts, incident management and Malware analysis
- Analyzing spam / URL phishing / spoofed emails and providing the necessary action accordingly
- I have secured some skills in Packet Analysis through Wireshark tool and Splunk SEM tool
- Strongly initiative, creative and ability to learn new technologies
- Regular Health checkup and tuning of SIEM technology for smooth functioning and avoid failure
- Threat Detection, Investigating offenses, Analysis, Response and Reporting
- Monitoring more than 1500 log sources which are integrated with IBM QRadar with a maximum of 20 actionable alerts per day
- Notifying any suspicious events/incidents and verification of events/ incidents
- Monitor Firewall/IDS alerts and status as per checklists defined
- Sending Security Alert messages on newly found vulnerability to the Security emergency response team, IT team and respective customers without fail
- Analyzing correlation rules to reflect the global security threats
- Raising and Implementing Change Control, preparing knowledge base for all the incidents, change and problems resolved
- Preparing SOP (Standard Operations Procedures) and sharing it with customer and internal teams for the resolving the issues.
- Reporting phishing incidents & maintaining tracker.
- Knowledge on Integration multiple Devices like Windows, Linux Servers, McAfee EPO,
- AD, FMC, VMWare and FortiGate Firewalls etc
- Integrating the devices using collectors and verifying whether the logs are being received at QRadar.
- Knowledge on QRadar Plugin installation to extend SIEM functionalities (Pulse, Assistant,
- UBA, Advisor, Operation)
- Importing Updated signatures on Qualys Knowledgebase
- Initiating Authenticated scans on Qualys vulnerability management tool
- Asset groups and Asset Tags maintenance
- Extracting Remediation report
- Completed CCNA training
- Knowledge on Comptia Security+ , Wireshark packet analyzer.
Education
B.Tech - ECE
VIT UNIVERSITY
Vellore 06.2012 - 05.2016
Skills
Securonix SNYPR NextGen SIEM
Certification
CEH V12 Certified
Timeline
SC-200: Microsoft Security Operations Analyst
11-2023
CEH V12 Certified
01-2023
Azure Security: AZ-500 ((Udemy)
12-2022
Certified SNYPR Content Developer
01-2022
Certified SNYPR Administrator
11-2021
Certified SNYPR Security Analyst (CSSA)
02-2021
Lead SIEM Engineer
Securonix India PVT LTD
08.2020 - Current
Qualys Vulnerability management certification.
01-2020
IBM Certified Associate Administrator Security QRadar SIEM V7.2.8
12-2019
SOC Analyst
Tech Mahindra Limited
04.2017 - 08.2020
B.Tech - ECE
VIT UNIVERSITY
06.2012 - 05.2016
Similar Profiles
PARTHO GHOSHPARTHO GHOSH
Sr Program Manager - Customer Success & Delivery at Securonix India Pvt LtdSr Program Manager - Customer Success & Delivery at Securonix India Pvt Ltd
Abhishek NarasimhanAbhishek Narasimhan
Manager, Detection Engineering at SecuronixManager, Detection Engineering at Securonix
Shailaja MShailaja M
Associate Consultant, Engineering at GlobalLogic India Private LimitedAssociate Consultant, Engineering at GlobalLogic India Private Limited