Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

CHINTALAPUDI RAVITEJA

Lead SIEM Engineer
Benguluru,Karnataka

Summary

  • I am currently working as a Lead SIEM Engineer on the Next Gen SIEM & UEBA tool (SNYPR) at Securonix with a total of 7+ years of experience.Hands-on experience with Securonix SNYPR , IBM Qradar & Google Chronicle in Implementation,Analytics and Administration.
  • Strong experience in Individually handling all severity (Sev:1, Sev:2, Sev:3, Sev:4) issues related to Incidents and adhoc requests from client using SIEM technology. • Demonstrated excellence in the field of managing SOC,reviewing alerts, incident management ,Malware analysis , Use case/ Policy Development and Administration.
  • Organized and dependable candidate successful at managing multiple priorities with a positive attitude. Willingness to take on added responsibilities to meet team goals.
  • Hardworking and passionate job seeker with strong organizational skills eager to secure a position. Ready to help team achieve company goals.

Overview

7
7
years of professional experience
4
4
years of post-secondary education
8
8
Certificates
1
1
Language

Work History

Lead SIEM Engineer

Securonix India PVT LTD
08.2020 - Current
  • I am currently working as a Lead SIEM Engineer on the Next Gen SIEM & UEBA tool (SNYPR) at Securonix with a total of 6+ years of experience.
  • Hands-on experience with SNYPR & Qradar in Implementation,Analytics and Administration.
  • Configuring and monitoring Reports/ Dashboards based on the needs of the clients and working on the data to co-relate the sequence of events in an Investigation.
  • Integration of various log sources around 100+ Vendor types GLobally with SIEM Secuornix Next Gen(SNYPR) using syslog-ng and nxlog and API based Connectors across Global Customers.
  • Hands-on MYSQL database.
  • Responsible for developing new content in the master content package and Highlighting any gaps in parser / policies and remediating the same.
  • Development of SIEM Custom Use-Cases based on data sources and developing new threat models based on the various attack vectors; combining various exfiltration channel to highlight the inherent threats .
  • Architecting the UEBA Content based on the needs and requirements of the customer
  • Developing parsers to ensure the data flow into the solution.
  • Mentoring and managing the team to scale up on various tasks.
  • Handling around 200 + Onboarded Customers globally .

SOC Analyst

Tech Mahindra Limited
04.2017 - 08.2020
  • A focused professional with total of 3+ years of experience in Information security at Tech Mahindra .
  • Have hands on experience on the SIEM tool (IBM QRadar) with QRadar Administrator activities and expertise on analysing offenses
  • Strong experience in Individually handling all severity (Sev:1, Sev:2, Sev:3, Sev:4) issues related to Incidents and adhoc requests from client using SIEM technology
  • Demonstrated excellence in the field of managing SOC,reviewing alerts, incident management and Malware analysis
  • Analyzing spam / URL phishing / spoofed emails and providing the necessary action accordingly
  • I have secured some skills in Packet Analysis through Wireshark tool and Splunk SEM tool
  • Strongly initiative, creative and ability to learn new technologies
  • Regular Health checkup and tuning of SIEM technology for smooth functioning and avoid failure
  • Threat Detection, Investigating offenses, Analysis, Response and Reporting
  • Monitoring more than 1500 log sources which are integrated with IBM QRadar with a maximum of 20 actionable alerts per day
  • Notifying any suspicious events/incidents and verification of events/ incidents
  • Monitor Firewall/IDS alerts and status as per checklists defined
  • Sending Security Alert messages on newly found vulnerability to the Security emergency response team, IT team and respective customers without fail
  • Analyzing correlation rules to reflect the global security threats
  • Raising and Implementing Change Control, preparing knowledge base for all the incidents, change and problems resolved
  • Preparing SOP (Standard Operations Procedures) and sharing it with customer and internal teams for the resolving the issues.
  • Reporting phishing incidents & maintaining tracker.
  • Knowledge on Integration multiple Devices like Windows, Linux Servers, McAfee EPO,
  • AD, FMC, VMWare and FortiGate Firewalls etc
  • Integrating the devices using collectors and verifying whether the logs are being received at QRadar.
  • Knowledge on QRadar Plugin installation to extend SIEM functionalities (Pulse, Assistant,
  • UBA, Advisor, Operation)
  • Importing Updated signatures on Qualys Knowledgebase
  • Initiating Authenticated scans on Qualys vulnerability management tool
  • Asset groups and Asset Tags maintenance
  • Extracting Remediation report
  • Completed CCNA training
  • Knowledge on Comptia Security+ , Wireshark packet analyzer.

Education

B.Tech - ECE

VIT UNIVERSITY
Vellore
06.2012 - 05.2016

Skills

Securonix SNYPR NextGen SIEM

IBM Qradar Analyst

IBM Qradar Administration

Qualys Vulnerability Management

Threat Hunting

Malware Anlaysis

Master in Regular Expression (Regex)

Data Integration/Onboarding

Threat Detection : LookingGlass

SIEM Administration

Splunk Analytics and Administration

Microsoft Sentinel

Certification

CEH V12 Certified

Timeline

SC-200: Microsoft Security Operations Analyst

11-2023

CEH V12 Certified

01-2023

Azure Security: AZ-500 ((Udemy)

12-2022

Certified SNYPR Content Developer

01-2022

Certified SNYPR Administrator

11-2021

Certified SNYPR Security Analyst (CSSA)

02-2021

Lead SIEM Engineer

Securonix India PVT LTD
08.2020 - Current

Qualys Vulnerability management certification.

01-2020

IBM Certified Associate Administrator Security QRadar SIEM V7.2.8

12-2019

SOC Analyst

Tech Mahindra Limited
04.2017 - 08.2020

B.Tech - ECE

VIT UNIVERSITY
06.2012 - 05.2016

Similar Profiles

CREATE PROFILE
CHINTALAPUDI RAVITEJALead SIEM Engineer