Summary
Overview
Work History
Education
Skills
Timeline
Generic

Darshan Kallihal

Bangalore

Summary

Talented Cybersecurity Engineer with 9+ years of experience. Implemented security and contributed technical skills in updating security infrastructure for organizations. Excellent analytical and communication skills. Good and ample of experience in team handling. Efficient learner, self-starter, confident and problem-solving skills. Strong team spirit and ability to manage, lead and execute projects. Adept in planning, designing, and implementing information security programs.

Overview

9
9
years of professional experience

Work History

Manager Information Security

Tata Play limited
06.2023 - Current
  • Governing SOC operations and providing leadership and support to the security engineering team
  • Lead weekly meetings with the teams from multiple projects to identify the challenges and issues faced on day-to-day BAU activities
  • Manage multiple security initiatives to maintain best security practices for the organization
  • Actively involved in VAPT/WAPT scan findings and closures
  • Communicate with cross functional teams and stake holders to maintain the security posture
  • Govern Enhancement of SIEM and DLP detection capabilities.

Senior Security Engineer/Tech Lead

Paladion-Atos
05.2019 - 06.2023
  • Worked as the Senior Security engineer and Technical Lead on shared customer support with managing team of 10+ members
  • Lead weekly meetings with the teams from multiple projects to identify the challenges and issues faced on day-to-day BAU activities
  • Worked as a SPOC for handling APAC region customer/SOC escalations and make sure smooth functioning of the soc operations
  • Running a 24/7 support service to make customer environment is intact with the SIEM/MDR to actively detect and notify the threat
  • Communicate with cross functional teams and stake holders across regions to improve the customer security posture
  • Involved in the mitigation of log4j vulnerability at 130+ customer environments
  • Worked on AIsaac a SaaS based tool for Managed Detection and Response (MDR) service
  • With MDR services worked on threat hunting analysis of customer data to proactively identify and report the anomalies at customer environment
  • Responsible for end to end managing and administration of the arcsight logger used as MSSP on shared customer environments
  • Performed multiple ArcSight logger installations and version upgrades
  • SPOC for regex, SQL query-based flex connector creation on ArcSight environment
  • Handled multiple customer onboarding to SIEM/SOC with end-to-end configuration of log flow and alerts
  • Actively involved in Monthly KPI reports creation and tracking on the team’s performance
  • Worked on inhouse built application like Apache NIFI, Flink and RabbitMQ which is used for collecting data from different customer log sources
  • Attended lean six sigma yellow belt training

Information Security Analyst | SIEM Admin

Wipro Limited
Bangalore
09.2014 - 04.2019
  • Worked as Administrator L2 in Handling & Evaluating Security Incidents from Data loss prevention tool and improvement of security posture
  • Accurately identify and process incidents that gets captured in DLP tool
  • Precise mail communication sent to stakeholders on time as part of the incident lifecycle
  • Following-up with the stake holders and investigate the root cause for data loss
  • Co-coordinating with Functional head and HR for the logical closure of incident with suitable corrective actions, post analyzing the severity of the incident
  • Operate as a second level support to a 24*7 managed security operation center.
  • Creating Co-relation rules to accurately identify security threats with reports/dashboards to provide the expected data in graphical representation if needed.
  • Analyzing the alerts triggered by SIEM solution and reporting the incident to respective team.
  • Troubleshooting L1/L2 tickets (troubleshooting Arcsight configuration related issues) and submitting RCA
  • Integrating the newly on-boarded servers to Arcsight and creating alerts if needed.
  • Troubleshooting log stoppage from the servers with the help of Tech support and providing RCA.
  • Involved in Arcsight upgradation from version 6.8 to 6.11.
  • Create and maintain operational reports for Key Performance Indicators, weekly and Monthly Metrics.
  • Configuring new connectors in Arcsight for log collection, also worked upon Flex connectors (regex, SQL DB).

Education

Bachelor of Computer Applications -

Karnataka University Dharwad
01.2014

M.Tech, Computer Science -

BIRLA INSTITUTE OF TECHNOLOGY AND SCIENCE, PILANI

Skills

  • SOC
  • Arcsight
  • Splunk
  • SIEM
  • Aisaac
  • Networking
  • Trillix
  • Symantec Data Loss prevention
  • McAfee Antivirus Endpoint Protection Solution – EPS
  • Threat intelligence
  • Email Analysis
  • Security Incident response
  • Apache Nifi
  • Flink
  • RabbitMQ
  • Email Security
  • Network Operations Center
  • BMC Remedy
  • Wrike
  • Azure Cloud
  • Windows/Linux OS platform
  • VAPT / WAPT
  • Email Analysis
  • Security Governance

Timeline

Manager Information Security

Tata Play limited
06.2023 - Current

Senior Security Engineer/Tech Lead

Paladion-Atos
05.2019 - 06.2023

Information Security Analyst | SIEM Admin

Wipro Limited
09.2014 - 04.2019

Bachelor of Computer Applications -

Karnataka University Dharwad

M.Tech, Computer Science -

BIRLA INSTITUTE OF TECHNOLOGY AND SCIENCE, PILANI

Similar Profiles

  • ANUPAM KUSHWAHA

    ANUPAM KUSHWAHAANUPAM KUSHWAHA

    Assistant Manager - DevOps at Tata Play LimitedAssistant Manager - DevOps at Tata Play Limited

    View Profile
  • Saurabh Rajput

    Saurabh RajputSaurabh Rajput

    Manager – Business Excellence at Tata Play LimitedManager – Business Excellence at Tata Play Limited

    View Profile
  • Romal Gada

    Romal GadaRomal Gada

    Manager - Finance Controlling at Tata Play LimitedManager - Finance Controlling at Tata Play Limited

    View Profile
Darshan Kallihal