Dharmaraja Boopathi
Bengaluru
Summary
Having 10 + years of experiences in Information security domain and enterprise support group. My quick grasping attitude, work experience and exposure has equipped me excellent communication skills coupled with strong analytic and problem-solving skills. I have an inherent Curiosity in Information and network security fields in general which leaves me with a desire to find myself a fit in person to the platforms and areas related to them.
Overview
11
11
years of professional experience
1
1
Certification
Work History
MSS Team leader (SOC operations and Threat Hunting
IBM
Bangalore
05.2023 - Current
- SCE – Use case and SOP creation
- Team Lead (Threat hunting and SOC Team)
- Development of process and procedures for SOC operations to prevent cyber threats. (SOP creation)
- Development and delivery of customer presentations and training of new SOC analysts
- Critical incident management and working on critical incidents on priority (Escalation handling and L3 analysis)
- Working on escalations from client and delivering work on 100% hygiene
- Threat hunting roles and responsibilities
- Work with Threat hunting team and perform Hypothesis and intel-based hunting relevant to customer ecosystem, existing risks and persistent threats
- Perform TH meeting with customer on the detections and mitigated threats for creation of new UC s to cover those threats to occur part of Incident response
SIEM Security Analyst (L2, L3 and Team Lead)
IBM
07.2019 - 05.2023
- Investigated and responded to escalated security incidents (malware, phishing, lateral movement, etc.).
- Performed log analysis, threat validation, and triage across network, endpoint, and cloud environments.
- Led threat hunting using threat intelligence, IOCs, and MITRE ATT&CK framework.
- Created and tuned SIEM correlation rules, detection use cases, and response playbooks.
- Collaborated with customer teams for incident remediation, RCA, and reporting.
- Mentored and guided L1/L2 analysts, ensuring quality and consistency in incident handling.
- Managed shift schedules, task assignments, and acted as escalation point for critical incidents.
- Supported continuous improvement of SOC processes, documentation, and tool optimization.
SIEM Security Analyst (L1)
IBM
02.2017 - 06.2019
- Monitored and analyzed real-time security events and alerts using SIEM platforms (e.g., Splunk, QRadar, ArcSight) to identify potential threats.
- Conducted initial triage and investigation of security incidents to determine threat severity and impact.
- Escalated confirmed or suspicious incidents to L2/L3 analysts following defined SOPs and escalation procedures.
- Documented investigation findings, response steps, and incident details in ticketing systems such as ServiceNow.
- Performed daily health checks on security tools and monitoring systems to ensure operational effectiveness.
- Utilized threat intelligence sources to support alert validation and improve incident context.
- Followed established SOC processes and compliance standards (e.g., ISO 27001, GDPR) to maintain security posture.
- Participated in shift handovers and collaborated with global SOC teams to ensure continuous 24x7 coverage.
- Actively contributed to incident detection, response readiness, and continuous improvement initiatives within the SOC.
SIEM Security Analyst
Sify Technologies Limited
12.2014 - 02.2017
- Assigned to dedicated Project (One of the Nationalized Banks)
- Configuring rules, generating periodic reports and performing trend and forensic analysis over that.
- Analysing latest cyber threats in RSA fraud action and feeding that information in RSA security analytics.
- PIM administrator performing Vault creation and user profile creation.
- Performing VAPT scanning on appliances servers and creating a vulnerability assessment report.
- Working on incidents generated in incident management tool (RSA-Archer) based on security breach report obtained from the SOC devices
Education
M. Tech - IT (Networking)
Vellore Institute of Technology
Vellore05-2014
B.Tech - IT
Dr. M.G.R. Educational And Research Institute
chennai08-2011
Higher Secondary School -
St. Anne's Higher Secondary School
Tindivanam04-2007
Skills
- Q-Radar, cortex XSIAM, ArcSight, Splunk ES, Sentinel
- Crowdstrike, Sentinelone, Qualys
- Firewall
- Vulnerability Assessment ( Max patrol )
- Cyber-Ark (PIM)
- Web sense Triton ( Email DLP and Web DLP )
Certification
- Microsoft Certified: Security Operations Analyst Associate (SC-200)
- Cortex XSIAM: Security Operations, Integration, and Automation
- Splunk Core Certified User
- Qualys Vulnerability Assessment
- Cisco Certified - CCNA
- EC-Council - CEH
Industry Experience
- Banking
- Oil and Gas
- Retail
- Travel and Transportation
Languages
Tamil
First Language
English
Advanced (C1)
C1
Hindi
Elementary (A2)
A2
Telugu
Beginner
A1
Disclaimer
I hereby declare that all the above details are true to the best of my knowledge. I will do my sincere work for the betterment of our company., Bangalore
Timeline
MSS Team leader (SOC operations and Threat Hunting
IBM
05.2023 - Current
SIEM Security Analyst (L2, L3 and Team Lead)
IBM
07.2019 - 05.2023
SIEM Security Analyst (L1)
IBM
02.2017 - 06.2019
SIEM Security Analyst
Sify Technologies Limited
12.2014 - 02.2017
M. Tech - IT (Networking)
Vellore Institute of Technology
B.Tech - IT
Dr. M.G.R. Educational And Research Institute
Higher Secondary School -
St. Anne's Higher Secondary School
Similar Profiles
RAJKUMAR PRAJKUMAR P
Azure Devops Engineer at IBMAzure Devops Engineer at IBM
Ebony McRaeEbony McRae
Technical Chat Support Specialist at IBMTechnical Chat Support Specialist at IBM
Vinothkumar KVinothkumar K
Technical EWM, S/4 Hana, CDS,RAP at IBMTechnical EWM, S/4 Hana, CDS,RAP at IBM
Amit LingeAmit Linge
Offshore Delivery Lead at IBMOffshore Delivery Lead at IBM
Sabir PashaSabir Pasha
Senior Technical Solutions Engineer at BARRACUDA NETWORKSSenior Technical Solutions Engineer at BARRACUDA NETWORKS