Summary
Overview
Work History
Education
Skills
Certification
Industry Experience
Languages
Disclaimer
Timeline
Generic
Dharmaraja Boopathi

Dharmaraja Boopathi

Bengaluru

Summary

Having 10 + years of experiences in Information security domain and enterprise support group. My quick grasping attitude, work experience and exposure has equipped me excellent communication skills coupled with strong analytic and problem-solving skills. I have an inherent Curiosity in Information and network security fields in general which leaves me with a desire to find myself a fit in person to the platforms and areas related to them.

Overview

11
11
years of professional experience
1
1
Certification

Work History

MSS Team leader (SOC operations and Threat Hunting

IBM
Bangalore
05.2023 - Current
  • SCE – Use case and SOP creation
  • Team Lead (Threat hunting and SOC Team)
  • Development of process and procedures for SOC operations to prevent cyber threats. (SOP creation)
  • Development and delivery of customer presentations and training of new SOC analysts
  • Critical incident management and working on critical incidents on priority (Escalation handling and L3 analysis)
  • Working on escalations from client and delivering work on 100% hygiene
  • Threat hunting roles and responsibilities
  • Work with Threat hunting team and perform Hypothesis and intel-based hunting relevant to customer ecosystem, existing risks and persistent threats
  • Perform TH meeting with customer on the detections and mitigated threats for creation of new UC s to cover those threats to occur part of Incident response

SIEM Security Analyst (L2, L3 and Team Lead)

IBM
07.2019 - 05.2023
  • Investigated and responded to escalated security incidents (malware, phishing, lateral movement, etc.).
  • Performed log analysis, threat validation, and triage across network, endpoint, and cloud environments.
  • Led threat hunting using threat intelligence, IOCs, and MITRE ATT&CK framework.
  • Created and tuned SIEM correlation rules, detection use cases, and response playbooks.
  • Collaborated with customer teams for incident remediation, RCA, and reporting.
  • Mentored and guided L1/L2 analysts, ensuring quality and consistency in incident handling.
  • Managed shift schedules, task assignments, and acted as escalation point for critical incidents.
  • Supported continuous improvement of SOC processes, documentation, and tool optimization.

SIEM Security Analyst (L1)

IBM
02.2017 - 06.2019
  • Monitored and analyzed real-time security events and alerts using SIEM platforms (e.g., Splunk, QRadar, ArcSight) to identify potential threats.
  • Conducted initial triage and investigation of security incidents to determine threat severity and impact.
  • Escalated confirmed or suspicious incidents to L2/L3 analysts following defined SOPs and escalation procedures.
  • Documented investigation findings, response steps, and incident details in ticketing systems such as ServiceNow.
  • Performed daily health checks on security tools and monitoring systems to ensure operational effectiveness.
  • Utilized threat intelligence sources to support alert validation and improve incident context.
  • Followed established SOC processes and compliance standards (e.g., ISO 27001, GDPR) to maintain security posture.
  • Participated in shift handovers and collaborated with global SOC teams to ensure continuous 24x7 coverage.
  • Actively contributed to incident detection, response readiness, and continuous improvement initiatives within the SOC.

SIEM Security Analyst

Sify Technologies Limited
12.2014 - 02.2017
  • Assigned to dedicated Project (One of the Nationalized Banks)
  • Configuring rules, generating periodic reports and performing trend and forensic analysis over that.
  • Analysing latest cyber threats in RSA fraud action and feeding that information in RSA security analytics.
  • PIM administrator performing Vault creation and user profile creation.
  • Performing VAPT scanning on appliances servers and creating a vulnerability assessment report.
  • Working on incidents generated in incident management tool (RSA-Archer) based on security breach report obtained from the SOC devices

Education

M. Tech - IT (Networking)

Vellore Institute of Technology
Vellore
05-2014

B.Tech - IT

Dr. M.G.R. Educational And Research Institute
chennai
08-2011

Higher Secondary School -

St. Anne's Higher Secondary School
Tindivanam
04-2007

Skills

  • Q-Radar, cortex XSIAM, ArcSight, Splunk ES, Sentinel
  • Crowdstrike, Sentinelone, Qualys
  • Firewall
  • Vulnerability Assessment ( Max patrol )
  • Cyber-Ark (PIM)
  • Web sense Triton ( Email DLP and Web DLP )

Certification

  • Microsoft Certified: Security Operations Analyst Associate (SC-200)
  • Cortex XSIAM: Security Operations, Integration, and Automation
  • Splunk Core Certified User
  • Qualys Vulnerability Assessment
  • Cisco Certified - CCNA
  • EC-Council - CEH

Industry Experience

  • Banking
  • Oil and Gas
  • Retail
  • Travel and Transportation

Languages

Tamil
First Language
English
Advanced (C1)
C1
Hindi
Elementary (A2)
A2
Telugu
Beginner
A1

Disclaimer

I hereby declare that all the above details are true to the best of my knowledge. I will do my sincere work for the betterment of our company., Bangalore

Timeline

MSS Team leader (SOC operations and Threat Hunting

IBM
05.2023 - Current

SIEM Security Analyst (L2, L3 and Team Lead)

IBM
07.2019 - 05.2023

SIEM Security Analyst (L1)

IBM
02.2017 - 06.2019

SIEM Security Analyst

Sify Technologies Limited
12.2014 - 02.2017

M. Tech - IT (Networking)

Vellore Institute of Technology

B.Tech - IT

Dr. M.G.R. Educational And Research Institute

Higher Secondary School -

St. Anne's Higher Secondary School
Dharmaraja Boopathi