Jayalakshmi Kadiri

Security Analyst

SAGILITY

Bangalore

08.2018 - Current

Deep dive analysis of triggered alerts using SIEM, SOAR and other analysis tools
Security Incident Response and closure of incidents within SLA using service now
Performing log analysis, phishing analysis and escalating suspicious or malicious activities
Prepared reports on security incidents and provided recommendations to management
Analyzing various events and notifications from the integrated devices and recommending blacklisting or whitelisting actions based on the analysis
Monitoring critical clients with due diligence and updating the status to the clients as per SOP
Build weekly and monthly reports as per SOC Manager
Acknowledging and closing false positives and raising tickets for validated incidents
Reducing false positive and checking any fine tuning options are available
Participate in case review meetings to walk through the handled incidents to peers, SOC
Monitoring complete daily and weekly systems health checks
Good understanding of various SOC processes like monitoring, analysis, playbooks, escalation, incident documentation, SLAs, client meetings, report walk through etc
Monitoring proxy logs & cases on high bandwidth for unwanted external sites, suspicious downloads/uploads
Responds to all the incidents and service requests and bring together additional information to either resolve or escalate the issue to the appropriate teams
Monitored security access logs and analyzed system events for suspicious activity.
Knowledge of Cyber Attacks, attack vectors and its mitigations like DOS, DDOS, SQL injection, XSS, Ransomware, Phishing, Brute Force attacks.