Kamakya Sharma Vinnakota

• Deep dive analysis of triggered alerts using SIEM, EDR and other analysis tools.
• Handling escalated alerts L1 Security Analysts.
• Investigating incidents, remediation, tracking and follow-up for incident closure with concerned teams, stakeholders.
• Advise incident responders on the steps to take to investigate and resolve computer security incidents.
• Perform root case analysis of incidents/breaches.
• Build weekly and monthly reports as per SOC Manager and CISO requirements.
• Onboarding log source using different collection methods.
• Develop content for SIEM by writing custom parsers, correlation rules, dashboards, reports and alerts.
• Maintain up-to-date documentation of designs/configurations.
• Co-ordinate with auditing and compliance team by providing requested report and data.
• Actively involved in threat hunting activities from building hypothesis to finding evidence and enhancing security controls and detection logic.
• Periodic upgrade/creation of correlation rules based on emerging threats and requirement following MITRE Attack TTP sources.

Monitored IDS & IPS, Firewalls,Proxy/gateway Traffic based on Malicious traffic alerts.
Coordinating with SOC team to update the signatures & rules.

Provided L2/L3 support for enterprise network issues, reducing average resolution time by 30%.
Documented network topologies and created SOPs for troubleshooting.