Kiran Kumar Jittuga
Bangalore
Summary
Experienced as IT Security Engineer with over 6+ years of experience in Information security and Network security. Excellent hands-on experience in SIEM, EDR, Endpoint security and Phishing email analysis.
Overview
6
6
years of professional experience
1
1
Certification
Work History
IT Security Engineer L2
Celestial Systems Pvt Ltd
10.2021 - 11.2024
- Experienced SOC analyst in – Microsoft ATP Defender & Crowd strike falcon, WatchGuard, Office-365, Splunk, IBM Qradar SIEM.
- Performed security event monitoring of heterogeneous networks such as firewalls, IDS/IPS & DLP devices using SIEM for security events and triage security incidents.
- Experience in providing end-to-end support to enterprise counterparts, identifying the root cause of sophisticated enterprise initiatives with endpoint security solutions.
- Working experience in SOC environment with hands-on experience using SIEM Splunk tool which includes log analysis fine-tuning exiting correlation rules to reduce false positive and responding to incidents.
- Performed Folder exclusion policies and other device based polices, tags in EDR & WatchGuard antivirus solutions for endpoint.
- Experience in Check dashboards like Review the CheckMK dashboards for overall health for monitored system & services.
- Good knowledge on MITRE ATT&CK, diamond model, or other cyber threat kill chains.
- Strong knowledge and working experience on Office 365 Email gateway solutions completely own, manage, monitor & administer the email security stack & policies for both OnPrem & cloud environments that include Office 365 Email security solutions.
- Strong experience in managing Endpoint Agents over Windows and Linux operating systems, Active Directory, Windows Event Logs.
- Knowledge of a breadth of security technologies and topics such as: Security Information and Event Management (SIEM), IDS/IPS, Data Loss Prevention (DLP), Proxy, Web Application Firewall (WAF), Enterprise Anti-Virus, Sandboxing, Network and Host based firewalls.
- Performed managing of Splunk SIEM and experienced with creating new alerts for Security use cases. Log sources integration to Qradar SIEM solution.
- SIEM Event Analysis and manual Co-relation of Events to narrow down the Infection Vector and root cause analysis with Splunk & Azure sentinel.
- Experience in writing correlation rules and monitoring Enterprise Security Application.
- Conducted investigations on infrastructure through forensic analysis to identify Indicators of Compromise (IoCs).
- Working on TAP as well as TRAP dashboard & TRAP implementation in environment.
- Experience in Phishing email analysis and Proofpoint email security gateway.
- Experience in acknowledging known issues to avoid redundancy & resolving flapping services to address on both services and hosts with intermittent status changes.
- Experience in Analyzing phishing/malicious email campaigns to identify IOCs and contain those IOCs & on an Email Fraud defense to secure environment from hackers and fraudsters.
- Provides regular monitoring, triage, and incident response to automated security alerts using Security tools (like SIEM Splunk, Azure Sentinel. EDR, Antivirus, and Email Security).
- Experience in identifying wire fraud and account compromised cases taking appropriate action.
- Experience in analyzing malicious executables, device exceptions, and other security rules via the Defender Intune portal. File blocking, Virus definition reporting, end point reporting.
- Notifying stakeholders & keeping the teams informed of system statues, performance, or issues via scheduled reports & notifications. And coordinating maintenance windows to communicate planned downtime to avoid false alarms.
- Expertise in Splunk Enterprise architecture such as Search Heads, Indexers, Deployment server, License Master, Heavy/Universal Forwarders.
Network Engineer
Netsync Technologies Pvt Ltd
12.2018 - 08.2021
- Developing and implementing network architectures, including LANs, WANs, and wireless networks.
- Configuring and managing network devices like routers, switches, firewalls, and servers.
- Implementing and maintaining security measures to protect against cyber threats and unauthorized access.
- Diagnosing and resolving network issues, including hardware, software, and connectivity problems.
- Maintain, customize, and track the device and email applications for virus protection.
- Plan, install, and test networking devices, hardware for computers, and devices for operating systems.
Education
B. Tech - Electrical and Electronics Engineering
GVVIT COLLEGE of ENGINEERING & TECHNOLOGY
04.2015
JNTU Kakinada University
Skills
- End Point Security: WatchGuard,Crowd strike,Microsoft ATP Defender
- SIEM: Splunk,IBM Qradar
- SOAR: Azure sentinel,Tines
- Email Security: Office 365 Proof point TRAP&TAP
- IDS/IPS: Alert investigation & Remediation
- Ticketing tools: ServiceNow,ServiceDesk,JIRA
- PCAP Analysis: Wireshark
- Antivirus: WatchGuard
Certification
- Splunk core user
- Certified in AZ-104 & Azure Fundamentals
- CSA trained
Disclaimer
I hereby declare that the information furnished above is true to the best of my knowledge and if selected, would put in my best efforts for the growth of the organization.
Timeline
IT Security Engineer L2
Celestial Systems Pvt Ltd
10.2021 - 11.2024
Network Engineer
Netsync Technologies Pvt Ltd
12.2018 - 08.2021
JNTU Kakinada University
B. Tech - Electrical and Electronics Engineering
GVVIT COLLEGE of ENGINEERING & TECHNOLOGY
Similar Profiles
Anshul GargAnshul Garg
Senior Software Engineer at Celestial SystemsSenior Software Engineer at Celestial Systems
Binayak TalwarBinayak Talwar
Area Sales Manager at Automed Systems Pvt. Ltd, OEM, Indian OEM company “Automed Systems Pvt. LtdArea Sales Manager at Automed Systems Pvt. Ltd, OEM, Indian OEM company “Automed Systems Pvt. Ltd
Diana Arzuaga RiveraDiana Arzuaga Rivera
Production Supervisor at KTB Foods/Hain CelestialProduction Supervisor at KTB Foods/Hain Celestial
C. RathiC. Rathi
Business Development Manager at HTC Global ServicesBusiness Development Manager at HTC Global Services
Sunil Kumar SSunil Kumar S
Associate Director SAP Basis at GSKAssociate Director SAP Basis at GSK