Summary
Overview
Work History
Education
Skills
Certification
Languages
Timeline
Generic

Kiran Prajapati

Mumbai

Summary

Cyber Security professional with experience of 3.5 years working as an Incident responder /Security Operation Center Analyst. Proficient in IT and Network. Hands-on experience in ELK, Microsoft defender 365, Azure sentinel, Kusto Query Language, Vectra AI, Email Analysis, fundamentals of malware analysis, QRADAR. Experienced in managing SIEM tools, configuring and analyzing SIEM alerts, proactively handling Security Incidents, and preparing Run Books. Focused on simplifying and streamlining processes and technologies resulting in sustainable improvements. Consistent performer with a track record of achieving excellent outcomes in challenging and imminent situations. Strong desire to grow technical skills and ability in the field of information and cyber security and to learn new technologies swiftly. Quick learner with team coordination and management skills.

Overview

3
3
years of professional experience
1
1
Certification

Work History

INCIDENT RESPONDER

NETWORK INTELLIGENCE INDIA (NII)
Mumbai
06.2022 - Current
  • Detailed phishing Analysis with email containing malicious files and URL.
  • Proxy logs analysis and suspicious files downloads analysis and educating users about security policies.
  • Real-time Incident and log monitoring in the Security Operations Centre from different devices such as firewalls, IDS, IPS, and Antivirus and EDR, operating systems like Windows, Linux, and Networking Devices.
  • Undergone Red Team assessment and efficiently responded to all incidents and observed suspicious activities.
  • Whitelisting the false positive Incidents and finetuning the rules for better visibility of the suspicious Activity.
  • Investigating, analysing events in Endpoint Detection and Response Tool, and then taking required action and Making sure tickets are being resolved within SLA.
  • Providing investigation, triage, and mitigation of detected security events to prevent users from interacting with malicious content.
  • Finding out potential false positives by analyzing the alerts & phishing analysis.
  • Manual threat hunting to find a threat or incident in a network and prepare daily analysis Report and Proxy findings report.
  • Constantly monitoring of the dashboard, analyzing the alert triggered in SIEM tool(Sentinel, Kibana) on daily basis in rotational 24/7 turf.

SOC Analyst

NETWORK INTELLIGENCE INDIA (NII)
Mumbai
02.2021 - 06.2022
  • Assist with the development of processes and procedures to improve incident response times, analysis of incidents, and overall SOC functions
  • Provide network intrusion detection expertise to support timely and effective decision making of when to declare an incident
  • Document all activities during an incident and providing leadership with status updates during the life cycle of the incident
  • Analyze a variety of network and host-based security appliance logs (Firewalls, NIDS, HIDS, Sys Logs, etc.) to determine the correct remediation actions and escalation paths for each incident
  • Provide information regarding intrusion events, security incidents, and other threat indications and warning information
  • Real-time Log monitoring on SIEMs, firewall appliances, intrusion prevention systems. Worked on Qradar, ELK and Arcsight tool.
  • Technical analysis and evaluation of network flow and events
  • Perform information security incident response based on risk categorization in accordance with established procedures.

Education

B.E. - Electronics and Telecommunication

Rajiv Gandhi Institute of Technology
Mumbai, MH
01.2012

Higher Secondary School -

Sheth L.U. J College of Arts And Sir M.V. College of Science And Commerce
Mumbai, MH
01.2007

Skills

  • SIEM - Azure Sentinel, ELK Kibana, Qradar,LogRhythm
  • ENDPOINT SOLUTION: Microsoft defender 365, Microsoft defender for identity
  • Firewall - Palo Alto, WAF- F5, Check point
  • IPS - SNORT, Symantec
  • Ticketing Tool - BMC Remedy
  • AV - Symantec Antivirus
  • Platform - Windows, Linux
  • THREAT INTELLIGENCE- Virus total, URL Scan, IP Void, Cyberchef, Browerling, MXtool box, IBM X force, ANYRUN
  • OTHER TOOLS - MDI, ATTIVO, VECTRA AND CMP,DDOS (Cloudfare)
  • XDR - CORTEX,
  • EMAIL ANALYSIS TOOL - Cofence
  • APPLICATIONS - Any Run, Burp Suite, Wireshark, Volatility Framework, Genymotion, Jadx, Dex2jar
  • LANGUAGE & SCRIPTING - C, C, Java, HTML

Certification

  • Microsoft SC-200
  • Certified Ethical Hacker (CEH)
  • NSE 1 Network Security Associate
  • Certified Information Security Consultant (CISC)
  • Certified Professional Hacker (CPH)
  • Certified Professional Forensics Analyst (CPFA)

Languages

Gujarati
First Language
English
Advanced (C1)
C1
Hindi
Proficient (C2)
C2
Marathi
Intermediate (B1)
B1

Timeline

INCIDENT RESPONDER

NETWORK INTELLIGENCE INDIA (NII)
06.2022 - Current

SOC Analyst

NETWORK INTELLIGENCE INDIA (NII)
02.2021 - 06.2022

B.E. - Electronics and Telecommunication

Rajiv Gandhi Institute of Technology

Higher Secondary School -

Sheth L.U. J College of Arts And Sir M.V. College of Science And Commerce
  • Microsoft SC-200
  • Certified Ethical Hacker (CEH)
  • NSE 1 Network Security Associate
  • Certified Information Security Consultant (CISC)
  • Certified Professional Hacker (CPH)
  • Certified Professional Forensics Analyst (CPFA)

Similar Profiles

  • Ankur Singh

    Ankur SinghAnkur Singh

    Cybersecurity Specialist at Network Intelligence (India) Private LimitedCybersecurity Specialist at Network Intelligence (India) Private Limited

    View Profile
  • Vivekanandan Ramaswamy

    Vivekanandan RamaswamyVivekanandan Ramaswamy

    Cyber Security Consultant at Network Intelligence India Pvt Ltd.Cyber Security Consultant at Network Intelligence India Pvt Ltd.

    View Profile
  • Laurie Huber

    Laurie HuberLaurie Huber

    Project Manager at Workforce Intelligence Network (WIN)Project Manager at Workforce Intelligence Network (WIN)

    View Profile
Kiran Prajapati