PRASANNA KUMAR A
SOC Engineer/SOC Operations
Chennai,TN
Summary
Experienced SOC Engineer/Analyst with a strong background in SOC Operations (SIEM/XSIAM), Incident Response, and Cloud Security. Adept at working in fast-paced environments and collaborating with cross-functional teams to ensure robust security postures.
Overview
6
6
years of professional experience
7
7
years of post-secondary education
1
1
Certification
Work History
SOC Engineer/Analyst
Freshworks
Chennai
10.2022 - Current
- Monitored security alerts and events using the Logscale Humio SIEM solution and Palo Alto XDR solution.
- Created new security use cases and correlation rules.
- Acted as Cybersecurity Incident Commander, overseeing incident management from detection to resolution.
- Creating reports for CyberSecurity Incidents.
- Established a CyberSecurity Event Response Plan for SOC Operations.
- Contributed to SIEM migration of Logscale Humio to Palo Alto XSIAM.
- Contributed to developing a runbook for SOC alerts and operations playbooks.
- Work experience in SSPM, CWP, and WAF
- Mentoring the team in phishing email analysis
- Presented weekly and monthly metrics to the Senior Manager.
Senior Security Analyst (IT Security)
ATOS PALADION NETWORKS Pvt Ltd
3 2021 - 10.2022
- Worked onsite for leading BANK for Asia Pacific (APAC) Region on real-time threat management alert handling and analysis of true and false events
- Strengthened organization's cybersecurity stance through continuous monitoring and analysis of network traffic.
- Worked on threat actors on daily basis and contributed to threat hunt and mitigations
- Analyzing and handling Phishing and Quarantine emails
- Incident Handling and root cause analysis
- Continuous Monitoring and mitigation of network traffic for DDOS
- Involved in operational Quality Audits and Reports
- Preparation of Weekly and monthly scheduled reports on reconnaissance activity and mitigating it
- Preparation of daily shift reports by analyzing entire set of recorded Log Events at all Security Devices for client.
Associate Security Analyst (SOC)
Comodo Security Solution Pvt Ltd
10.2018 - 01.2021
- Monitoring SIEM solution alerts
- Monitor and analyze network flow data for anomalies and detect malicious network activity
- Validate alerts whether it is true or false positives.
- Provide information regarding intrusion events, security incidents and other threat indications and warning functions
- Incident handling and management
- Containment and Quarantine of events in Endpoint
- Documentation: Ticket generation, Maintenance and closure
- Escalation to L2, recording incident and Preparing Notification
- Preparation of daily & weekly reports on security activities in client's network
- Collection of IOCs for regular fine-tuning and updating to correlation rules to reduce false positives.
- Sending Notifications and preparing weekly operational reports.
Education
B.E (Electronics & Instrumentation) -
St.Joseph's College of Engineering
Tamil Nadu, India 01.2012 - 04.2015
Diploma (ECE) -
Panimalar Polytechnic College
Tamil Nadu, India 01.2009 - 04.2012
Skills
SIEM/XSIAM
Incident Response
Threat Hunting
Phishing Analysis
XDR
SSPM,CWP & WAF
Incident Report Preparation
SOC Metrics
Certification
CEH (v10) (2020)
Personal Information
Date of Birth: 03/05/94
Languages
ENGLISH
TAMIL
Timeline
SOC Engineer/Analyst
Freshworks
10.2022 - Current
Associate Security Analyst (SOC)
Comodo Security Solution Pvt Ltd
10.2018 - 01.2021
B.E (Electronics & Instrumentation) -
St.Joseph's College of Engineering
01.2012 - 04.2015
Diploma (ECE) -
Panimalar Polytechnic College
01.2009 - 04.2012
Senior Security Analyst (IT Security)
ATOS PALADION NETWORKS Pvt Ltd
3 2021 - 10.2022