Summary
Work History
Education
Work Availability
Timeline
Work Availability
Generic

PRAVEEN KUMAR VASUPALLI

Security Analyst
VISAKHAPATNAM

Summary

  • Key Experience: -5 years 4 years working in a SOC, across one or more of the following: Security Analysis, Security Monitoring, Security Incident Management and Incident Response. 1 year in Networking Admin.
  • Have Hands on experience on SIEM tools like HP ArcSight, QRadar , Splunk , McAfee , Trent Micro and Device Management and Knowledge on and RSA and LogRhythm.
  • SIEM (Security Information and Event Management) tools like Monitoring real-time events and analysis Security Monitoring and Operation using HP ArcSight, QRadar, and and RSA and LogRhythm
  • Knowledge of email security threats and security controls, including experience on analyzing email headers, Attachments and URL’s.
  • Malware analysis tool is used to see the suspicious inbound \ outbound network traffic.
  • Actively involved in monitoring and remediating alerts Working with IT functional teams until the infected machine is remediated.
  • attack surface focus on what matters, and create better security outcomes.
  • Create formal incidents and support the investigation of such incidents to not only mitigate the current threat but also prevent future occurrences.
  • Using various security tools to perform monitoring and analysis of security events to detect security risks and threats within established customer Service Level Agreements.
  • Recognize successful and attempt of cyber intrusions and compromises through log review and analysis of relevant event detail information.
  • Create formal incidents and support the investigation of such incidents to not only mitigate the current threat but also prevent future occurrences.
  • Differentiate the false positives from true intrusion attempts and help remediate / prevent.
  • Support escalation and work closely with stakeholders as required.
  • Document all actions taken during incident investigations.
  • Work closely with other teams to support the incident management process.
  • Provide tuning and filtering recommendations to engineering teams.
  • Support requests for data by the customer.
  • Have knowledge in device integration, alarm creation and watch list creation in ESM.
  • Assist with the identification, creation and refinement of the team processes and procedures.
  • Stay abreast of current threats and vulnerabilities, particularly those that may directly impact the Environment
  • Performing patch activity on windows servers

Work History

Security Analyst

Tech M
Hyderabad
03.2019 - Current
  • Working in Security Operation Centre (24*7), monitoring of SOC events, Detecting and Preventing the Intrusion attempts.
  • Real time monitoring of Network Security devices such IPS, Firewall, End point Security, Operating system, and Email security etc. to correlate the logs as per client's requirement and also notifying for log stoppage.
  • Recognize successful and attempt of cyber intrusions and compromises through log review and analysis of relevant event detail information.
  • Working on Nexpose for vulnerabilities assessment on servers.
  • Working on Acunetix for vulnerabilities assessment on Web-Applications.
  • Nexpose, Acunetix gives you the confidence you need to understand your ever-changing attack surface, focus on what matters, and create better security outcomes
  • Development of Reports and Dashboards in Arc Sight & QRADAR
  • Recognizing attacks based on their signatures.
  • Performing VA on both Web-applications and servers.
  • Understanding phases of ArcSight ESM event life cycle and describe the functional processing which occurs during each phase.
  • Using AV and other analysis tools to perform Malware Analysis and complete removal of malware from client’s environment.
  • Publishing security advisories related to recent security incidents to the clients.
  • AV – Malware deletion Failed: Tracking down infected device and removal of virus through manual scanning.
  • Differentiate the false positives from true intrusion attempts and help remediate / prevent.
  • Support escalation and work closely with stakeholders as required.
  • Document all actions taken during incident investigations.
  • Work closely with other teams to support the incident management process.
  • Provide tuning and filtering recommendations to engineering teams.
  • Support requests for data by the customer and other teams analysing daily, weekly and monthly reports.
  • Research, analysis, and response for alerts; including log retrieval and documentation
  • Monitoring and carrying out second level analysis incidents.
  • Analyse and investigate the alerts in SOC monitoring tool to report any abnormal behaviours, suspicious activities, traffic anomalies etc.
  • Conduct analysis of network traffic and host activity across a wide array of technologies and platforms
  • Assist in incident response activities such as host triage and retrieval, malware analysis, remote system analysis, end-user interviews, and remediation efforts
  • Recognize cyber-attacks based on their signatures. Differentiate the false positives from true intrusion attempts and help remediate/prevent cyber attacks
  • Analyse malicious campaigns and evaluate effectiveness of security technologies
  • Develop advanced queries and alerts to detect adversary actions
  • Lead response and investigation efforts into advanced/targeted attacks
  • Identify gaps in IT infrastructure by mimicking an attackers behaviors and responses
  • Provide expert analytic investigative support of large scale and complex security incidents
  • Direct prior experience with core security technologies (SIEM, firewalls, IDS/IPS, HIPS, proxies, vulnerability scanners, AV, etc.)

Network Engineer

Tech M
Hyderabad
02.2018 - 03.2022
  • Maintenance and troubleshoot of Network devices such as routers and switches.
  • Configuration of Cisco Router and Switches.
  • Configuration of VLAN and Inter VLAN Routing.
  • Talented in troubleshooting hardware problems.
  • User management using Windows Domain Controller.
  • Assisted in maintaining and improving system/network environment and proactively monitor the Network to avoid potential issues

Education

Bachelor of Science - Information Technology

BABA INSTITUTE OF TECHNOLOGY AND SCIENCES
Visakhapatnam
06.2008 - 05.2012

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Timeline

Security Analyst

Tech M
03.2019 - Current

Network Engineer

Tech M
02.2018 - 03.2022

Bachelor of Science - Information Technology

BABA INSTITUTE OF TECHNOLOGY AND SCIENCES
06.2008 - 05.2012

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Similar Profiles

CREATE PROFILE
PRAVEEN KUMAR VASUPALLI Security Analyst