Raj Giri

• Key Responsibilities

🔹 SOC Log Ingestion & Monitoring

• Managing end-to-end log ingestion for 100+ global customers across multiple regions (US, EU, APAC, Mexico, Brazil).
• Supporting log onboarding for:
  Cloud devices (API-based ingestion)
  Syslog devices (Firewall, Network devices)
  Windows Servers (Agent-based collection)
  Unix/Linux systems (Syslog & agent-based)
• Monitoring and troubleshooting Log Source (LS) ingestion issues using:
  Apache NiFi pipelines
  Log Engineering Collector (LEC)
• Worked on high-visibility enterprise projects including Paris Olympics security operations.
• Ensuring log flow continuity from customer environment to SIEM.

🔹 SIEM & SOAR Operations (AISAAC Platform)

• Working on AISAAC SIEM & SOAR platform for:
  Detection validation
  Auto-remediation troubleshooting
  Incident resolution
• Investigating ingestion-related detection gaps.
• Supporting SOC team by ensuring logs are properly parsed and mapped as per detection rules.
• Collaborating with detection and connector teams for parsing validation.

🔹 LEC (Log Engineering Collector) Management

• Managing and maintaining LEC infrastructure.
• Performing:
  Health checks
  Log validation
  Connectivity troubleshooting
• Using Grafana dashboards for:
  LEC performance monitoring
  Resource utilization checks
  Log flow tracking
• 🔹 Apache NiFi Administration
• Managing and troubleshooting Apache NiFi pipelines.
• Handling:
  Flow debugging
  Processor-level issue analysis
  Queue monitoring
  Data flow validation
• Performing NAR upgrades and flow upgrades in production environments.
• Supporting ingestion architecture stability and scalability.

🔹 MDR Agent (AISAAC Agent) & EDR Operations

• Managing MDR agent operations for 10,000+ assets (Windows & Unix).
• Responsibilities include:
  Tenant onboarding
  Agent generation & deployment
  Whitelisting communication requirements with customer network teams
  Troubleshooting agent connectivity issues
• Performing malware and suspicious activity remediation using:
  OEM EDR Portal
  VirusTotal intelligence validation
• Supporting containment and remediation activities.

🔹 Firewall & Network Coordination

• Assisting customers with:
  Firewall policy change management
  Log source communication troubleshooting
  Whitelisting requirements for agents and collectors

🔹 Shift Lead Responsibilities

• Acting as Shift Lead for SOC log ingestion team.
• Handling team escalations and customer queries.
• Providing training and KT to team members.
• Ensuring SLA adherence and operational continuity.

🔹 SOC Environment & Log Parsing Expertise

• Strong understanding of:
  SOC workflows
  Detection lifecycle
  Log normalization & parsing validation
• Previously worked with security testing team to validate:
  Parsed events
  Detection mapping accuracy
  Connector functionality

Key Responsibilities

• Configured and deployed Routers, Switches, UniFi OS Console, Access Points (APs), and Cameras using Software Defined Networking (SDN) architecture.
• Provided troubleshooting support for UniFi Network and UniFi Protect product suites in enterprise environments.
• Diagnosed and resolved issues related to:
  UniFi Switches
  UniFi Security Gateway (USG)
  UniFi Controller
  UniFi OS Console
  Access Points (2.4GHz / 5GHz)
  IP Cameras
• Troubleshot and supported:
  L2TP VPN
  IPSec Site-to-Site VPN
  VLAN routing and inter-VLAN communication issues

Wireless Networking Expertise

• Resolved wireless connectivity issues including:
  Clients disconnecting from SSID
  2.4 GHz & 5 GHz band performance issues
  Fast Roaming configuration
  Airtime Fairness optimization
  Band Steering configuration
  L2 Isolation troubleshooting
  Wireless uplink configuration
• Diagnosed communication issues between multiple VLAN networks over wireless infrastructure.
• Optimized enterprise wireless network performance and stability.

Switching & Network Configuration

• Configured and managed:
  Switch port profiles
  VLAN tagging
  STP and RSTP configurations
• Performed firmware upgrades for:
  Routers
  Switches
  Cloud Key
  UniFi OS Console
  Access Points
  Cameras
• Executed firmware updates and configuration changes via SSH.
• Remote & Customer Support
• Provided technical troubleshooting via:
  Live chat
  Email-based ticketing systems
• Assisted enterprise customers with:
  Remote management services
  Network architecture troubleshooting
  Device adoption and provisioning issues
• Ensured SLA compliance and customer satisfaction.
• Technical Skills

UniFi Network & Protect Ecosystem

• VLAN, STP, RSTP
• L2TP & IPSec VPN
• Wireless troubleshooting (2.4 GHz / 5 GHz)
• SSH-based configuration
• Enterprise Network Support
• Remote Management Systems

Key Responsibilities

Network Setup & Implementation

• Executed end-to-end enterprise network setup and implementation projects.
• Configured network devices as per client architecture and operational requirements.
• Monitored network performance and generated reports using HP ATOM monitoring tools.
• Collaborated closely with L2 & L3 teams for escalations and complex troubleshooting.

Media & Broadcast Network Project Experience

• Worked on live broadcast infrastructure supporting high-profile media clients.
• Strong understanding of Hitless Protection Switching (HPS) for uninterrupted media transmission.
• Knowledge of HD-SDI signal compression and forwarding via Nimbra switches to POP locations.
• Installed and configured:
  Switch modules
  Access modules
  Trunk modules
  J2K compression & decompression cards
  SFP modules
  Nimbra 300 & 600 series switches
• Performed GUI-based configuration of:
  QoS parameters
  Jitter & Latency control
  Speed (Full/Half Duplex)
  Real-time monitoring (Nimbra 360, 600, 688)
• Performed physical hardware replacement and corrective maintenance during live operations.
• Logged tickets, analyzed incidents, and coordinated updates with MSOC & NEP teams.
• Delivered post-event technical reports and documentation for clients including Star Sports and TCL.