Sagar Vaishampayan
Senior SOC Engineer / Team Lead
Riyadh
Summary
Experienced cybersecurity professional with 7 years of proven success in managing multiple projects, serving diverse clients, and
leading teams. Proficient in risk and compliance assessments, industry standards, and regulatory requirements, with a working knowledge of frameworks such as NIST-800, CIS, ITIL, and standards like PCI DSS, ISO 27001, etc. Skilled in logmanagement, and building and managing security devices such as SIEM. to ensure the safety and privacy of critical data.Passionate about driving innovation and leading a team of professionals to develop and implement effective security strategies that
continuously improve security practices and stay ahead of emerging threats. Seeking a challenging role in a dynamic organization to
design and implement an overall audit
Overview
6
6
years of professional experience
3
3
years of post-secondary education
6
6
Certifications
4
4
Languages
Work History
SOC Lead
Cyberstone
Riyadh
01.2019 - Current
- Monitored computer virus reports to determine when to update virus protection systems.
- Monitored use of data files and regulated access to protect secure information.
- Conducted security audits to identify vulnerabilities.
- Worked with other teams to enforce security of applications and systems.
- Maintain a health check of all centralized logs and suggest any tuning recommendation to the application owner in order to provide the finest version of logs.
- Threat hunting for suspicious activities in the network and endpoint
- Providing advanced detection for the malicious event on the Endpoint and Network Level.
- Providing help to IR team in extracting necessary logs and activities in order to reach a conclusion on each incident
- Function as a technical escalation point for SOC analysts
- Assist the Incident Response team in handling security incidents
- Perform complex security investigations and root cause analysis
- Ensure that all security events are properly documented/tracked to meet audit and legal requirements
- Mentor junior-level security analysts
- Proper communication and escalation during an incident
- Develop documentation in support of response processes and/or procedures
- Create Dashboards and Custom Hunts based on known IOCs and behavioral indicators.
- Implemented security measures to reduce threats and damage related to cyber attacks.
- Performed risk analyses to identify appropriate security countermeasures.
- Proven ability to develop and implement creative solutions to complex problems.
- Defining Playbooks for SOC for Analyst
- Hands on experience in a SOC/IR environment with emphasis mainly on Threat Modeling.
- Ensured cyber security policies are adhered to and that required controls are implemented and facilitated continuous monitoring system.
- Managing and guiding the team for elevated risks and initiate the escalation procedure to counteract potential threats/vulnerabilities.
- Threat Intel and CIRT (Cyber Incident & Response Team) related mode.
- Perform threat research, conduct forensic investigations and triage security incidents and Threat hunting
- Technical leadership and enabling business development for security solutions and services
- Coordinated hiring, training and managed development plans for SOC team
Cybersecurity Analyst
Network Intelligence India
Mumbai
01.2018 - 01.2019
- Analyzed network traffic and system logs to detect malicious activities.
- Security Operation Center Handling 9+ Customers with Various SIEM tools
- Also was Deployed to UAE at client location for SIEM implementation Hands-on Experience on Proof point, APT alerts, Fortinet Sandbox
- Worked on Dubai Based Client for a Emerged Airline of Dubai as a Content Engineer And Team Lead With SIEM -LogRhythm Monitoring And its Administration -Creation Of New Alarms, Fine Tweaking New alarms,
- Making of new Types of dashboard for Monitoring, Log Governance also Hands on Experience on RSA netwitness and Ecat
- Hands on Experience with 5+ SIEM And 2+ Tools For threat hunting also Email gateway
- Tools contains -Mcafee SIEM, ArcSight SIEM, Qradar SIEM, Alienvault SIEM, LogRhythm SIEM and its Administration Threat Hunting &Forensic Tools for IR
- Experience on RSA Netwitness &Ecat Mail Gateway Such as Proofpoint &Mimecast
- Also Other tools and Task like Fortinet Sandbox
- Creation of DESC Advisory, Monthly Report, Weekly Report
SOC Analyst
Happiest Minds Technologies
Mumbai
08.2017 - 01.2018
- Handling Information Security incidence and working on securing monitoring and management tools
- Having a good Experience on SIEM,Mcafee ESM
- Informing the Customers if we see any suspicious traffic targeting them or when we stop receiving events from their FW, IPS and health check up Issues
- Creating and Generating on demand reports for customers which show security suspicious behavioral customized information that customer interested on.
- Work within 24*7 shift-scheduled Security operation environment
- Conducting different type of analysis on security incidence
- Demonstrate good communication and customer care skill by documenting all analysis work to
- Talking to customers periodically to get update from them about Service and satisfaction
- Monitor network security events received from customers server and then take appropriate action based on customer security policy
Education
Bachelor of Science - Computer Science
Mumbai University
Munbai 06.2014 - 06.2017
Skills
Monitoring hands-on:Logrhythm, Mcafee, ArcSight ESM, ArcSight Logger, AlienVault, QRadar, Clearskies
Certification
Certified Ethical Hacking
Additional Information
Martial Stauts - Single
Contact details - +91 8169902423 / +966 531218617 / +971 543914229
Timeline
Splunk Certified
10-2021
Computer Hacking Forensic Investigator (CHFI)
07-2020
ITIL V9
02-2020
Logrhythym SIEM Certified
01-2019
SOC Lead
Cyberstone
01.2019 - Current
Cybersecurity Analyst
Network Intelligence India
01.2018 - 01.2019
Mcafee SIEM Certified
10-2017
SOC Analyst
Happiest Minds Technologies
08.2017 - 01.2018
Certified Ethical Hacking
06-2017
Bachelor of Science - Computer Science
Mumbai University
06.2014 - 06.2017
Similar Profiles
James RobertsJames Roberts
Information Security Consultant at Cyberstone SecurityInformation Security Consultant at Cyberstone Security
Amani AlhozaimiAmani Alhozaimi
Senior Software Developer at Ministry of JusticeSenior Software Developer at Ministry of Justice
Dania AlowaifeerDania Alowaifeer
Coop Trainee at Solutions by StcCoop Trainee at Solutions by Stc
SAJID ULLAH KHANSAJID ULLAH KHAN
Senior Civil 3D CAD / BIM Modeler at WSSJV (WEBUILD-SAJCO- SILINI)Senior Civil 3D CAD / BIM Modeler at WSSJV (WEBUILD-SAJCO- SILINI)
MOHAMMED RAHAMATHULLAMOHAMMED RAHAMATHULLA
Technical Specialist at HCL Technologies ltdTechnical Specialist at HCL Technologies ltd