Summary
Overview
Work History
Education
Skills
Accomplishments
Certification
Framework Proficiency
Interests
Strengths
Timeline
Generic
Sai Krishna Raman

Sai Krishna Raman

Security Analyst
Mumbai

Summary

To utilize my skills as Security Analyst professional for an organization and to work in a highly competitive environment to seek new opportunities, pursue adaptability, create exceptional value and enrich my share of experience and developing a phenomenally successful attitude towards living on the edge.

Overview

4
4
years of professional experience
4
4
years of post-secondary education
6
6
Certifications
3
3
Languages

Work History

Security Analyst

SITEL India Private Limited
Mumbai
2021.06 - Current
  • Dedicated monitoring and analysis of Security logs generated by SIEM tool (Splunk and SumoLogic), events on interest handling and escalation as well as incident response generation.
  • Correlate and aggregate the data feeds from Firewalls, Operating Systems, Endpoints, VPN, applications, network devices (routers etc.) and creating alerts, dashboard for visualization.
  • Collaborate with various (Threat analyst, Network, Server, Risk Management) teams to provide indications, warnings and contribute to predictive analysis of malicious activities.
  • Identify and ingest indicator of compromise (IOC’s) e.g., malicious IP’s / URL’s etc. into network tools and making sure IOCs are blocked at every internet point of presence.
  • Perform investigations & evaluations of network traffics, read & interpret logs, sniffer packets and PCAP analysis with different tools.
  • Analyse Firewall, email, web, DNS, IDS/IPS, VPN, AV logs to identify, interpret threats & mitigate intrusion attempts.
  • Perform incident monitoring, response, triage & initiate investigations. Escalate any security incident to Incident management team (IMT) & Forensic team as required.
  • Investigating all reported suspicious emails and determine whether the emails are malicious, non-malicious or legitimate and reply to the user who reported the suspicious email with message reporting the findings and recommendations for further steps.
  • Examining phishing emails, domains and IP’s using various open-source tools and make recommendations to block the malicious domains, hashes and IP’s.
  • Scan and monitor system vulnerabilities on servers and infrastructure using a Vulnerability security solution and drafting reports on findings to remediate the vulnerabilities.
  • Reviewing all security alerts received, by making use of all tools and log files to the determine the alert if the alert is false positive, a security event, an actual attempt to breach or a security incident.
  • Alert Prioritization, guided investigation, rapid deployment and visibility into Endpoint threats using McAfee ENS, Mandiant, Fire Eye and Cisco AMP.
  • Ensuring all the endpoints are integrated with SIEM on timely basis to provide centralized alerting, visibility to help in incident response.
  • Create / Escalate tickets for alerts that signifies a suspicious activity and take necessary action through the ticketing tool.
  • Reviewing alerts from the DLP tool regarding confidential data being sent transferred outside the network and initiating the Disciplinary action if required.
  • Mentoring other members of the team present during security incidents and guiding to follow proper process effectively and act as the point of escalation during the shift.
  • Carrying out audit on network devices bi-annually, creating reports and providing them to the leadership.
  • Reviewing privileged user data (Domain, local, SD admins and service accounts) on weekly basis.
  • Participating in phishing campaigns and providing statistics to the leadership on simulated mock phishing campaigns.
  • Stay up to date with current vulnerabilities, attacks, evolving threats and countermeasures with security blogs, reports published from CISA, FBI, DHS, Tenable, Hacker News etc.

Information Security Analyst

ATOS
Bangalore
2019.02 - 2021.06
  • Configuring URL and Application filtering rules in Proxy
  • Resolving Client issues and troubleshooting. Escalating to client, based on suspicious traffic, displaying the event data in different layouts by defining Dash Boards & Data Monitors
  • Identification of incidents and subsequent analysis and investigation to determine their severity and the response required.
  • Coordinated security updates to avoid outages and downtime.
  • Document all activities during an incident and providing leadership with status updates during the life cycle of the incident.
  • Prioritized and organized tasks to efficiently accomplish SLA’s.
  • Investigated and resolved incidents of unauthorized access to sensitive information.
  • Assist with the development processes, procedures to improve incident response times, analysis of incidents and over all SOC functions.
  • Recommend improvements in security systems and procedures.
  • Discussion with manager regarding tickets which needs assistance.
  • Researched, planned and implemented small- and large-scale improvements within team.
  • Creating reports on daily, monthly, quarterly and bi- annually.
  • Escalating and follow up with appropriate teams on closure of alerts.
  • Providing Inactive and disabled user data on quarterly basis and make sure account is deleted.
  • Oversee all reports and documentation related to network equipment operations.
  • Perform shift hand over at the end of shift to provide situational awareness to the incoming shift.

Education

Bachelor of Technology - Civil Engineering

JNTUH
Karimnagar
2014.09 - 2018.09

Skills

Vulnerability Assessment

undefined

Accomplishments

  • Participated in Sports and Hackathons till University Level.
  • Won many championships and awards at District and University level in cricket and Volleyball.
  • Awarded employee of the Quarter for implementing a solution for the existing problem.

Certification

CEH

Framework Proficiency

  • NIST(National Institute of Standards & Technology)
  • ITIL(Information Technology & Infrastructure Technology)
  • CIS, COBALT, MITRE ATTACK, SANS.
  • ISO 27001/27002, GDPR.
  • OSINT, OWASP.
  • Cyber Kill Chain, OSI Model.
  • PCI-DSS (Payment Card Industry Data Security Standards).

Interests

Reading Books

Watching Podcasts

Internet Surfing

Playing Sports

Strengths

  • Problem Solving.
  • Analytical Thinking.
  • Strategic Knowledge.
  • Quick Learner
  • Team Player
  • Self-Motivated.

Timeline

CEH

2023-02

EC-Council - Network Defense Essentials

2023-02

EC-Council- Ethical Hacking Essentials

2023-02

EC-Council- Digital Forensics Essentials

2023-02

SumoLogic Certified in Fundamentals, Search Mastery & Administration.

2022-03

Security Analyst

SITEL India Private Limited
2021.06 - Current

Cisco Cyber Security Specialist

2021-05

Information Security Analyst

ATOS
2019.02 - 2021.06

Bachelor of Technology - Civil Engineering

JNTUH
2014.09 - 2018.09

Similar Profiles

  • Nikhil Kumar

    Nikhil KumarNikhil Kumar

    Operations Manager, Growth Point at Sitel India Private LimitedOperations Manager, Growth Point at Sitel India Private Limited

    View Profile
  • Avtar Singh Sohal

    Avtar Singh SohalAvtar Singh Sohal

    Manager - WFM at Sitel India Private LimitedManager - WFM at Sitel India Private Limited

    View Profile
  • POONAM BAGWALE

    POONAM BAGWALEPOONAM BAGWALE

    WORKFORCE REAL, ANALYST at SITEL INDIA PRIVATE LIMITEDWORKFORCE REAL, ANALYST at SITEL INDIA PRIVATE LIMITED

    View Profile
Sai Krishna RamanSecurity Analyst