Hi, I’m
Saikumar M
Security Consultant
Bengaluru,KA
Summary
Over 7 years of experience, with 5 years in Information Security, currently working as a consultant in SOC (Security Operations Center). I am a competent professional as a Security Analyst, with hands-on experience in Threat Analysis and Security Monitoring and Operations. Experienced with SIEM (Security Information and Event Management) tools like Azure Sentinel, IBM Qradar and Splunk for real-time events. Skilled in detection and response tools such as Microsoft Defender and Sentinel One with an understanding of security solutions including Firewalls (Palo Alto, Checkpoint, Fortinet), DLP, Anti-virus, IPS, Proxy, Email Security, WAF, and PIM. Experienced in investigating and creating cases for security threats, performing log analysis, and promptly responding to crucial alerts.
Overview
8
years of professional experience
2
Certifications
4
Languages
Work History
Capgemini
Security Consultant
09.2022 - Current
Job overview
- Conducted incident detection, analysis, containment, and remediation of potential security incidents as a member of the Level 2 SOC in a 24/7 environment.
- Escalated complex incidents to the Level 3 SOC team for further analysis and resolution when necessary.
- Generated MTTD and MTTR reports, created monthly reports to provide a summarized overview of the organization's cybersecurity posture.
- Supported ongoing tracking and remediation of security issues, ensuring timely closure of tickets.
- Handled critical incidents according to organizational standards.
- Reviewed alerts generated by Microsoft Defender and Azure AD, performing analysis, containment, and remediation actions.
- Investigate and remediate incidents in Microsoft 365 Security Centre. Remediate Secure Score recommendations in Microsoft 365 and Azure.
- Investigated detection made by MS Sentinel to ascertain causes and promptly respond to specific threats.
- Coordinated with the Network Team to review firewall rules, port opening requests, and URL categorizations, enhancing security posture.
- Investigated malicious/suspicious URL categories such as botnet callbacks, spyware, and user access/activity.
- Monitored and analyzed traffic, communicated with the Level 3 team to contain/stop potential infections.
- Managed IOC, conducted historic log analysis using SIEM.
- Investigated detection from EDR on assets to determine causes, respond to specific threats, and perform containment.
- Analyzed incidents using the MITRE ATT&CK framework to understand and respond to cyber threats.
- Monitored and processed containment and remediation, ensuring prompt resolution within SLA guidelines.
Teleperformance PVT LTD
Security Analyst
08.2018 - 07.2022
Job overview
- Working in a 24/7 Security Operation Centre
- Working on IBM Qradar for alerts monitoring and managing.
- Working on Defender as EDR and Email Gateway.
- Working on ServiceNow as ticketing tool
- Escalates cyber security events according to playbook and standard operation procedures (SOPs)
- Preparing daily, weekly and monthly and ad-hoc reports along with their complete analysis
- Reporting device/interface down events to maintain maximum uptime and thus helping in preventing any log loss or minimizing any delay.
- Worked on Threat intelligence tools like Virus Total, IPVOID, IBM X-Force Exchange and Abuseipdb.com
- Knowledge of MITRE ATT&CK, Cyber Kill Chain Frameworks, and Threat hunting.
Education
RJSIMS CollegeBangalore
Bachelor of Business Management (BBM)
01.2013
University Overview
graduated from Bangalore University
Skills
Incident Response
Threat Hunting
Phishing & Malware Analysis
Log Analysis
Vulnerability Management
Network Security
Detection Response Tools: O365 Microsoft Defender, Sentinel One
SIEM: Azure Sentinel (SOAR), IBM Qradar
Email Security: Abnormal Security Corporation
Ticketing Tools: Service Now (Snow) JIRA
Certification
SC-200 Microsoft Security Operations Analyst Sep 2024 - Sep 2025
Declaration
I hereby declare that the above-mentioned information is correct up to my knowledge and I bear that responsibility for the correctness of the above-mentioned. Date: Place: Bangalore Signature (Saikumar M)
Timeline
Security Consultant
Capgemini
09.2022 - Current
Security Analyst
Teleperformance PVT LTD
08.2018 - 07.2022
RJSIMS College
Bachelor of Business Management (BBM)