Sandeep Patil
Gurgaon
Summary
Cybersecurity Analyst with 5 years of SOC experience, specializing in threat detection, incident response, and proactive defense. Proven track record in handling complex security incidents, streamlining response through automation, and enhancing organizational security posture. Adept at working with leading SIEM, EDR, XDR ,MDR and DLP solutions in fast-paced, high-stakes environments.
Overview
9
9
years of professional experience
1
1
Certification
Work History
Analyst security operations L2
Esec forte technologies PVT LTD
Project- Concentrix GSOC as a Cyber security analyst L2Gurugram
07.2024 - Current
- Monitored, investigated, and responded to security incidents, ensuring timely containment and resolution within organizational SLAs.
- Handling various alerts related to possible phishing attacks, phishing mail attacks, brute force attacks, logon failures, disabled account login attempts, DoS attacks, malware attacks (such as files infected by viruses or worms), port scans, network scans, etc.
- Conducted detailed compromise assessments by analyzing security logs and telemetry data, producing actionable threat reports.
- Mentored junior analysts during complex investigations, enhancing team capability and knowledge sharing.
- Proposed and implemented automation scripts and tools to improve SOC efficiency and minimize manual effort.
- Collaborated with admin teams to design and validate use cases for detecting unknown threats.
- Created and reviewed weekly and monthly incident and threat trend reports for executive and operational stakeholders.
- Analyzed phishing attacks through headers, content, and attachments, effectively mitigating threats with FireEye ETP.
- Periodically conducting phishing simulations and training programs using IRONSCALES and the Cofense PhishMe tool to educate users.
- Handling escalations from L1 analysts, automation of security processes and procedures to enhance and streamline monitoring capabilities.
Cyber security Analyst L2
Sattrix information security ltd
Project Concentrix GSOC as a Cyber security analyst L2 Gurugram
01.2021 - 07.2024
- FireEye EDR monitoring, malware/virus analysis, system containment, and DE containment.
- Proactively engaged in threat-hunting activities, utilizing advanced security tools and techniques to identify and mitigate potential threats before they could escalate.
- Working experience with threat-hunting teams of Cortex Unit 42 and Google Team (formerly Mandiant).
- Email analysis on phishing-related emails, and work over Office 365 protection and FireEye ETP to mitigate risk.
- Leveraged XSOAR to automate routine security tasks, reducing manual effort, and improving incident response times by 40%.
- Escalated and intimate in case of not reporting risk mitigated on more potential threats.
- Review the SOC Analyst ticket queue, and review the tickets in the BMC ticket portal.
Network security analyst
Sattrix information security ltd
Project - Pune TCL (FortiGate Firewall) Pune
04.2020 - 01.2021
- Established rules for site-to-site IPsec and remote access SSL VPN configurations in FortiGate firewall.
- Configured and administered cluster failover processes within FortiGate firewall.
- Troubleshot VPN-related issues to ensure operational reliability.
Cyber security Analyst L1
Sattrix information security ltd
Project- Bombay stock exchange: (Soc analyst L1 ) Mumbai
04.2019 - 04.2020
- Managing ARCON PIM, like creation service and user ID PIM, troubleshooting calls.
- Creating an advisory for any new vulnerabilities or threats.
- Daily checklists and tasks.
- Managing SIEM IBM QRadar, such as offense analysis, real-time alerts, and log searching. An incident was raised to the user and team.
Network security analyst
Sattrix information security ltd
Project- Axis Bank: (Network security analyst) Mumbai
12.2016 - 04.2019
Education
B.E (Bachelor of Engineering) - Electronics & Telecommunication
R.C.Patel Institute of Technology, Shirpur
Dhule06-2014
Skills
- SIEM (Palo Alto Cortex XSIAM, ArcSight ESM, and ArcSight Logger) logs searching
- Incident response
- Threat hunting
- Palo Alto Cortex XDR, Palo Alto Unit42 MDR, XSIAM monitoring
- CrowdStrike EDR
- IBM QRadar
- Email analysis and malware analysis
- Log management, log analysis, and investigation
- Microsoft Defender (email searching)
- Security incident management
- Clearswift - email security and data loss prevention (DLP)
- Security Operation Center (SOC)
- Nevis device (LAN security)
- Blue Coat proxy network security device
- FireEye HX, MD, EDR, and ETP monitoring
- Arcon PAM
Certification
- Cisco Certification Network Associate Training
- Certified Ethical Hacker (CEH) V12, EC Council, 2023
Personal details
Date of birth: Feb 1, 1989
Marital status: Married,
Languages: English, Marathi, Hindi, and Gujarati,
Current location: Gurgaon, Haryana,
Permanent address: H-705, Tanish Pearl Dabhadewas Haveli, Charholi, Pune, Pimpri Chinchwad 412105
Timeline
Analyst security operations L2
Esec forte technologies PVT LTD
07.2024 - Current
Cyber security Analyst L2
Sattrix information security ltd
01.2021 - 07.2024
Network security analyst
Sattrix information security ltd
04.2020 - 01.2021
Cyber security Analyst L1
Sattrix information security ltd
04.2019 - 04.2020
Network security analyst
Sattrix information security ltd
12.2016 - 04.2019
B.E (Bachelor of Engineering) - Electronics & Telecommunication
R.C.Patel Institute of Technology, Shirpur