Sekar C

Information Security Analyst with over 11 years of professional experience in the Information Security sector with a strong emphasis in Information Assurance, Security Control Assessment, Vendor Security Assessment, Vulnerability assessment, Policy Implementation and Security Documentation. To work in a technically competitive environment where I can explore my knowledge in depth, which makes me to grow personally and professionally.

• Google Workspace
• SentinelOne EDR
• Netskope Proxy and endpoint protector DLP
• Sonic wall Analytics firewall
• Cube backup(Email backup)
• Azure AD admin console
• Intune admin console

ERSPS9959H

• Working on Google workspace admin console to managing the Email accounts, Groups, and Google drive, Google Calendars.
• Create policies and block all the storage devices through the DLP applications.
• Creating policies to block or allow Desktop applications like whatsapp, SKype, One-drive.
• Through the DLP application make sure that only approved physical storage devices are allowed to connect.
• Will monitor the incidents logs on the DLP console and act accordingly and escalate if any data breach is happening.
• Created different DLP policies based on the data classification to prevent the data breach.
• Regularly update the DLP software versions to the current recommended versions on all the client systems.
• Always dive deep into the DLP incidents and create additional processes and controls continuous risk reductions.
• Define new and enhanced existing DLP policies in multiple tools (Endpoint protector DLP, Netskope, Google drive, Proofpoint and other DLP tools).
• Fine tune the existing DLP policies on a continuous basis to avoid any DLP incidents in future.
• Collaborate with teams and enhance DLP monitoring or response processes on an ongoing basis.
• Participate and contribute in Risk Management and Internal Audit discussions, actively document the process and share the required evidence.
• Deployed SentinelOne EDR tool over 15000+ workstations (Windows and MAC).
• Identify incidents and make sure recommendations to protect the network.
• Collect Logs for forensic investigations.
• Performing manual threat hunting to protect the infrastructure.
• Through the SentinelOne Deep Visibility query to analyze the threat's deeply and take the necessary actions.
• Regularly monitor SentinelOne incidents and take the necessary actions for the detected threats.
• Will immediately act for SOC team incidents related to malwares and other security threat alerts.
• Regularly connect with team member's and sharing the KT.
• Periodically export the vulnerabilities report from the EDR application and validate it.
• Informing all the application vulnerabilities to the concerned team and make sure the recommended fix was applied.
• Configure the SSO on the azure AD for all the internal and external applications.
• Make sure all the internal and external applications are accessible only through SSO login.
• Create and manage various security policies on Proof Point admin console.
• Regularly monitor proof point logs to block the spam emails.
• Closely work with the SOC team to act and take the necessary actions for the email related incidents.
• Based on the requirement creating different policies on Netskope proxy server to block and allow the URLs.
• Escalate the data breach incidents to the concerned department head and security team head and take the necessary actions to the users.
• Managing the private dashboard access through the Netskope VPN.
• Creating various Web Filtering policies and apply to the Users, computers.
• Creating NAT Policy based on the requirements.
• Working on Google workspace admin console to manage Email and Google drive related queries.
• Create and manage various security policies on Google workspace admin console to avoid data loss.
• Configuring Spam and spoofing policy to detect the phishing emails.
• Periodically circulating spam and phishing related awareness emails to all the users.
• Quarterly connect with the Google support team for the security audit and enable the security options suggested by them.
• According to business requirements, work with various vendors and check POC.
• Managing the windows end points through Intune MDM and Publish the various applications through Intune.

• Age: 34
• Father's Name: Chelladurai Philip
• Date of Birth: 01/18/1989
• Gender: Male
• Nationality: Indian
• Marital Status: Married

• English
• Tamil

I hereby declare that all the information presented above is true to the best of my knowledge