Shaik Md Mohsin
SOC Analyst
Gulbarga,KA
Summary
• Performs real-time investigation, analysis on events logs using SIEM tools of Network Security Components and devices such as Firewalls, IDS, and IPS to segregate and correlate the logs.
• Incident Detection and Validation Incident Research, Reporting and Escalation.
• Having special skillset in ArcSight, Splunk ES, IBM Qradar SIEM, Antivirus Symantec, McAfee, Vulnerability assessment Qualys guard, IDS/IPS, Source- fire, Arbor Peak flow anti-DDOS solution, Malware Analysis, Threat Intelligence.
• HP service manager, solar winds, Whats up gold tool, Cisco iron port, Siemplify SOAR, SentinelOne EDR, WAF.
• Incident management- BMC remedy, Salesforce, Service now, Service desk, Salesforce, Security Incident Response.
Overview
4
4
Certifications
7
7
years of post-secondary education
4
4
years of professional experience
Work History
Security Analyst
Triad Square Infosec
Bangalore, Karnataka
11.2020 - Current
• Real Time Log monitoring on Splunk ES in the Security Operations Centre from different devices. .
• Investigating and creating case for the security threats for further investigation and action.
• Reporting, follow-up and mitigation of all and any such security issues found on the network through intelligent identification and prioritization of external attacks.
• Differentiate true and false positive incidents.
Senior Consultant
Ernst & Young EY
Bangalore, karnataka
09.2019 - 05.2020
• Real Time Log monitoring on SIEM IBM Qradar from different devices like IDS/IPS, Firewalls, Anti-virus etc.
• Handle and review security incidents created by SOC team based on priority of ticket related to Network, Servers, Applications, and end user.
• Works as incident manager and follow ups with end users and all partners to reduce LTTR of tickets.
• Provide Justification to higher management for KPI’s of security incidents.
Information Security Specialist
Deloitte via Shell Infotech
Hyderabad, Telangana
12.2015 - 07.2017
• Work on the ArcSight ESM providing operations support at the Security Operations Center for US, Canada and Global.
• Recognizes successful / potential intrusions and compromises through review and analysis of relevant event detail information.
• Launch and track investigations to resolution. Recognizes attacks based on their signatures. Differentiates false positives from true intrusion attempts.
• Use the escalation process for multiple users impacting incidents all the time and keep update the management about the progress of the incident.
Incident Shift Handler/Engineer
Emirates Telecom
Dubai, Dubai
04.2015 - 11.2015
• Work on the ArcSight ESM SIEM providing operations support at the Security Operations Center.
• Provisioning MSS (Managed Security Service) for Anti DDOS with Arbor Peak Flow cloud server.
• Enabling countermeasures to detect and block DDOS attacks.
Handle the complete incident management framework cycle right from incident identification, incident containment, performing root cause analysis, suggestion, and implementation of preventive and corrective controls.
SOC Analyst
Mobily Infotech
Bangalore, Karnataka
06.2013 - 08.2014
• Managing and Supporting Symantec Endpoint Protection (SEP).
• Real time log monitoring on ArcSight in the Security Operations Center from different devices such as Firewalls, IDS, IPS received from client and segregating and correlating the logs of devices.
• Security Incident Response and closure of Incidents within SLA using BMC remedy.
• Performs real-time monitoring, investigation, analysis, reporting and escalations of security events.
Education
Master of Science - Computer Science
Jawaharlal Nehru Technological University
Hyderabad 06.2012 - 06.2014
Bachelor of Science - Computer Science
Visvesvaraya Technological University
Belgaum 09.2004 - 06.2009
Work Availability
monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse
Certification
CTIA- Certified Threat Intelligence Analyst- ECC1248560397
Timeline
CTIA- Certified Threat Intelligence Analyst- ECC1248560397
02-2021
Security Analyst
Triad Square Infosec
11.2020 - Current
Senior Consultant
Ernst & Young EY
09.2019 - 05.2020
CEH- Certified Ethical Hacking V10- ECC5783901246
01-2019
BSI Certified ISO 27001:2013 Lead Auditor ISMS
02-2017
Information Security Specialist
Deloitte via Shell Infotech
12.2015 - 07.2017
Incident Shift Handler/Engineer
Emirates Telecom
04.2015 - 11.2015
SOC Analyst
Mobily Infotech
06.2013 - 08.2014
CCNA Security - Cisco Certified Network Associate Security- CSCO11724433
09-2012
Master of Science - Computer Science
Jawaharlal Nehru Technological University
06.2012 - 06.2014
Bachelor of Science - Computer Science
Visvesvaraya Technological University
09.2004 - 06.2009
Similar Profiles
RAVEENDRA KALTURIRAVEENDRA KALTURI
SENIOR TECHNICAL LEAD at TRIAD SQUARE INFO SEC PVT LTDSENIOR TECHNICAL LEAD at TRIAD SQUARE INFO SEC PVT LTD
Nikitha Varsa YuvarajNikitha Varsa Yuvaraj
Product Manager Intern at Smart InfosecProduct Manager Intern at Smart Infosec
Saquib FarooquiSaquib Farooqui
Sales Development Representative at InfoSec VenturesSales Development Representative at InfoSec Ventures
Abdul KhadarAbdul Khadar
Principal Project Manager at Larsen & ToubroPrincipal Project Manager at Larsen & Toubro
Dr VenkateshDr Venkatesh
Head Physiotherapist at Maanaaveeya Kalyana Trust Patil GroupHead Physiotherapist at Maanaaveeya Kalyana Trust Patil Group