Azure Sentinel
Sivaji Ganesh I
Senior Cyber Security Specialist
Hyderabad,TG
Summary
Cybersecurity professional with 8+ years of experience in SIEM engineering, SOC operations, and incident response. Skilled in SIEM implementation, configuration, and deployment of Azure Sentinel & IBM Q Radar. Expertise in log ingestion, rule tuning, correlation searches, and automated threat response. Strong background in cyber threat investigation, forensic analysis, and incident triage.
Overview
8
8
years of professional experience
1
1
Certificate
3
3
Years of Diploma
Work History
Senior Cyber Security Specialist
Guidehouse
Thrivundrum, Kerala
08.2022 - Current
- Implemented, configured, and deployed SIEM solutions including Azure Sentinel, IBM Q Radar to enhance security monitoring and threat detection capabilities.
- Designed and optimized log ingestion pipelines for Windows, Linux, and cloud environments (Azure, AWS, GCP) to improve threat visibility and correlation in SIEM tools.
- Customized detection rules, correlation searches, and dashboards in Azure Sentinel and Q Radar, improving alert accuracy and reducing false positives.
- Integrated security event logs from firewalls, IDS/IPS, endpoint security, and cloud applications into SIEM platforms for real-time threat monitoring and analysis.
- Developed use cases, fine-tuned alerts, and automated threat response workflows using SOAR capabilities within Azure Sentinel and Q Radar.
- Managed enterprise-wide vulnerability assessments using Qualys and Rapid7, Insight VM, ensuring real-time threat detection and compliance.
- Performed vulnerability scanning, risk analysis, and remediation tracking using Qualys Cloud Platform and Rapid7 Insight VM.
- Configured and fine-tuned Qualys VM & Rapid7 scan policies, reducing false positives and improving detection accuracy.
- Integrated Qualys VM & Rapid7 Insight VM with SIEM solutions (IBM Q Radar, Splunk) to enhance threat intelligence correlation.
- Automated vulnerability scanning and reporting workflows using Qualys APIs & Rapid7 scripting, reducing manual efforts.
- Developed security metrics and technical analysis to give insight into performance and trends.
- Created policies and procedures for emerging security technologies and proposals.
Senior Security Analyst
Virtue Software Technologies
Hyderabad, Telangana
05.2021 - 07.2022
- Performed proactive monitoring of Q Radar SIEM to detect potential security breaches, conducted in-depth investigations, and executed Root Cause Analysis (RCA) in alignment with the Incident Management Framework.
- Experienced in incident response lifecycle, including detection, containment, eradication, and recovery of security breaches.
- Analyzed security alerts, differentiated between false positives and true positives, and managed end-to-end incident response processes while adhering to defined SLAs and organizational protocols.
- Executed Qualys vulnerability scans, identified high-risk security vulnerabilities, and collaborated with business owners and IT teams to drive timely remediation through structured patch management cycles (weekly, monthly, quarterly).
- Managed security incidents through ServiceNow by creating and tracking tickets, monitoring progress, and preparing daily/monthly compliance reports to support regulatory and audit requirements.
- Liaised with business owners and Windows/Linux teams to ensure seamless patch deployment, minimizing business disruptions while strengthening the overall security posture.
- Spearheaded efforts to achieve regulatory compliance across all aspects of the organization''s cybersecurity program.
- Trained junior analysts on industry best practices, fostering a strong team dynamic that resulted in increased efficiency.
SOC Analyst
Efftronics Systems Pvt Ltd
Vijayawada, Andhra Pradhesh
05.2017 - 04.2021
- Conducted continuous monitoring of security events across firewalls, proxy servers, antivirus solutions, phishing detection tools, intrusion prevention systems (IPS), load balancers, and cloud environments (Azure & Google Cloud) on Windows and Linux servers.
- Analyzed security alerts, investigated system logs, and differentiated between false positives and genuine threats to enable accurate incident response and threat mitigation.
- Leveraged McAfee EPO and ESM SIEM tools for proactive threat detection, conducted in-depth root cause analysis (RCA), and managed security incidents in alignment with the Incident Management Framework.
- Executed comprehensive incident response processes, ensured timely issue resolution within defined SLAs, and prepared monthly compliance reports to maintain regulatory adherence.
- Maintained accurate documentation of all SOC activities, facilitating knowledge sharing across the organization.
- Reduced false alarms by fine-tuning intrusion detection system configurations based on historical analysis of incidents.
Skills
Azure Sentinel
IBM Q Radar
CrowdStrike Falcon
Microsoft Defender
Microsoft Office 365 ATP
Proofpoint
File Integrity Monitoring
IDS Integration
Incident Response Management
SOC Analyst
Cyber Security
SIEM
Splunk
Data loss prevention
Cryptography
Security information and event management
Intrusion detection systems
Network security monitoring
Vulnerability assessment
Incident response management
Malware analysis
SIEM management
Log analysis
Threat intelligence
Incident response
Endpoint security
Packet analysis
Threat hunting
Certification
Cybersecurity Analyst Certification (CySA+) - CompTIA.
Education
Diploma - Electrical And Electronics Engineering
06.2013 - 07.2016
Accomplishments
- Spearheaded the implementation of a Zero Trust Security Model, reducing unauthorized access risks.
- Investigated and mitigated over 500+ cybersecurity incidents , reducing response time.
- Optimized SIEM configurations, enhancing log correlation efficiency.
- Achieved secure compliance with regulatory frameworks such as ISO 27001 and GDPR through continuous monitoring, documentation, and security policy adherence.
- Trained 200+ employees on phishing awareness , reducing successful attacks.
Software
MS Defender
Crowdstrike
Splunk
IBM Q Radar
SOC
Qualys
Microsoft Office 365 ATP
Proofpoint
Varonis DatAdvantage
Cisco Umbrella
FortiGate
McAfee IPS
Forti Client
Work Availability
monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse
Projects Achievements
- Designed and implemented Zero Trust architecture, enhancing security posture.
- Automated security monitoring & log analysis using SIEM & EDR tools to reducing manual effort.
- Led security awareness training for 200+ employees, strengthening cybersecurity culture.
Timeline
Cybersecurity Analyst Certification (CySA+) - CompTIA.
09-2022
Senior Cyber Security Specialist - Guidehouse
08.2022 - Current
Senior Security Analyst - Virtue Software Technologies
05.2021 - 07.2022
SOC Analyst - Efftronics Systems Pvt Ltd
05.2017 - 04.2021
Sai Spurthi Institute of Technology - Diploma, Electrical And Electronics Engineering
06.2013 - 07.2016