Summary
Overview
Work History
Education
Tools & Technology
Languages
Certification
Timeline
Generic
Subhash Savarkar

Subhash Savarkar

Pune

Summary

Dynamic Lead SOC Analyst with extensive experience at Diyar United Company, excelling in incident response and proactive threat hunting. Proven leadership in managing cross-functional teams and enhancing SIEM capabilities, driving compliance with cybersecurity standards. Adept at vulnerability management and fostering a culture of security awareness, ensuring robust protection against emerging threats.

Overview

12
12
years of professional experience
1
1
Certification

Work History

Lead SOC Analyst

Diyar United Company
05.2025 - Current
  • Led SOC operations for KNPC and its sister companies, ensuring 24/7 monitoring and incident response across IT and OT environments.
  • Monitored security alerts and incidents for potential threats and vulnerabilities.
  • Supervised cross-functional SOC team, managing shift schedules and overseeing task execution for weekly and monthly reporting.
  • Drove centralized threat hunting initiatives utilizing IBM QRadar, Microsoft Sentinel, Microsoft Defender, and Nozomi Networks for proactive threat detection.
  • Administered MS Sentinel, IBM QRadar for log correlation, rule tuning, and alert triage to enhance threat detection efficiency.
  • Managed Nozomi Networks for OT asset discovery, anomaly detection, and integration with Sentinel, QRadar for unified threat intelligence.
  • Conducted investigations of high-severity incidents, providing actionable recommendations for containment and recovery.
  • Enriched SOC operations with threat intelligence feeds to identify emerging threats and bolster detection capabilities.

Authorize Officer

UBS
Pune
02.2022 - 05.2025
  • At UBS, I supported cybersecurity tool operations as part of the offshore team. My responsibilities included managing Trellix (McAfee) ePO and DLP, Splunk MS Sentinel SIEM, CrowdStrike, Avecto Defendpoint, MBAM encryption, Qualys Guard VM, and Tanium patching. I led key upgrade and migration activities, handled vulnerability and patch management.
  • Led vulnerability management and remediation using Qualys and Tenable, performing scan analysis, prioritization, and coordinating patching efforts across global infrastructure.
  • Participated in configuration reviews, tool upgrades, and service improvement initiatives; attended client meetings to align SOC operations with business goals.
  • Led POC, implementation, and documentation of new security tools to enhance SOC capabilities, Threat hunting and VM coverage.

Assistant Consultant

TATA Consultancy Services
Pune
01.2016 - 01.2022
  • At TCS, I served as an offshore/onshore SOC Lead, responsible for managing and supporting a range of enterprise security products including McAfee ePO, Splunk (SIEM), CrowdStrike Advanced Threat Protection, QualysGuard for vulnerability management, Checkpoint Encryption, Proofpoint Email Gateway, and McAfee Web Gateway. My role involved overseeing security operations, tool administration, incident coordination, and ensuring alignment with client security policies and compliance requirements.
  • Led team management activities including scope finalization, SOW drafting, and project planning for cybersecurity initiatives.
  • Managed end-to-end project transitions, including questionnaire preparation, meeting minutes (MoMs), weekly status reports, risk and issue register updates, SOP creation, and playback session documentation.
  • Operated and maintained cybersecurity tools such as Proofpoint, CrowdStrike, McAfee ePO/DLP/VSE/HIPS, and InfoArmor threat intelligence.
  • Successfully upgraded McAfee VSE, MCP, and HIPS across more than 15,000 endpoints (workstations and servers).
  • Executed McAfee ePO server upgrade from version 5.1.3 to 5.3.3, ensuring minimal downtime and full functionality.
  • Completed full project transition and documentation for SABIC, including SOPs and technical landscape mapping.

Sr. Security Analyst

Tech Mahindra
Pune
12.2014 - 01.2016
  • At Tech Mahindra I provided support as offshore team. I handled products like Symantec Endpoint Protection Manager, Email Gateway (Iron port), Web Security (ISA Proxy, Bluecoat Proxy), Encryption (Bitlocker), Cisco ASA and Security Patch Management (SCCM 2012).
  • ISO 27001:2005 standards and ITIL-aligned processes for incident, change, and problem management.

Engineer L2

Wipro Ltd
Mumbai
12.2013 - 12.2014
  • At Wipro, Supported the deployment and operations of Symantec Endpoint Protection (SEP) across SBI Life’s. Managed Symantec Endpoint Protection Manager (SEPM) for centralized policy enforcement, client updates, and endpoint security. The project involved rollout, administration, and troubleshooting of SEP across 6,400+ endpoints, including servers and workstations, ensuring consistent antivirus protection and compliance.
  • Successfully upgraded Symantec Endpoint Protection from version 11.x to 12.1 across 6,400+ endpoints, including servers and workstations.
  • Migrated SEPM management servers from physical infrastructure to virtual machines, improving scalability and operational efficiency.
  • Contributed to risk analysis, SOP documentation, and coordination with project teams for branch deployments.

Education

BE - Bhopal

Computer Science & Eng.
Bhopal
06-2013

Diploma - Bhopal

S.V. Polytechnic
Bhopal
06-2010

Tools & Technology

  • SIEM platforms (Splunk, IBM QRadar, Microsoft Sentinel)
  • Next-gen endpoint security (CrowdStrike, Microsoft Defender, Trellix ePO)
  • Web security (McAfee Web Gateway, Zscaler Proxy)
  • Email security (Proofpoint)
  • Data loss prevention (Trellix DLP)
  • OT security (Nozomi Networks)
  • Vulnerability management (Qualys Guard)
  • Threat hunting (MITRE ATT&CK framework)
  • Incident Management (NIST, Cyber Kill Chain)

Languages

English
Proficient (C2)
C2
Hindi
Proficient (C2)
C2
Marathi
Native
Native

Certification

Certified Information Security Manager (CISM) Certified
Certified Ethical Hacker (CEH) V11 Certified (ECC8327561940)
Microsoft Certified Security, Compliance & Identity SC-900 (1495F2-O8B01F)
Microsoft Azure fundamentals AZ-900 (8DS136-6969F2)
ITIL foundation version 3 Certification (GR750285949SS)
Splunk Power User certified professional (Cert-137449)
Qualys Guard Vulnerability Management partner certification
Microsoft SC-400

Timeline

Lead SOC Analyst

Diyar United Company
05.2025 - Current

Authorize Officer

UBS
02.2022 - 05.2025

Assistant Consultant

TATA Consultancy Services
01.2016 - 01.2022

Sr. Security Analyst

Tech Mahindra
12.2014 - 01.2016

Engineer L2

Wipro Ltd
12.2013 - 12.2014

BE - Bhopal

Computer Science & Eng.

Diploma - Bhopal

S.V. Polytechnic

Similar Profiles

  • Arthur HamiltonArthur Hamilton

    Lead SOC Analyst at MOHAM Transportation, LLCLead SOC Analyst at MOHAM Transportation, LLC

  • James BlueJames Blue

    Cybersecurity Analyst (SOC I) Apprentice, Cybersecurity Analyst (SOC I), SOC at Talent Solutions, IncCybersecurity Analyst (SOC I) Apprentice, Cybersecurity Analyst (SOC I), SOC at Talent Solutions, Inc

  • David HarrisonDavid Harrison

    Tier 2 SOC Analyst (Shift Lead) at SAICTier 2 SOC Analyst (Shift Lead) at SAIC

  • Angelique A. L. SpadaroAngelique A. L. Spadaro

    Sr. Cyber Intel Analyst - Team Lead (SOC) at Defense Information Systems Agency (DISA)Sr. Cyber Intel Analyst - Team Lead (SOC) at Defense Information Systems Agency (DISA)

CREATE PROFILE
Subhash Savarkar