VIJAYA BABU CHINTHAGUNTLA

⮚ Monitoring and analysis of events generated by various security and network tools like Firewalls, Proxy servers, AV, IPS/IDS, System Applications, Windows and Linux servers

etc.

⮚ Working as Security Analyst for SOC 24*7 environment

⮚Security Incident Response: Responsible for monitoring security alerts. Analysis of logs generated by appliances, investigation, and assessment on whether the incident is False positive or False Negative

⮚ Use SIEM tools (Manage Engine radar & Splunk) to detect possible signs of security breaches and perform a detailed investigation to confirm a successful breach. Perform root cause analysis

and appropriately handle the incident as per the defined Incident Management Framework.

⮚ Following end-to-end Incident Investigation and Incident Response process, ensuring to Coordinate with the Network team, and Server team regarding activities and technical issues.

⮚ Following end-to-end Incident Investigation and Incident Response process, ensuring to Coordinate with the Network team, and Server team regarding activities and technical issues.

⮚Using the Vulnerability Manager Plus tool for finding Vulnerabilities in Windows and Mac devices deploying patches for both Windows and Mac Devices.

⮚ We are using Sophos products

Email Security - we monitor Inbound traffic , Alerts.

Encryption - If any user has an encryption issue we will take remote of the device and resolve the issue for the respected user.

Endpoint protection-we monitor user devices for any policy violations like USB insert. we contact users to get the required information and report to HR Team.

⮚ Knowledge-sharing sessions with the team members whenever complex incident issues are raised and also lessons learned from other team members

⮚ Proven ability to learn quickly and adapt to new situations