**, ********* ****** ******, *.V.Road, Dharmapuri,Tamilnadu – 636701, India
+91-759*******, +91-807*******
************.***@*****.***
https://www.linkedin.com/in/santhosh-gopi-80172279 OBJECTIVES
A Self-Driven, Self-Motivated inquisitive person, seeking a challenging career where I can apply my knowledge, skills and contribute to the betterment of the Organization. Academic Qualification
2016 + Master of Science
Cyber Forensics & Information Security,
University of Madras, Chennai
77%
2014 + Bachelor of Science
Computer science
RKM Vivekananda College, Chennai.
81%
2011 + Higher Secondary Education
Math’s, Computer Science,
Senthil Matric Hr. Sec. School, Dharmapuri
83%
2009 + SSLC
Senthil Matric Hr. Sec. School,
Dharmapuri,
82%
EXPERIENCE
Working as “Security Operation Center Analyst “in Verizon Enterprise Solutions, MSS, Chennai from May 2017 to Present. (As Contractor)
Worked as “Information Security Analyst “in Fourth Dimension Technologies Private Ltd, Chennai from May 2016 to May 2017.
SKILL SET
Threat Monitoring and Event Analysis in CARE (Verizon proprietary SIEM Tool)
Incidents analysis from Ticketing tool (ETMS).
Co-ordinating with Customers and Escalating incidents to Tier-3 for alert reductions.
QRadar Architecture and Working of Components.
Offense monitoring and generating the Email notification.
Rules creation based on Event Type, Categories, QID.
Generate & Schedule Reports based on Query.
Implementation of Splunk search head, Indexers, Universal Forwarders.
Alerts, Reports, Dashboard generation in Splunk.
Implementation and Alerts analysis in OSSEC (HIDS).
Rules creation for OSSEC alerts.
Implementation Automation through Ansible .
Security Event analysis from Syncurity IR tool.
Event analysis of SourceFire (IPS), IDS, Etc,.
Security Hardening of endpoints.
Vulnerability Assessment through Nexpose on Monthly basis and Critical, Severe vulnerability patching.
Implementation of RSA Netwitness for logs (SIEM).
Working of all RSA Netwitness components.
Backup & Restoration of all Netwitness components.
Creating Rules and generate Scheduled Reports.
Raising RSA Support call & co-ordinate the Issue.
Upgradation of RSA Netwitness Components.
Building Event Processing Language rules.
Troubleshooting errors based on Security Alarms.
Vulnerability Assessment Penetration Testing.
CERTIFICATION
CompTIA Security +
Certified Associate in Advanced Security Operation Centre.
Certified Professional in Security Analytics.
Certified Professional in Authentication Manager.
Certified Ethical Hacker V09.
ACTIVITES
Class Representative for our batch and coordinated all events.
Conducted Cyber Security Awareness Program 2K15 to 6500+ Students & Public in and around Chennai.
AREA OF INTEREST
Security Information Event Management.
Information Security.
Risk Management.
Networking.
Cyber Forensics
Vulnerability Assessment and Penetration Testing. TOOLS KNOWN
Splunk, RSA Netwitness, IBM QRadar - SIEM
OSSEC.
Nexpose, Nessus, Acunetix – VA Scan
RSA Archer.
WinRm, Snare agents.
Wireshark.
FTK Imager, FTK Registry Viewer - Forensics, EnCase LANGUAGE KNOWN
Tamil.
English.
INTERNSHIP / WORKSHOPS
Internship on Web Application Security in NCDRC for 20Days, Coimbatore .
Cyber Forensics Workshop in Centre for Advanced Computing(CDAC) in Trivandrum, Kerala on January 2015.
International Information Security meet conducted by OWASP & DEFCON in Lucknow on February 2015.
Indian Cyber Conference, InCyCon’15 in Chennai in August 2015. PROJECTS
UG Project - Intranet Communication.
The main aim of project is to accomplishing the tasks of sending offline messages through text and also communicating with the user directly through chatting over the Local Network (Intranet) of any Organization. PG Project - Securing Communication using parallel compression & encryption. Aim of project is to develop a single GUI which can do both operation like Compression and encryption and as vice versa, Hence it will reduce the bandwidth cost during communication.
FirstSource Solution Ltd – Security Operation Center Implementation of RSA Netwitness for logs, Architecture & Components working of RSA, Collecting logs from various event sources like windows, Linux, SFTP, etc. Event investigation based on query. Report generating & scheduling it. Generate alert based correlation rules. Components troubleshooting, Proactive monitoring, Etc. Verizon Telematics India – Security Operation Center Implementation of Splunk, Architecture & components of Splunk, pushing logs from various event source to Splunk, Threat hunting, Event closure in Syncurity IR tool, OSSEC(HIDS) Implementation to end devices. Security Hardening, Generating Reports & Alerts by query, Etc.
Verizon Enterprise Solutions India – MSS SOC (300+ Customer) Working as a Tier-2 where will be analyzing incidents in CARE (SIEM Tool), Working on Incident Tickets in ETMS tool, also coordinating with customer and Tier-3 for alert reductions and closure of tickets, Etc. DECLARATION
I hereby declare that all the above information is true and correct to the best of my knowledge.
Date :
Place: Santhosh. G