Rishabh Khandelwal

Technology Lead

Result oriented professional with over 7+ years of experience in Cyber Security SOC, Splunk, SIEM & Risk Managment.

admahw@r.postjobfree.com

+91-958*******

Pune, India

linkedin.com/in/rishabh-

khandelwal-14ba3960

COMPETENCIES

Splunk Administration

Risk Management

Use Case Management

SOC Operations SIEM

Information Security

Stakeholder Relationship

Malware Analysis

Auditing

Incident Response

Vulnerability Management

Risk Mitigation

Leadership

TOOLS

Splunk

Splunk Enterprise Security

SOAR ServiceNow

IRIS Outlook

Lotus Notes CyberArk

Arcsight

BMC Truelight Middleware

SIEM Redhat Linux

PROFESSIONAL BACKGROUND

Cyber Security Tech Lead (Client: Deutsche Bank, Germany) Tata Consultancy Services

09/2017 - Present, Pune, India

Project Name: SOC-Cyber Compliance (Domain: BFSI)

As being the very first resource of the team, I'm well experienced in developing the SOC Project & Team from the scratch.

As being a SME of Cyber Security I have implemented SOC use cases for Security Monitoring, Cyber Compliance, Malware Analysis and Vulnerability Management in (SIEM) Splunk Enterprise Security. Experienced in generating critical notables which helps in identifying the risk and finding the threats & Vulnerabilities in the network, Interpret the risks and supports to realize the consequences. Leading the SOC Operations, supporting the SOC team to perform Risk Identification, Threat Management, Investigations including creation of OPDs, Training Docs for new joiners, auditing the incident response processes.

Client coordination, Creation of reports, metrics and presentations to discuss the SOC performance and trends with client periodically(weekly, monthly, quarterly, annually). Defining project estimations and metrics, assigning the roles and responsibilities and making sure to get the Deliverable done on time.

Presenting PMR Report and handling Governance meetings with clients and TCS Management for SOC project.

Working with Global SOC and Cyber Security Engineer Teams to find and enhance processes towards Automation and strengthen the current Security Operations Framework. Established and tracking the learning career path for SOC Team as per their skills & interest. Extensive knowledge about Mitre Att&ck Framework knowledge base. Splunk Expert (Client: Statefarm, US)

Capgemini Technology Services India Limited

11/2013 - 09/2017, Pune, India

Project Name: Splunk Operations (Domain: BFSI)

Configured the Search Head cluster, Initialized the Deployer and shcluster members. Configuring the Master and slave nodes in Indexer cluster. Administer Splunk App for Linux, DBConnect and Splunk Enterprise Security Applications to onboard the logs, configure the indexes and other Splunk components. Extensive experience on setting up the Deployment Server, creating server classes and deployment client. Hands on experience on creating and pushing Apps and configuration in the environment. Have knowledge to implement the Licence master server, Maintain licence pools and licence stacks. Install the Universal & Heavy Forwarders in servers and Data On-boarding of multiple servers and applications in Splunk environment.

Troubleshoot the Splunk slowness, Bucket Fix-up and unavailability issues also Monitoring processes utilization by using PS, top monitoring utilities. Performing maintenance of Splunk Infrastructure and server health checks. CERTIFICATIONS & QUALIFICATIONS

Certified In Risk & Information Systems Control(CRISC), Certificate No. 2027593 Splunk Enterprise Certified Admin, Certificate No. 300142 Splunk Core Certified Power User, Certificate No. 299497 Redhat Certified Engineer, Certificate No. 160-190-443 P.G.D.M. In IT Project Management, Welingkar Institute Of Management B.C.A., Aryan College affiliated by M.D.S. University, Ajmer Special Services/ Area Of Responsibility

Special Services/ Area Of Responsibility

Contact this candidate