Post Job Free
Sign in

Soc Analyst Active Directory

Location:
Angamaly, Kerala, India
Posted:
July 17, 2021

Contact this candidate

Resume:

CURRICULAM VITAE

Email:**********@*****.***

Mob:+91-994******* / 892*******

SARATH MOHAN

Syam Nivas (H)

Nalkkalikkal P.O

Aranmula; pathanamthitta (Dist)

PINCODE -689533, KERALA.

OBJECTIVE

A highly experienced, results-oriented & hardworking Information Technology Engineer with Eight plus years of experience, seeking strategic and challenging technology role in a dynamic organization where my diverse skills can be optimally utilized to add value.

EXPERIENCE: 1

SOC Analyst/IT Specialist Officer in CSB BANK LTD (From 07-Feb 2018 to till date)

Roles & Responsibility

Working in SIEM (Security Information and Event Management) Platform .

Real Time Monitoring of events/Incidents

SIEM Tool used: Arc Sight

GRC tool: ADR RisqVU (Incident Management)

Devices integrated:

Server - LINUX, Windows, UNIX

Firewall - Fortinet, Checkpoint,

Webserver - IIS, Apache

Database - MY SQL

Routers & Switch-CISCO

Working on Incidents and reviewing the alerts and do detailed analysis on alerts.

Perform risk analysis to identify appropriate security countermeasure and recommended security standard, guidelines and procedure to management.

To attend weekly meeting with Vendor team

Manage and report the activities and performance of the SOC team.

Make recommendations for mitigating identified risks

Integrated different Security products with SIEM.

Reviewing the correlation rules effectively to identify the critical threats and attack patterns.

Implementing different security products in Banks Infra (WAF, IPS, EDR, NAC, TM_Deep Security, DLP, Anti-DDOS )and its evaluation.

Conducting POC’s of different security products and it’s evaluation prior procure the solution.

Managing Privileged Identity Management solution (PIM) which includes user creation, Mapping services to authorized users, Group assigning, Reviewing user activities, verifying Logs.

Hands on experience in configuring Fortigate Firewall 300c, Checkpoint Firewall, Cisco FTD Firewall, Cisco routers/switches.

Managing Intrusion prevention/Detection system(IPS/IDS) Model: IBM XGS 4100

oFine-tuning of signatures based on severity.

oImplement and apply technology related policies to secure organizational data.

Implementation of WAF- Alteon Radware 5208XL

oManaging the device by integrating different public facing applications and analysing the logs.

oPeriodic Fine-tuning of security policies in WAF.

oUpgradation of device firmware released by OEM.

Managing NAC-Forescout 11.0.1

oDefining policies for enhancing the security profile of the organisation.

Implementation of Trendmicro Deep security Solution in Banks Infrastructure.

oIt is designed to protect our DC/DR and workloads from data breaches and business disruptions.

oImplemented deep security in all servers.

oConfiguring and managing security modules such as Antimalware, Web Reputation, IPS, Log Inspection, Integrity Monitoring, Firewall, Application control.

Implementation of Checkpoint EDR Solution in Bank’s Endpoint Machines and it’s evaluation.

Conducting Vulnerability Assessment & Penetration Test (VA/PT) for Banks’s Security products, Servers and It’s Applications by using Nessus Tool (Tenable.SC).

oFollow-up with Application team/Vendor to mitigate the vulnerabilities.

Periodic review of security products to identify the security loopholes and provide reports to concerned Team to fix the vulnerabilities.

EXPERIENCE: 2

TALENT MAXIMUS PVT LIMITED under SIFY TECHNOLOGIES LIMITED,INDIA as Associate Engineer for Muthoot Fincorp Limited Project ( From 31-MAR-2014 to 28-NOV-2016)

Roles & Responsibility

The architecture would allow the users connected across 3600 branches to access the application hosted in DC securely. MPLS link would acts as a primary connectivity for a branch which is provided by Sify. Two redundant connections are proposed for a branch site, broadband internet and USB internet.

Planning, Designing & Implementing different IT security products.

Working on Incidents and reviewing the alerts and do detailed analysis on alerts.

Maintaining Master sheets for Blacklisted IP’s, Malicious Hash values & Malicious domains/URL’s.

Windows workstations ( XP, Vista, win 7,win 8,win server 2012,win server 2016).

Configuring Fortinet Routers (Fortinet 40C) .

Utilize the ticket system to assign, track and complete user generated IT security related issues.

Coordinating with Clients, Understanding their Requirements and providing necessary support.

Experience : 3

UNITED TELECOMS LIMITED, INDIA as Network Engineer (From 14-AUG-2012 to 22-SEP-2013).

Planning, designing, implementing, administering, troubleshooting, supporting and optimizing Cisco Wi-Fi Networks.

Configuring of Cisco Routers (7200 series, 2800 series) and Switches (3560g series)

Taking and logging incoming calls & providing efficient customer support for all first Line issue.

Monitoring of Networks and creating Incidents (Helpdesk tickets) using CA’s Spectrum and E-health.

Configuring of Cisco Routers (7200 series, 2800 series) and Switches (3560g series).

Experience : 4

JAIHIND TV as INTERNSHIP TRAINEE,INDIA(From 02-MAY-2012 to 01-AUG-2012)

Responsibilities:

System Maintenance & Network Administration

Setting up of LAN

Installing and troubleshooting Printer/Firewall

Management of User accounts, passwords and file/folder permission using windows 2008servers

PC Assembling and troubleshooting.

Patching, network cabling, crimping, control panel work, patch panel work

TECHNICAL SKILLS

Experience in configuring Cisco router/Switches and Fortinet Firewalls.

Management of User accounts, passwords and file/folder permission.

Knowledge in Windows 2008- active directory, design and implementation.

Hands on experience in the operation and management of SIEM technology.

EDUCATIONAL QUALIFICATION

B.TECH (2011):- Specialized in Information Technology.

HSC (10+2) (2007):- From Mount Bethany English Medium Higher Secondary School, Pathanamthitta.

SSLC (10th) (2005):- From Mount Bethany English Medium Higher Secondary School, Pathanamthitta.

TECHNICAL QUALIFICATION

CCNA certification with 98% – Exam ID: CSCO12046785

CCNP(ROUTE) certification with 95%

MCITP certification with 95%-Exam ID- MC ID: 8537705

PERSONAL PROFILE

Name : Sarath Mohan

Gender : Male

Marital status : Married

Father’s Name : Mohan Kumar

Date of Birth : 01/03/1989

Nationality : Indian

Linguistic Ability : English, Malayalam, Hindi,Tamil

Hobbies : Reading, listening to music, watching and playing cricket

Permanent Address: SYAM NIVAS

NALKKALIKKAL P.O

ARANMULA

PATHANAMTHITTA(DIST)

DECLARATION

I hereby declare that all the information furnished above is true to the best of my knowledge.

Place: Ernakulam

(SARATH MOHAN)

Date: 04/04/2021



Contact this candidate