Skills
SIEM, EDR, Elastic, SOC monitoring
About
Cyber Security enthusiast with a passion to work in the Cyber Security domain.
• Good knowledge in Networking concepts including OSI model, IP classes, IP address, DNS, DHCP, Active Directory, Ports, and Protocols.
• Understanding of security concepts like AAA, CIA, and Encryption, Hashing
• Knowledge of different types of malware and cyber attacks, Cyber Kill Chain
• Good understanding of security solutions like EDR, Firewalls, IPS, IDS, Antivirus
• Knowledge of AISaac SIEM tool - SIEM Architecture
• Monitoring and analysing the logs triggered alerts 24'7 and rise tickets for validating incidents.
• Knowledge of incident response life cycle. Identifying and analysing the incidents for false and true positives.
• Maintain documentation of new changes, updates, and configuration changes.
• Strong analytical skills, ability to quickly learn and adapt to new technologies.
• Good understanding of OWASP Top 10 Vulnerabilities and MITRE ATTACK framework