As an Information Security Professional, I have good knowledge in understanding the architecture, design, management and controls that assures the security of business environments and incident handling through log analysis. Identifying the root causes of security incidents and collecting useful data for compliance reporting.
I have experience on Security Information and Event Management (SIEM), as a result I am familiar with the SIEM tool Splunk ES Security Information Manager. Integrating various security devices to the SIEM setup for log management and Analysis.
My prime work includes Security Log Monitoring and Analysis from various organizational network devices for Indian and foreign customers. I have a good log reading capability for devices such as IPS/ IDS, WAF, Checkpoint Firewall, CISCO ASA, CA Integrated Threat Management, Windows security Events, different OS logs, databases activity logs, End point protection, proxy logs, etc.