Md Atif Hussain

• Working on incidents reported through Security controls like EDR, Email Security, IDS/IPS and through Use cases built in SIEM •Analyzing security events generated from various tools such as EDR, Deception Technologies, SIEM, Microsoft Defender for Cloud •Leading SOC operations and Cloud Security Operations •Working on Identification of new use cases and suppressing FPs and creation of SOPs. •Working on identification of Security Gaps in Cloud Security Posture • Managing Netskope CASB solution

• Managing multiple clients and their SOC operations. • Handling Transition on new Projects. Collecting requirement from client and implementing best practices for the project. • Creating new SOPs and establishing process management and change management process. • Creation of Dashboard in SIEM. • Fine-tuning alerts and creating new Co-relation Rules. • Worked on Azure Sentinel and Azure Security Center. • Presenting weekly Service review reports. • Working on threat hunting modules.

• Working as Service Architect for PIM solution from CyberArk. • Performing Vulnerability Assessment using Nessus(Security Center) • IPS Administration: Policy update, IPS version upgrade, Blocking of Malicious IPs. • Working on Security event logging and monitoring services, SIEM i.e. Splunk • Performing analysis of security incidents • Ensure that all the services such as log collection, vulnerability assessment, intrusion detection and prevention are available and running.

• Working on creating and configuring SIEM rules. • Worked on Security event logging and monitoring services. • Perform analysis of data across the organization to identify and contain IT security incidents. • Working on NSM IPS. It involved updating NSM, creating and updating signature.

• Working on creating and configuring SIEM rules. • Worked on Security event logging and monitoring services.

• Worked as Security Analyst working on alerts from different security controls