PRANAV SINGH

[email protected] 8920486803 Ghaziabad, India 201005

om

SUMMARY
● Cyber Security Analyst with proficient and thorough experience and a good understanding of information
technology. Specialized in proactive network monitoring of SIEM
● Good understanding of security solutions like Anti-virus, Firewall, IPS/IDS, Email Gateway, Proxy etc.
● Hands on experience with ArcSight SIEM tool for logs monitoring and analysis Service Now ticketing tool for
incidents response
● Good knowledge on networking concepts including OSI layers, subnet, TCP/IP, ports, DNS, DHCP etc.
● Hands on experience with ArcSight SIEM tool for logs monitoring and analysis.
● Trainings: SIEM (ArcSight SIEM),
● Tools: SIEM (Security Information and Event Management), ArcSight.

SKILLS
● SIEM Tools: Arcsight,Splunk ● Malware Analysis ● Threat Hunting
● Vulnerability Management: ● Email Analysis ● Incident Response
Nessus ● Wireshark
● Incident Analysis Tools: CISCO
Talos, Mx Toolbox, Virus Total,
IBM-Xforce etc.

TECHNICAL SKILLS
● Log Analysis
● Event Correlation
● Troubleshooting
● Data Visualization
● Incident Analysis
● Field Extraction
● Threat Intelligence Integration
● Log Source Onboarding
● Arcsight Esm
● Splunk Enterprise
● Splunk Enterprise Security
● Reports and Dashboards
● SPL Query Language

EXPERIENCE
03/2023 - 09/2023 SOC Analyst Intern, Siem Xpert, Banglore
● Worked in a 24x7 Security Operations Center
● Monitoring the customer network using ArcSight and Splunk SIEM
● Act as first level support for all Security Issues
● Analyzing Realtime security incidents and checking whether its true positive or false
positive
● Performing Real-Time Monitoring, Investigation, Analysis, Reporting and Escalations of
Security Events from Multiple log sources.
● Raising true positive incidents to the respective team for further action
● Creating tickets on service now and assigning it to the respective team and taking the
follow-up until closer
● Escalating the security incidents based on the client's SLA and providing meaningful
information related to security incidents by doing in-depth analysis of event payload,
providing recommendations regarding security incidents mitigation which in turn makes
the customer business safe and secure.
● Contacting the customers directly in case of high priority incidents and helping the
customer in the process of mitigating the attacks.
● Work closely with business units to ensure that they know what and how to feed data
into the SIEM
● Co-ordinate with networking teams to maintain and establish communication to remote
ArcSight Connectors
● Investigate malicious phishing emails, domains, and IPs using Open-Source tools and
recommend proper blocking based on analysis
● Installing ArcSight Connectors
● Upgradation of ArcSight Connectors
● Integration of new devices with ArcSight such as Windows, Linux, CISCO Firewall,
Routers, Switches etc.
● Doing the troubleshooting if any device is not sending the logs to the ArcSight.
● Creation of ArcSight content like Correlation Rules, Query, Report, Dashboards etc.
● Maintain keen understanding of evolving internet threats to ensure the security of client
networks.
● Troubleshooting SIEM dashboard issues when there are no reports getting generated or
no data available
● Good knowledge of Splunk Distributed cluster Architecture
● Working experience in Splunk SPL queries
● Installing Universal forwarders to integrate Windows and Linux devices
● Creating inputs on Splunk Enterprise to receive the logs
● Integrated Fortinet FortiGate Firewall with Splunk
● Installing Splunk apps and Addon on the Splunk
● Monitoring Realtime Incidents in Splunk Enterprise Security

11/2021 - 11/2022 Salesforce Developer, Paramyter Tech, Ghaziabad, IN

● Developed and maintained Salesforce security, including user roles, profiles, sharing
rules, and assignment rules.
● Configured custom objects, fields, formulas, page layouts, record types, validation rules
and workflow rules.
● Built automated workflows, triggers, and processes using Apex classes and Visualforce
pages.
● Designed user interfaces for Salesforce applications with Lightning Web Components
 and Aura components.
● Created customized reports and dashboards to track sales performance metrics.
● Integrated third-party applications with Salesforce using REST APIs, SOAP APIs, and other
web services technologies.

EDUCATION AND TRAINING

08/2021 Bachelor of Technology, Mechanical Engineering
Krishna Engineering College, Ghaziabad

COURSES
Soc Analyst Training
Siem Xpert
Dec 2022 - Feb 2023

CERTIFICATIONS
● Fortinet NSE1
● Fortinet NSE2
● Fortinet NSE3
● Certified SOC Expert
● Salesforce PD1