Scribd
Upload
48 views2 pages

RaviNallam Nov2024

Uploaded by

nrbackup2228
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
48 views2 pages

RaviNallam Nov2024

Uploaded by

nrbackup2228
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 2

RAVI SHANKAR NALLAM

Cyber Security Analyst


www.linkedin.com/in/ravi-nallam-
9666603092 [email protected] 2b3575252

SUMMARY
Eight years and ten months of experience as a team lead and senior SOC analyst. Every day, I use a variety of SOC technologies to
provide SOC services to different banking and enterprise clients, which puts my skills to the test. I take charge of the problem and use my
technical and leadership abilities to better meet the needs of the client.

PROFESSIONAL EXPERIENCE
2020 - Technical Lead/Senior SOC Analyst
Ongoing
Cloud4c Company
Hyderabad, Lead Responsibilities:
India
• Delegating and guiding team members on various tasks as Technical Lead.
• Implemented new tools like OCI data safe, Cloudflare ZTNA etc.
• Engaged with various vendors to review new security tools.
• Lead QBR and Monthly meetings for various Banking and Enterprise clients.
• Lead the team during various external and internal audits.
• Given walkthroughs and trainings to the team and clients.
• Planning upgrades and new installations.

Analyst/Engineer Responsibilities

• Qradar Console Administration, Log Investigation & Troubleshooting, Proficiency on SIEM, Qradar Incident & Management.
• Installation and Administration of security tools like McAfee DAM, Trend Micro, FortiSIEM, DataSunrise, Crowdstrike,
SentinelOne.
• Experience in Azure Sentinel Incident Monitoring and Rules fine tuning.
• Triage, investigate, contain, and eradicate cyber security issues and incidents.
• Attend ad hoc client calls along with scheduled weekly, monthly SOC review calls.
• Created new rules in SIEM Qradar.
• Experience in setting up Azure Sentinel as part of Azure MSSP program.
• Participated in cyber drills (1 day and 5 day) conducted by IDRBT.
• Ransomware analysis of infected machines using the logs provided.
• Exposure to WAF tools like F5, A10 and Barracuda.
• Incident Monitoring and response in Azure Sentinel.
• Experience with common security frameworks (e.g. MITRE ATTACK, Cyber Kill Chain).

2019 - 2020 SOC Analyst


Innominds Technologies
• Monitoring network traffic of multiple member firms using ArcSight. Creation of daily status reports and health check
reports of ArcSight connectors.
• Monitoring of malware infected machines using ArcSight and escalating to respective Member Firms.
• Creating Dashboards in SIEM tools like Splunk.
• Ran Minor Phish and Major Phish.
• Malware analysis using Threat grid sandbox.
• Investigate detected Phishing and Malware emails.
• Analysis of SPAM folders, OMS alerts, Keyword and Brand monitoring alerts.
• Analysis of recon alerts that were notified by Threat intel team.
• Gathering logs from Splunk as per alert requirement.
• Collection of software and hardware information about endpoints with the help of Tanium.
• Pushed poison pills to the lost or stolen machines.
• Running VA Scans on Windows, Linux, database and other servers using Nexpose tool.

2016 - 2019 SOC Analyst


Hyderabad, India Wipro Limited
• Monitoring Enterprise security in Splunk.
• Monitoring Enterprise email security using Proofpoint and Threat insight.
• Analysis of Phishing and Malware emails.
• Verifying email header information, reputation of IPs, URLs and files detected in the emails using tools like virus total,
sucuri, bluecoat, browserling, URLs scan.
• Worked on FireEye HX, NX and CMS tool.
• Creating Incident Management and Change Management tickets using ServiceNow.
• Containing infected host machines and investigating using Triage reports in FireEye HX.
• Interacting with TAC support to resolve issues detected in tools.
• Malware analyzing and Forensics using cuckoo Sandbox.
• Analyzing threats detected and reporting to the next level.
• Analyzing intrusion threats detected in Cisco Sourcefire IDS/IPS.
• Troubleshooting of log forwarding and connectivity in log sources (agents).

EDUCATION
2010 - 2011 Masters in computer science
London, UK Middlesex University

2005 - 2009 Bachelor of Technology, Computer Science


Andhra Pradesh JNTU Kakinada

TECHNICAL Qradar Splunk Forti Sandbox McAfee DAM ZTNA CrowdStrike Data Safe
SKILLS
Tufin WAF Azure Sentinel SentinelOne Threat Hunting Vulnerability Assessment

GRC Malware Analysis TrendMicro Phishing Analysis

You might also like