DATTARAJ PRABHU DESSAI

ABU DHABI

Summary

Experienced Total 6.10 years, an in Cyber Security with 5+ years of experience in monitoring, and administrating Incident Response and SIEM solutions and also documenting the IR process and mitigations. Excellent reputation for resolving problems and improving customer satisfaction. Current knowledge of cybersecurity threat hunting techniques, Malware Analysis, and forensic investigation.

Overview

years of professional experience

Certification

Work History

Security Analyst

CPX

ABUDHABI

01.2021 - Current

Conduct proactive monitoring, investigation, and mitigation of security incidents in different SIEM Managed SOC operation 24*7
Recommend improvements in security systems and procedures to improve incident response time, analysis of the incident and overall SOC operation
Investigation on Emails received in coffense console and Inform to concern team with recommendation if any Phishing/Malicious Email noticed.
Supporting different domain customers like Healthcare, Financial, Banking, Mission and Energy Sector as Senior Security Analyst.
Helps government clients during post-compromised incidents and Threat Hunting & Intelligence at a national level and presents findings and artifacts in a detailed report

Senior Cyber Security Analyst

Network Intelligence India, RAK Bank

Dubai

09.2017 - 01.2021

Incident response and case management with SOC Orchestration (IBM Resilient).
Monitoring and Investigation on Incident received through Endpoint Detection and Response Tool.
Deploying AppLocker application control policies.
Development of various co-relation Rules, Reports, Alerts, Active Channels & Dashboards and also providing suggestions for fine-tuning of alerts.
Real-time monitoring of Security components and devices such as Firewall, IDS, IPS and windows/Unix servers with the help of various SIEM tools.
Creating & analyzing daily, weekly & monthly trend reports to find anomalies & reporting the critical findings.
Monitoring and analyzing security incidents using active channel, Dashboards and providing client requested Ad- Hoc Reports and logs.
Email traffic validation through Proof point (Email gateway) console for any data leakage, Offensive language, Malware, and spam analysis.
Monitoring of phishing, vishing, smishing, unauthorized mobile app, brand & social media abuse incidents through Fraudwatch and iZooLogic, Coordinating with Fraudwatch, iZooLogic and ISP to take down the site or block the URL
Verification of Antivirus DAT compliance across all the network devices in the environment
Performing vulnerability assessment (Nexpose) across all network devices, databases, Custom OS Applications, and endpoint devices
Discovering and prioritizing the ASSETS
Perform the scan by using templates based on targets
Coordinating with the vendors or internal IT teams to get the patches installed and validation for the same, Review of any exceptions if any.
Analysis and validation of any malware alerts and coordinate with vendors (MacAfee, Fortinet, Trend Micro, F- secure, etc.) for updating hash in the attack signature database.
Reviewing the internet usage, Bandwidth utilization, Blocked web access, Information leakage, Malware accessed links through Bluecoat proxy and DLP.
Patch Management in accordance with Target patch cycle and validation
Perform user access review and clean up for domain users, Application access validation and review of password management through PMP.
Physical validation of password, chubs as per the security policies of the bank Organizing information security awareness sessions on the intranet and maintaining the statistics about it for IT division.
Manage 24X7 SOC operations which included detection, tracking and analyzing incident alert and recommending appropriate action to be taken
Monitoring of any DDOS attacks through Arbor DDOS, traffic analysis of routers and escalating to respective teams for proper actions
Getting the separation list from the HR department & verify the access are revoked on a timely basis.

IT Support Engineer

Wipro Infotech, On-Site HDFC BANK

11.2014 - 10.2016

Provided Functional and Technical support for 1000+ users, troubleshooting and diagnosing Hardware and software Problems including desktop, Laptop, WAN, LAN and remote system
Assisted in the installation and updating of software, as well as setup and troubleshooting of all Equipment
Network with LAN/WAN and active directory for continuous company connection
Create, test and develop current Workstation images
Test, evaluate, and package software and applications for workstation distribution
Create and manage Active Directory Security groups
Install and update Antivirus software and troubleshoot virus, malware related issues

Education

Bachelor of Engineering - Computer Science

Shree Rayeshwar Institute of Engineering and Information Technology, Goa University

Skills

SIEM Tool: LogRhythm, ArcSight (ESM, Logger, Command Center), AlienVault OSSIM, QRadar, Kibana,Splunk
SOAR Platform: IBM Resilient and siemplify
Email Protection Tool: Proofpoint, Phish Rod and Coffense

Data Leakage Protection Tool: Bluecoat DLP
Endpoint Detection & Response: Falcon Crowdstrike ,Carbon Black and Trendmicro
Security Tool: Fortinet Sandbox, McAfee ePolicy Orchestrator, Arbor DDoS Protection, Nmap, Nessus, Acunetix, Wireshark, Burp suite, Metasploit, TCPview, procmon , pestudio, Anyrun (Malware Sandbox)