Mahesh Putcha, Senior Associate Security Consultant

Infosys

Jul 2022 – Jan 2023

Hyderabad

Senior Associate Consultant

The Primary function as a SOC Analyst is to analyze any incidents escalated by the SIEM and Carbon black cloud and undertake a detailed validation of that security event by coordinating with the customer IT and security team for resolution of the Security Incidents. Investigating Level 1 escalated incidents by performing initial investigation and triage of potential incidents and escalate or close incidents as applicable. Administrating various incidents/security alerts triggered in SIEM tool & CB Cloud. Performing Real-Time Monitoring, Investigation, Analysis, Reporting and Escalations of Security Events from multiple log sources. Technical expertise in analyzing threat event data, evaluating malicious activity, documenting unusual files and data and identifying tactics, techniques and procedures used by attackers. Security event analysis and intrusion detection by review and analysis of events generated by various components including IDS/IPS, firewalls, Routers, DB, OS and various types of security devices. Served as SOC Analyst on Investigating of alerts in Splunk by checking their Source host/IP, Destination Host/IP, Location, IP reputation and Domain reputation to investigate further process. Contacting the customers directly in case of high priority incidents and Blacklisting/Whitelisting, Creating Incidents and Change Orders in CA Service Desk for Client Approval. Design, develop and create correlation rules, Dashboards, Finetuning within the Security Information and Event Management SIEM platform. Implement and operate the vulnerability Management tools and processes at a program level ensuring weekly scans and remediation per SLO.

Mahesh Putcha

Senior Associate Security Consultant

Skills

Languages