Ram Mohan
Vancouver,BC
Summary
Experienced Cyber Security Analyst with a Master’s degree in Cyber Security. Core competencies include Information Security and compliance, Endpoint Security detection and Incident response, building security policies and controls, Incident management, Security operations and log analysis.
Overview
7
7
years of professional experience
1
1
Certification
Work History
CYBER SECURITY ANALYST
NTT Data
Vancouver, BC
05.2021 - Current
- Monitored the internal network, systems, databases and applications using Splunk SIEM platform and performed initial alert triaging to for all security alerts
- Performed event detection, investigations and root cause analysis within agreed Service Level Agreement timeline and followed Kill chain process.
- Worked with third-party penetration testers to identify security threats and risks.
- Used Logic apps to create playbooks to automate alert response.
- Engage on call with clients regarding high severity Incidents
- Participated in 24/7 on-call rotation to provide support for incident escalation and resolution during off-hours
- Assisted in the SOC and IR team in developing IR playbooks for all common cyber security incidents.
- Optimized existing security tools by automating routine tasks through scripting techniques like Python or PowerShell scripting languages.
- Assisted the SOC team in developing SOC processes and procedures.
- Experience in developing use cases in Splunk SIEM platform. Developed correlation and cross correlation use cases.
- Developed weekly status reports on the status of security events that also includes KPIs (Log sources, performance of log sources, number of devices logging).
- Conducted Vulnerability scans using Nessus Vulnerability scanning platform and prioritized vulnerabilities based on the impact and risk.
- Developed vulnerability management and emergency patch management processes to streamline the VM and patch management process within the security team
- Assisted the risk & governance team during ISO 27001 control gap assessment to identify the control gaps and developed a roadmap on initiatives to be taken to align with ISO 27001 controls
- Performed phishing simulations to identify the number of users prone to phishing attacks and conducted security awareness training to train employees on how to identify and report suspicious emails.
- Experience in analyzing the severity of the vulnerabilities found as per the vulnerability scan report and prioritizing the vulnerabilities based on the risk and potential impact.
Security Analyst
BluSapphire
Hyderabad
07.2017 - 07.2019
- Monitored events from Firewall (Palo Alto), Antivirus (McAfee), Windows, Unix, Routers, Switches, IDS, Nessus, Qualys and flow data using Splunk.
- Analyzed, triaged and remediated security incidents internally and performed analysis from different network devices
- Developed rules, alerts, dashboards, and reports to educate corporate clients on their network security risks and suggest ways to remedy/mitigate any existing threats.
- Trained on Arcsight and splunk.
- Knowledge of Amazon Web Services and related technologies including EC2, S3, KMS. Using the Prisma cloud, finding and resolving the AWS configuration issues.
- Set up weekly, monthly and quarterly auditing tasks using Zapier.
- Worked on Proofpoint Email protection and archiving tools.
- Provided technical support for end-users by addressing SQL-related issues, enhancing overall user satisfaction with the application.
- Inside the organization, Created and reviewed IT security policies as per GDPR, GMP, SOC2 compliance
Education
Master of Science - Cyber Security
New York Institute of Technology
Vancouver, BC12.2020
Bachelor of Science - ECE
Vellore Institute of Technology
Vellore05.2017
Skills
- Intrusion Detection, Endpoint Security
- Identity and Access Management, Incident Response
- Penetration Testing, Security Information, and Event Management
- Vulnerability Assessment, Application Security
- ISO 27001, SOC2, NIST, PCI DSS, COBIT, Privacy Regulations BC FIPPA, BC PIPA
- Python, SQL
- AWS, Azure, GCP
- Malware Analysis and Remediation
- Crowdstrike Falcon, Symantec Endpoint Protection, Securonix, MS Bitlocker, Tachyon, Autopsy, Splunk, Nmap, Nessus, Siem, Microsoft Defender, Azure Sentinel
- Nmap, EC2, Wireshark, Zendesk, Service now, Burp Suite, Virustotal, Shodan, Metasploit Framework
Certification
- GCIH - GIAC Certified Incident Handler
- CEH - Certified Ethical Hacker
Timeline
CYBER SECURITY ANALYST
NTT Data
05.2021 - Current
Security Analyst
BluSapphire
07.2017 - 07.2019
Master of Science - Cyber Security
New York Institute of Technology
Bachelor of Science - ECE
Vellore Institute of Technology