Summary
Overview
Work History
Education
Skills
Websites
Certification
Mobile
Accomplishments
Languages
Timeline
Generic
SADANAND JADHAV

SADANAND JADHAV

Kuwait City,KU

Summary

A driven IT professional with over 10+ years of experience, including more than 7 years dedicated to Information Security Analysis. Specialized in security operations, implementation, integration, incident management, troubleshooting, and Threat Analysis. Adept at addressing challenges in Information Technology, particularly focused on Security Operations Centre (SOC), IT Governance, IT Risk and Compliance. As an Information Technology specialist, responsible for contributing to the operation and maintenance of the computer network installations. Proficient in providing technical assistance, training, and support to customers. Seeking a position within a growth-oriented, forward-thinking organization where I can contribute to achieving objectives through the optimal utilization of my experience, skills, and education.

Overview

18
18
years of professional experience
1
1
Certification

Work History

SOC Analyst / Engineer

Diyar United Company (Kuwait)
Kuwait City, KU
07.2022 - Current
  • Monitor logs and alerts generated by Qradar, identifying and escalating potential security incidents
  • Assist in initial triage of security incidents, categorizing and prioritizing them for further investigation
  • Support creation and maintenance of basic correlation rules and dashboards to assist in security event detection
  • Assist in onboarding new log sources into Qradar, ensuring that relevant logs are collected for analysis
  • Manage user access to Qradar platform, ensuring that permissions align with job responsibilities
  • Contribute to creation and maintenance of documentation, (SOP) including standard operating procedures and knowledge base articles
  • Assist in incident response activities under guidance of more experienced team members
  • Collaborate with other team members, CTI, VAPT Team, IT professionals, and stakeholders to address security concerns
  • Perform basic compliance checks to ensure that Qradar configurations align with regulatory requirements and internal policies
  • Assist in troubleshooting issues related to Qradar configurations and log source connectivity and integrating Qradar with other security tools and technologies
  • Acknowledge alerts generated by Qradar and escalate as necessary based on predefined procedures
  • Support vulnerability scanning efforts by analyzing results and assisting in prioritization of vulnerabilities
  • Provide basic security awareness training to end-users and assist in promoting security-conscious culture and Stay informed about cybersecurity trends, emerging threats, and Qradar updates through continuous learning.
  • Monitored computer virus reports to determine when to update virus protection systems
  • Monitored use of data files and regulated access to protect secure information
  • Investigated and resolved incidents of unauthorized access to sensitive information
  • Worked with other teams to enforce security of applications and systems
  • Implemented security measures to reduce threats and damage related to cyber attacks
  • Reviewed violations of computer security procedures and developed mitigation plans
  • Administered and monitored firewalls, intrusion detection systems and anti-virus software to detect risks
  • Educated and trained users on information security policies and procedures
  • Drafted security reports and metrics to track security performance and strategize improvements
  • Analyzed network traffic and system logs to detect malicious activities
  • Recommend improvements in security systems and procedures

Senior Security Engineer

CyberGate Defence Abu Dhabi
- 04.2022
  • Deploying Qradar SIEM on ESXI Environment for Customer premises through remotely and taking responsible for Administration, configuration and troubleshooting of components
  • Working on Implementation for New Security Devices from Client requirement and giving solution from End-to-End resolution until it is not initiated in Production Environment
  • Taking care of daily task and challenges and taking meeting every day in Teams to resolve issue with Management and try to execute all things in proper way
  • Working on developing and maintaining Client asset classification and categorization, provide information security project management assistance to Client and assist with technical security escalations
  • Working with customer Supporting Team to resolve issue for IPSEC Connectivity Tunnel and patch call with ISP for checking status for Link
  • Preparing of SOP on Client requirement for Process and for daily Operations for better understanding on Technology
  • Provide to customer for deploy Latest Cyber Security tools to secure Environment with latest Cyber Attacks
  • Completed Project for one customer Fidelis NDR & EDR Deployment and handover to SOC Team for Monitoring.
  • Delivered network system upgrade on time, under budget, and with minimal service interruption
  • Counseled senior-level management on current privacy and security trends and recommendations to mitigate risk
  • Planned and oversaw configuration changes for security infrastructure platforms
  • Provided consultation and technical services on all aspects of information security
  • Managed data center system upgrades, delivering better reliability and security for server hosting and enterprise applications
  • Recommend improvements in security systems and procedures

Senior Security Analyst

Inspira Enterprise India Pvt. Ltd. MUMBAI
07.2020 - 10.2021
  • Working on Implementation for New Security Devices from Client requirement and giving solution from End-to-End resolution until it is not initiated in Production Environment
  • Involved for deploying Splunk in client location and from all devices are integrating from Existing McAfee SIEM to Splunk and process.
  • Taking care of daily task and challenges and taking meeting every day in Teams to resolve issue with Management and try to execute all things in proper way
  • Taking action on Advisory and IOC's which received from RBI and different feeds
  • Working as Information security analyst on Real time threat management using McAfee SIEM
  • Working on Audit requirement for which bank want to provide Evidence to RBI
  • Preparing of SOP on Client requirement for Process and for daily Operations for better understanding on Technology
  • Taking Lead Role on Cyber Drill Activity which is Conducted by IDRBT on Quarterly Basis for End-to-End Support to Client requirement for Deploying Cyber Drill Environment till date were drill day
  • Creating Watch list, Dashboard, Alarms, and Reports based on new threats and vulnerabilities
  • Reviewing IDS/IPS events and identify anomalous activities or potential network security risks
  • Monitoring and investigate suspicious network activities utilizing a variety of tools such as McAfee SIEM & IBM Qradar
  • Analyzing network traffic and various log data to determine threat/impact on the network
  • Utilizing threat intelligence tools to support daily cyber security operations, and produce Intel analysis of threat actors, IOCS, and vulnerabilities
  • Performing Real-Time Monitoring, security incident handling, Investigation, Analysis, Reporting and Escalations of Security Events from Multiple log sources
  • Handles malware incidents, analysis and investigating to reach to core
  • Take necessary Steps to remove the malware
  • As per client requirement and inputs from implementing all necessary action for Smooth process
  • Attending classified briefings to facilitate sharing of information and increased Awareness of cyber threats
  • Analyzing McAfee EPO and McAfee DLP on periodic basis and escalate to concern team for any suspicious activities
  • Attending classified briefings to facilitate sharing of information and increased Awareness of cyber threats
  • Monitor information system activity, collect, review, and retain audit logs to include system logs And records and determine actions to be taken when discrepancies are detected and Gather Documentation and technical information in support of issue efforts and audit requests.

Senior Security Analyst

NTT Communications India Pvt. Ltd. MUMBAI
08.2018 - 07.2020
  • Working as Information security analyst on Real time threat management using McAfee SIEM
  • Creating Watch list, Dashboard, Alarms, and Reports based on new threats and vulnerabilities
  • Reviewing IDS/IPS events and identify anomalous activities or potential network security risks
  • Monitoring and investigate suspicious network activities utilizing a variety of tools such as McAfee SIEM & IBM Qradar
  • Analyzing network traffic and various log data to determine threat/impact on the network
  • Utilizing threat intelligence tools to support daily cyber security operations, and produce Intel analysis of threat actors, IOCS, and vulnerabilities
  • Performing Real-Time Monitoring, security incident handling, Investigation, Analysis, Reporting and Escalations of Security Events from Multiple log sources
  • Handles malware incidents, analysis and investigating to reach to core
  • Take necessary Steps to remove the malware
  • As per client requirement and inputs from implementing all the necessary action for Smooth process.

Senior Security Analyst

AGC Networks LTD. MUMBAI
11.2016 - 08.2018
  • Working on Intel security McAfee Nitro (SIEM) Installation and configuration of ESM, ERC, ELM, ACE, DAS, and GTI
  • Real time Incident Monitoring & Handling in SOC Operation, Incident Management
  • Configuring alarm, View, and configuration correlation rule as per client requirement
  • Integration of log management sources with the SIEM
  • SOC Service process flow and Automation of reports
  • Daily and Weekly Security status report to Clients Technical Team
  • Recommendation on tuning security Incident Management process and procedure
  • Performance, health, and latency monitoring of Security devices
  • Security Event Identification, Analysis, Mitigation, and notifications
  • Creation of Use cases, dashboards, Watch list for Active & Real-time monitoring
  • Tuning/designing of correlation rules to generate the alerts/offenses/notifications for attacks, security violations and any deviation in traffic/flow Security Event Identification, Analysis, Mitigation, and notifications
  • High Availability mode configuration for SIEM Receivers.

IT Security Analyst (Senior Engineer)

HCL Comnet LTD. MUMBAI
12.2008 - 08.2016
  • Working as Engineer to handle technical calls related to McAfee Web Security Gateway, Creating Policies based on Client Request and Daily Maintain and Audit internet surfing usage, Internet Log, Security Logs, on McAfee Web Security Gateway
  • Defining Policy, Category set, Protocol set and custom URL for user
  • Troubleshooting of issues reported by end user for web filtering (MWG) Regular Backups of McAfee web security gateway
  • Weekly Backup of McAfee web reporter server and SQL Database server
  • Monitoring alert and log an incident and resolve incident for web filtering and content filtering
  • Working with SOC and NOC team to analyzing event for security related issue (Various attacks DOS, DDOS, Malware attack on web) and troubleshooting and administration of key security related issue
  • Monitoring of McAfee web reporter and customize reports as per requirements
  • Implementing Imperva DAM products and monitoring database activity through Imperva Monitoring Console
  • Creating security policies based on client requirements for databases
  • Installing agents on database servers in different OS platforms and configuring them
  • Generating daily compliance reports for databases and workstations
  • Conducting weekly scans of databases and sharing reports with server owners and business leads to address vulnerabilities through patching
  • Reviewing threat logs every 24 hours and taking necessary actions on infected databases
  • Providing monthly and weekly ticket status reports
  • Tracing actual user end-to-end, from application to database access, especially in pooled connection environments
  • Managing and mitigating risks by enforcing security policy compliance on majority of devices seeking access to the bank's database computing resources.

Sr. Tech Support Engineer-FM Team

Digicom Systems (BLR) PVT Ltd
12.2007 - 12.2008
  • Handled installation, configuration, and troubleshooting of branded assembled computers, laptops, and accessories
  • Managed installation, configuration, and troubleshooting of Windows XP, Windows 7, and Linux (Ubuntu)
  • Involved in installation and configuration of all server and network-related activities as Single Point of Contact (SPOC)
  • Managed all types of major problems faced by users in their day-to-day activities
  • Also, responsible for taking care of server room, checking CPU utilization, and addressing other queries.

System Engineer

Wipro InfoTech (Nexpro Solution)
05.2006 - 12.2007
  • Handled installation, configuration, and troubleshooting of branded assembled computers, laptops, and accessories
  • Managed installation, configuration, and troubleshooting of Windows 2000/XP operating system
  • Involved in the installation, configuration, and troubleshooting of applications such as MS Office 2003 & 2007, antivirus, and monitored regular updates
  • Additionally, played a role in changes in the Data Centre
  • Utilized standard corporate tools to record changes, service requests, and problem activities for tracking purposes
  • Monitored call flow through REMEDY and provided 24 *7 support.

Education

Bachelor of Computer Applications (BCA) -

Jaipur National University (Distance Education)
Mumbai
12.2021

Polytechnic Diploma in Computer Engineering -

Dyaneshwar Vidyapeeth, Pune University
Bombay
07.2000

SSC -

Delhi Board {C.B.S.E}
Delhi
06.1996

Skills

    • Monitoring McAfee Nitro SIEM
    • IBM QRadar
    • Splunk
    • McAfee Web Proxy
    • McAfee IPS
    • Firewalls
    • Switches
    • Smokescreen
    • WEB Threat Detection
    • WAF
      • Imperva DAM
      • Analyzing security logs
      • Conducting Threat Analysis
      • Incident Handling
      • Implementation Activities
      • ThreatArmor
      • Network Packet Broker (NPBs)
      • PCAP Server
      • Ixia iBypass DUO Configuration and Documentation

Certification

  • ITIL Foundation Certificate in IT Service Management
  • Certified Lead Auditor - ISO 27001:2013 (Information Security Management System) Quality Austria Central Asia
  • Certified in McAfee SIEM Administrator & Splunk CORE USER
  • Microsoft Certified AZURE SECURITY ENGINEER ASSOCIATE - AZ-500
  • Certified in Qradar SIEM V7.5 Administrator

Mobile

+96598736351, +919930077103

Accomplishments

  • Made recommendations to management on new security software to improve [System or process].
  • Educated management on how to minimize risk of cybersecurity attacks.
  • Performed comprehensive investigations of security breaches and implemented appropriate solutions.
  • Updated security manuals to prevent security threats such as [Example] and [Example].
  • Implemented system recovery procedures to minimize loss of [Data or information] in the event of attack.
  • Developed and implemented security procedures to achieve [Result].
  • Trained end users on proper security protocol to minimize cybersecurity attacks.
  • Created daily database reports to identify and mediate potential vulnerabilities.
  • Resolved product issue through consumer testing.
  • Supervised team of [Number] staff members.
  • Documented and resolved [Issue] which led to [Results].
  • Used Microsoft Excel to develop inventory tracking spreadsheets.
  • Collaborated with team of [Number] in the development of [Project name].
  • Achieved [Result] by completing [Task] with accuracy and efficiency.
  • Achieved [Result] through effectively helping with [Task].
  • Achieved [Result] by introducing [Software] for [Type] tasks.

Languages

English
Native language
English
Advanced
C1

Timeline

SOC Analyst / Engineer

Diyar United Company (Kuwait)
07.2022 - Current

Senior Security Analyst

Inspira Enterprise India Pvt. Ltd. MUMBAI
07.2020 - 10.2021

Senior Security Analyst

NTT Communications India Pvt. Ltd. MUMBAI
08.2018 - 07.2020

Senior Security Analyst

AGC Networks LTD. MUMBAI
11.2016 - 08.2018

IT Security Analyst (Senior Engineer)

HCL Comnet LTD. MUMBAI
12.2008 - 08.2016

Sr. Tech Support Engineer-FM Team

Digicom Systems (BLR) PVT Ltd
12.2007 - 12.2008

System Engineer

Wipro InfoTech (Nexpro Solution)
05.2006 - 12.2007

Senior Security Engineer

CyberGate Defence Abu Dhabi
- 04.2022

Bachelor of Computer Applications (BCA) -

Jaipur National University (Distance Education)

Polytechnic Diploma in Computer Engineering -

Dyaneshwar Vidyapeeth, Pune University

SSC -

Delhi Board {C.B.S.E}

Similar Profiles

  • Ibrahim Haider

    Ibrahim HaiderIbrahim Haider

    IT Service Desk Engineer at Diyar United CompanyIT Service Desk Engineer at Diyar United Company

    View Profile
  • Rodaina Gamal Gallo

    Rodaina Gamal GalloRodaina Gamal Gallo

    Senior Quality Assurance Engineer at Diyar United CompanySenior Quality Assurance Engineer at Diyar United Company

    View Profile
  • NEBU KOSHY JACOB

    NEBU KOSHY JACOBNEBU KOSHY JACOB

    L1 Desktop Support Engineer at DIYAR UNITED COMPANYL1 Desktop Support Engineer at DIYAR UNITED COMPANY

    View Profile
SADANAND JADHAV