nurul amin_cv
TRANSCRIPT
![Page 1: Nurul Amin_cv](https://reader036.vdocument.in/reader036/viewer/2022082515/55c406dabb61ebcb648b45fd/html5/thumbnails/1.jpg)
NURUL AMIN +918792430176, Bangalore, India
Jr Security Analyst [email protected]
In the year of experience, managed the major clients with the analysis and technical skills in the domain, Information Security Analysis with the Security Incident and Event Management tool, ArcSight.
Experience Summary
Information Security Analyst with experience of strong technical knowledge in technology, process analysis and review.
Aug 2014 – Till Date Paladion Networks, Designation – Jr Security Analyst.
Paladion Networks (Aug 2014 – Till date)
Currently supporting one of the largest clients in US as a Jr Security Analyst for their captive SOC.
Perform real-time investigation, analysis of event using SIEM tools (ArcSight) of Network Security Components and device such as Firewalls, Intrusion Prevention System (IPS), Operating Systems like Windows and UNIX, Databases and other Networking Devices.
Key Skills:
Programming skills: - Python.
o Basic knowledge of Python programming and algorithm.o Knowledge of system programming and process creation, threading
and multiprocessing.o Knowledge of creating algorithm for raw socket, web server, packet
sniffing with raw socket, packet injection with raw socket and packet sniffing with scapy.
SIEM Tool – ArcSight.
o SIEM experience on ArcSight and log analysis using ArcSight.o Understanding of ArcSight ESM product component which collect, process,
model, prioritize, correlate, monitor, and analysis enterprise generate events.
o Good understanding of phases of ArcSight ESM event life cycle and describe the functional processing which occur during each phases.
o Navigate the ArcSight console and web component to effectively correlate, investigate, analysis and remediation both observe and expose and obscure vulnerabilities to give situational awareness and real time incident response.
![Page 2: Nurul Amin_cv](https://reader036.vdocument.in/reader036/viewer/2022082515/55c406dabb61ebcb648b45fd/html5/thumbnails/2.jpg)
o Check system health of ArcSight ESM, Logger and Connectors, Check backup and log archival status.
o Acquired knowledge of implementation by creation a test envoirment using SIEM.
o Possess Knowledge on Log Baselines and understanding of how and where logs will be generated and stored for different Application and Devices.
o Proficient ability to work on Windows and Linux platform and scripting ability.
Vulnerability Management tool – Qualysguard.
o Network Mapping and Discovery.o Configuring Asset Groups.o Vulnerability Scanning.o Creating Reports, Users and Dashboard.o Fine Tuning Scanning and Reporting.
Job Responsibilities:
o Managing the ArcSight Express and Logger Appliances.o Device on boarding and log collection status confirmation.o Collection, analysing and preserving the evidence related to incident.o Malware analysis, log analysis, SIEM log analysis utilizing Enterprise
Products.o Performing trend analysis and suggest improvement to security aspect.o Writing reports on incidents and deliver them to Business and other
stakeholder.o Creating of rules, Active List, Dashboard, Active channels based on
customer requirements.o Creation of reports, quires and filter for the events that are generated in
ArcSight console on the basis of severity and priority of the events. Ensure application availability and SLA adherence.
o To be able to configure manage event feed in event aggregation and correlation systems.
o To be able to configure and manage use cases into event aggregation and correlation systems.
o Develop and configure SIEM reports (i.e. dashboard including daily, weekly and monthly reports)
o Review security related events, assessing risk and validity, as well as reporting.
o Assist, co-ordinate with security Incident Handling Team (onsite project team) in providing assistance during investigation.
Educational Summary:
![Page 3: Nurul Amin_cv](https://reader036.vdocument.in/reader036/viewer/2022082515/55c406dabb61ebcb648b45fd/html5/thumbnails/3.jpg)
July 2009 – July 2013: Gurunanak Institute of Technology, (West Bengal University of Technology).
Bachelor in Technology, Computer Science – 73%
Certification Summary:
Certified ArcSight Analyst in ACSA. Qualysguard Vulnerability Management. Solarwinds Certified Professional.
PERSONAL INFO
Name : Nurul Amin
DOB : 11-09-1989
Passport : L 7377559
Notice Period : 90 Days
PLACE: Bangalore Nurul Amin.