• Proactively identify and mitigate cyber threats through log analysis, investigation, and comprehensive remediation strategies. • Implementing advanced Security Policies, Firewall rules and Custom rules in email gateways to minimize risks from phishing and malicious emails with respect to the Change management process. • Also working on alerts such as Imposter, Attachment, URL defence. Quarantining the malicious emails. • To maintain Digital Risk & Compliance, constantly monitor and discover the Look-alike domain and block it post examining. • Conduct thorough vulnerability assessments and generate detailed reports for improved information security. • Created and enhanced SOP documents with the essential updates and prepared multiple reports as per the project requirement and presenting it on the weekly/monthly meetings. • Work on non-compliant endpoints to maintain compliance and adhere to internal controls operations and procedure. • Provide swift incident response, continuous security monitoring and robust incident management to safeguard critical assets. • Effectively isolate and remediate compromised endpoints using EDR tools and system reimaging. • Stay up to date with the latest attack trends, IOCs, and TTPs, sharing crucial insights with the team. • Thrive in high-pressure SOC operational environments, ensuring seamless coordination and communication.

-Proactively identifying, investigating, and recommending preventive measures for major incidents, ensuring continuous improvement in security posture. -Streamlining incident management processes to boost efficiency and effectiveness, reducing response times and minimising potential damage. - Leading Major Incident Meetings, fostering effective communication and collaboration among cross-functional teams. - Coordinating with team leads for timely incident resolution and conducting thorough Root Cause Analysis to prevent recurrence. - Generating insightful management information, including KPIs and reports, to drive data-driven decision-making and continuous improvement. - Demonstrating a deep understanding of Incident Response (IR) and Incident Management (IM) processes, leveraging expertise in log and event analysis. - Collaborating with various stakeholders to facilitate the development and implementation of incident mitigation plans and strategies. - Ensuring compliance with industry standards and best practices in incident management, fostering a culture of security awareness across the organisation. - Mentoring and guiding team members, enhancing their incident management capabilities and overall technical proficiency. - Continuously enhancing incident management toolsets and techniques, staying ahead of emerging threats and vulnerabilities.