Summary
Overview
Work History
Education
Skills
Certification
Academic details
Activities
Personal Information
Languages
Disclaimer
Timeline
Generic

Suchita Sarjine

Security Delivery Senior Analyst
Pune

Summary

Dedicated and results-driven Cybersecurity Engineer with 6+ years of experience in designing, implementing, and managing robust security solutions. Proficient in SOC operations, threat detection, incident response, and securing cloud environments. Skilled in Azure, Sentinel, MDE, and Active Directory. Adept at fine-tuning security use cases and collaborating across teams to enhance organizational security posture.

Overview

6
6
years of professional experience
4
4
years of post-secondary education
2
2
Certifications

Work History

Security Delivery Senior Analyst

Accenture
Pune
08.2023 - Current
  • Incident response and resolution on Sentinel.
  • Fine-tune analytic rules for reducing false positives and use case creation on Custom Log Sources.
  • Monitoring environments in Amazon Web Services (AWS) platform.
  • Security Orchestration Automation and response with Service Now.
  • Creating watchlist and playbooks for improvising security operations.
  • Workbooks and dashboard creation using Azure Dashboard and Sentinel Workbook.
  • Supported Microsoft Defender for Cloud, Azure Sentinel, Microsoft Defender for Endpoint, M365 Security, Defender for Identity, and Microsoft Cloud App Security.
  • Adding new policies, changing current policies, adding IOCs to blacklist, and adding IOCs to whitelist on Microsoft Defender endpoint.
  • ITSM process management (ServiceNow).
  • Working on data connector configurations and log source integration.
  • Creating SOC incident reports on weekly, monthly, and quarterly basis for sentinel as well as for MDE
  • Working on Active Directory and managed all users, computers, and groups.
  • Handling team of 8-10 tier SOC L1 analysts in rotation for SOC monitoring and daily SOC operations. Mentoring and guiding analysts.
  • Collaborated with cross-functional teams to identify areas of improvement, leading to increased operational effectiveness.

Security Delivery Specialist – Incident Response (IR)

IBM India Private Limited
3 2023 - 08.2023
  • Performing critical incident monitoring, Response, run triage and initiate investigation
  • Initiate & run the phishing campaigns for client
  • Identity and ingest IOC e.g., IPs/URLs, etc
  • Into network tools/ applications
  • Perform investigations and evaluations of network traffics, PCAP analysis with Wireshark Tool
  • Maintain Incident Response Case Register, Risk Case Register
  • Create WST, SLT, Monthly reports for critical cases
  • Proactively monitored security tools IBM Qradar and raised incidents related to Security offenses
  • Developing proactive incident response plan
  • Responsible for keeping track of incident response timelines and following up with ongoing management of incidents
  • Applications: IBM Qradar, FireEye HX, FireEye NX, FireEye CMS, Symantec Mail Gateway, DDOS- Arbor, WAF-Imperva, Symantec AV, Smokescreen, Mandiant, BMC Remedy, IBM X-force, Anyrun, VirusTotal, IPVoid, OTX, SOC radar, MXtoolbox
  • Supervised team of five security personnel during shift

Security Delivery Specialist-SOC

IBM India Private Limited
03.2022 - 02.2023
  • Proactively monitored security tools IBM Qradar and raised incidents related to Security offenses
  • Analysing threats and identifying false-positives and true-positives on SIEM Console for security incidents
  • Deep dive analysing Log Source events for any suspicious traffic
  • Assist L1 in alert Analysis
  • Utilization of EPS count for Licence Upgradation
  • Follow up with remediation groups for closure of open incidents and issues
  • Log Source Onboarding & Decommissioning
  • Maintaining and tracking incident sheet for customers
  • Creating the weekly KPI Reports which includes SIEM, DLP, ENDPOINT Security Reports
  • Applications: IBM Qradar, Symphony, Symantec, IBM Xforce, Cuckoo, Sapphire, VirusTotal, IPVoid

SOC & VAPT Analyst

Mahindra Defence System Ltd.
10.2021 - 03.2022
  • Monitoring and analyzing real time events for security devices and performing health checks on SIEM tools
  • Create and track incidents and request using ticketing tool
  • Follow up with Incident Response Team for Remediation
  • Monitor and analyses various security logs, incidents, and threat alerts
  • Generation & formatting of reports for Nessus Vulnerability scans performed
  • Handled Reputed BANKING and FINANCIAL partners Regular VAPT and Nessus Tenable SC POC Activities
  • Applications: FortiSIEM, Fortinet Analyzer, Forcepoint, BMC remedy, Trend micro

Analyst

Virtusa Private Limited.
03.2018 - 10.2021
  • Continuously monitoring and interpreting threats using the IDS and SIEM tools
  • Used various tools like Forcepoint, McAfee and Qradar SIEM
  • Analyze threats by taking events from Firewalls, Endpoints, Servers, IDS/IPS etc
  • Investigate all reported suspicious emails and determine whether emails are malicious, non-malicious or legitimate
  • Perform detailed analysis on threats that are triggered and suspected to be true positives
  • Investigating incidents, remediation, tracking and follow-up for incident closure with concerned teams and stakeholders
  • Raising tickets for validated incidents
  • Analysis of triggered alerts
  • Present new keywords and services and enhance existing relationships
  • Worked on ‘GOOGLE EWOQ’ tool
  • Applications: Qradar, McAfee, Urlworld, Service Now

Education

Bachelor of Engineering - Electronics And Telecommunications

Lokmanya Tilak College of Engineering
Navi Mumbai
09.2013 - 10.2017

Skills

SIEM: Azure Sentinel, Qradar, FortiSIEM,FortiNet SIEM ArcSight

Cloud Platform: Azure, AWS (CloudTrail, GuardDuty)

Anti-Virus/Endpoint: MDE, Symantec

ITSM (ServiceNow), BMC Remedy, JIRA, Symphony

DLP: Forcepoint DLP

Analysis Tool : FirEye HX, Symantec Messaging Gateway, CMS, Forcepoint Proxy, NX, FireEye Email APt, , FortiAnalyser, Smokescreen, Anyrun(Sandboxing), Nmap

Vulnerability Assessment: Nessus and Security Center, Acunetix Software

Certification

CEHv11 (Certified Ethical Hacker), ECC9731406285

Academic details

• BE- E&TC from Mumbai University with CGPA 7.80

• H.S.C. -Science from C.H.M. with 73.33%

• SSC from Maharashtra state board with 91.09%

Activities

  • Participated in a national conference (NLC), and my paper was selected for inclusion in that conference.
  • Participated in the district-level project competition for AVISHKAR in 2016.
  • Completed the workshop to become a Certified Information Security Specialist.
  • The PCB Design and Fabrication workshop at IIT Bombay was completed satisfactorily.
  • Attendee of the Arduino Workshop gathering.

Personal Information

  • Date of Birth: 07/08/1995
  • Marital Status: Married

Languages

English
Hindi
Marathi

Disclaimer

I hereby declare that information furnished above is true to the best of my knowledge.

Timeline

Security Delivery Senior Analyst

Accenture
08.2023 - Current

Security Delivery Specialist-SOC

IBM India Private Limited
03.2022 - 02.2023

SOC & VAPT Analyst

Mahindra Defence System Ltd.
10.2021 - 03.2022

Analyst

Virtusa Private Limited.
03.2018 - 10.2021

Bachelor of Engineering - Electronics And Telecommunications

Lokmanya Tilak College of Engineering
09.2013 - 10.2017

Security Delivery Specialist – Incident Response (IR)

IBM India Private Limited
3 2023 - 08.2023
Suchita SarjineSecurity Delivery Senior Analyst