ZEESHAN HAIDER

Bachelor's

Management Information Systems

Protiviti Consulting

SOC Analyst II

rovide Tier 2 incident response support to all Internal and External users via Remedy & Outlook. • Managed tools such as QRadr, McAfee EPO, McAfee MVision, and McAfee Advanced Threat Defense. • Proactively hunt for and research potential malicious activity and incidents across multiple platforms using tools like EDR, Splunk, advanced threat network and host-based tools. • Managing the enterprise infrastructure of the System Security team, such as the configuration of File Integrity Monitoring systems, Data Loss Prevention (DLP) toolsets, enterprise Antivirus solutions, and endpoint encryption. • Collaborate across the entire organization to bring Splunk access to product and technical teams to get the right solution delivered and drive future innovation gathered from customer input. • Monitor the performance of Splunk via the Splunk Monitoring Console • Resolved at 93% request from Remedy System resulting 37% reduction of work load within first month of service. • Established Host Security to protect application data. • Performed with confidentiality and discretion with sensitive data. • Interacted with Cyber Security team on daily phishing threats and security breaches avoidance. • Triage security events and carry out incident response steps to meet SLAs and minimize impact. • Monitor and maintain existing security tools daily. • Cleared the Phishing queue backlog within 30 days and brought back to 100% current standing. • Used tools such as Symantec and MessageLabs to investigate potential malicious phishing emails. • Generated a phishing/social engineering training for the entire organization and all employees. • Generated runbook for reoccurring tasks • Investigate security events and carry out incident response triage.