Jagadeesh Kumar Ruttala

• Review and ensure compliance with customer security policies and requirements
• Review new and existing system designs for compliance with security standards and best practices
• Lead system and application architects through security acceptance testing
• Triage daily queue of alerts from different security log sources
• Develop and maintain SOAR technology on the environment
• Represent our team using on call rotation for large scale issues on conference calls
• Actively listened to customers' requests, confirming full understanding before addressing concerns.
• Carried out day-to-day duties accurately and efficiently
• Drove operational improvements which resulted in savings and improved profit margins.
• Used critical thinking to break down problems, evaluate solutions and make decisions.
• Proved successful working within tight deadlines and fast-paced atmosphere.
• Developed and implemented performance improvement strategies and plans to promote continuous improvement.
• Completed paperwork, recognizing discrepancies and promptly addressing for resolution.

• Develop content for the logrhythm and Qradar platform around current trending security events to provide real-time, relevant alarming
• Oversee all customers' integration into the MSSP to reliably handed to an operations team to conduct definitive work
• Work with vendors to develop partner relations, besides, to drive innovation for the platform
• Have high awareness of customer service levels when dealing with problems to ensure all SLA's are met
• Maintain operational status of client's SIEM platforms with a 90% efficiency rating based on current SLAs
• Develop data architecture design to enable analysts to perform targeted customer analysis
• Managed creative projects from concept to completion while managing outside vendors
• Mentor L1 and L2 analysts
• Validate and approve run books and use cases

Project: Ministry of Transport and Communication

• Build and tune custom use cases, dashboards, searches, reports on the SIEM platform based on cybersecurity and business needs
• Guide a team of peers to maintain productivity and accelerate innovation among security and SIEM
• Act as a point of escalation for SIEM and provide guidance and mentoring to associate security engineers/analysts
• Develop and maintain processes/procedures around SIEM based on environmental changes
• Preparing analytics in the environment for new threats as part of threat intelligence
• Developed formats and produced the weekly reports and monthly reports
• Work with vendors to develop partner relations in addition to drive new innovation for the platform
• Played a significant role in memory forensics using the tool Volatility
• Developed test bed for enhancing the knowledge of the team by practicing the skills.

Project: Cautela Labs

• Management responsibilities for information security staff, including setting goals, monitoring performance, coaching for improvement, providing feedback to team members, and participation in hiring of new team members
• Responsible for scheduling and ensuring that all shifts are covered
• Provide oversight and management of new customer onboarding and implementation activities
• Manage Client relationships through resolving problems and following up on the status of client issues
• Document, track and communicate until issue is resolved
• Escalate internally as needed with teams that are resolving any Client or network issues
• Ensure the development of and adherence to detailed operational process and proced-ures to appropriately log, track, analyze, escalate, communicate, and remediate information security incidents
• Ensure the development and reporting of metrics and trending information for Company and Client use and facilitate the ability to perform historical analysis
• Supports the preparation and implementation of necessary information security policies, standards, procedures and guidelines, in conjunction with the Security Committee
• Responsible for the operation of related compliance monitoring and improvement activities to ensure compliance both with internal security policies etc
• And applicable laws and regulations
• Supports activities relating to contingency planning, business continuity management and IT disaster recovery in conjunction with relevant functions and third parties

• Responsible for monitoring system logs to identify anomalies malware, exploit attempts, access violations or other attacks on customer's network, infrastructure and data
• Deliver high quality security event analytics
• Provide update as the incident progress through the incident response process as requested by client
• Help in Implementation of approved changes to client's security requirements
• Manage security tools, schedule, and coordinate any approved changes to security tools, software, computing assets and process which support the prevention of security exposure
• Responsible for diagnosing and resolving issues and problems with the client's information technology systems and providing detailed alternative solutions
• Identifying rogue, unpatched and unprotected systems and remediate in accordance with the company policy
• Install update operate and maintain malware protection software on all equipment and software equipment used to deliver and support security services
• Perform real time malware protection scanning in accordance with the security policy and schedules
• Configure scheduled automated scans to scan equipment in accordance with customer direction and service levels
• Coordinate with client information security and company activities required to respond to security incident notifications received from company
• Assist investigators of security incidents by collecting and analyzing logging and audit information and providing incident reporting.
• Reviewed violations of computer security procedures and developed mitigation plans.
• Monitored computer virus reports to determine when to update virus protection systems.

Project:Jefferies

• Developing Security Incidence Response (SIR) standards and deliver IT Security policies and procedures and a complete Security Incident/Event Monitoring (SIEM) Solution
• Monitoring offenses and generating reports from STRM (Security Threat Response Manager)
• Adding new servers to STRM, to monitor their network
• Approving different exception requests and notifying the users regarding exception requests
• Responding to Orchestria, ALE and STRM alerts
• Performing daily health checkup and mailing IBM qualys guard status
• Creating new requests using remedy and RSAM
• Checking logs from Splunk
• Monitoring the complete network using the tool SOLERA
• Creating Weekly reports for RSA
• Updating Microsoft security bulletins monthly
• Generating monthly reports for QUALYS and STRM
• (vulnerable servers)
• Varonis integration

Project: Infraops

• Developing vulnerability management policies and procedures, user training material and monitoring the security events
• Installing, configuring and administering network tools like CACTI and MRTG
• Installing, configuring and administering ticketing system tools like OTRS and Manage sense
• Installing, configuring and administering SIEM tools like Alien Vault and ZenOS
• Hardening the operating systems of the clients
• This includes both windows and linux
• Helped developers in creating oracle database backup
• Cleared old data from the servers, if they exceeded the limit.

Project: ABN AMRO UK - London, United Kingdom

• Visited ABN Amro Bank to perform a POC on selecting SIEM solution for their bank
• Shortlisted two SIEM solutions and performed demo out of handful of solutions with respect to the bank needs and network architecture

• Responsible for assisting in the coordination effort to remediate security alerts and respond to information security related incidents
• Scanning a network and identifying vulnerabilities producing a report prioritizing the results
• Responsible for monitoring organization's network, including IDS, firewalls, log capture, etc., and reacting to their output
• Provide technical leadership to the enterprise for the information security program
• Mentor and train others in information security in addition to training for other technical groups
• Assess threats, risks, and vulnerabilities from emerging security issues
• Draft enterprise security standards and guidelines for system configuration
• Managed process and acted in the lead role for computer security incident response team
• Perform and create procedures for system security audits, penetration-tests, and vulnerability assessments.

• Recommended preventive, mitigating, and compensating controls to ensure the appropriate level of protection and adherence to the goals of the overall information security strategy
• Responsible for assisting in the coordination effort to remediate security alerts and respond to information security related incidents
• Scanning a network and identifying vulnerabilities producing a report prioritizing the results
• Responsible for monitoring organization's network, including IDS, firewalls, log capture, etc., and reacting to their output.

• Mobile Game testing on different type of mobiles
• Configuration of internet access on different mobiles for different service
• Experience on different mobile software and operating systems
• Escalating issues to team leader that are not within scope
• Monitor and track the cases that were logged and do proper follow-up to users.