Summary
Overview
Work History
Education
Skills
Disclaimer
Certification
Timeline
Generic

Kiran Vyas Manikkoth

Manager Information Security
Kuala Lumpur

Summary

As a dedicated Cyber Security professional with over 12 years of experience, I specialize in designing, implementing SIEM, XDR and managing SOAR, VA and EDR solutions. My journey has taken me from hands-on security operations to leading SOC teams, ensuring robust security architectures, and streamlining incident handling processes. I'm passionate about enhancing threat detection capabilities and tailoring security measures to meet client needs. My unique blend of technical expertise, leadership skills, and client-focused approach has allowed me to consistently deliver top-notch security solutions.

Overview

13
13
years of professional experience
8
8
Certifications

Work History

Manager - Information Security

DXC Technology
2 2022 - Current
  • Proficient in architecting and implementing SIEM solutions like Splunk and IBM QRadar, as well as overseeing the design, implementation, upgrades, and ongoing maintenance of Splunk environments
  • Experienced in deploying, configuring, and fine-tuning Splunk setups to fortify security operations and streamline incident response procedures.
  • Strategizing and designing Splunk architecture to align with client requirement and network design.
  • Installing and configuring servers, ensuring adherence to performance and security standards
  • Integrating diverse log sources into Splunk to bolster threat detection capabilities
  • Spearheading Splunk server upgrade initiatives, guaranteeing alignment with the latest features and security updates
  • Overseeing Splunk migration efforts, ensuring server compatibility with the newest operating systems and firmware
  • Developing and administering Splunk Enterprise Security to craft customized use cases tailored to client requirements, thereby enhancing incident response and mitigation tactics
  • Handling client inquiries, addressing concerns, and soliciting feedback to nurture strong client relationships and satisfaction

Senior Security Consultant

SilverSky Technology
02.2020 - 02.2022
  • Work with internal development team to leverage the SIEM tools capabilities.
  • Integrating and developing capabilities of the SOAR tools with SIEM solutions
  • Consulting on new project requirements from different clients
  • Implementation of SIEM solution
  • Consulting on QRadar Architecture improvement and content fine-tuning
  • Use-case building for SIEM
  • Using AttackIQ tool, adding and improving existing use cases in the security posture to defend against the emerging threats
  • Implementation of SOAR tools with SIEM and improve the threat prevention method

Senior Security Consultant

Ernst & Young
12.2018 - 01.2020
  • Work with internal development team to leverage the SIEM tools capabilities.
  • Integrating and developing capabilities of the SOAR tools with SIEM solutions
  • Consulting on new project requirements from different clients
  • Implementation of SIEM solution
  • Consulting on QRadar Architecture improvement and content fine-tuning
  • Use-case building for SIEM
  • Using AttackIQ tool, adding and improving existing use cases in the security posture to defend against the emerging threats
  • Implementation of SOAR tools with SIEM and improve the threat prevention method

Team Lead, SOC Operations

Paladion Networks Sdn Bhd
01.2017 - 12.2018
  • Managing the SOC operations as team lead
  • Interact with the customer, handle customer queries, and attend review/governance meetings
  • Interact with the process owners to understand the nature of business, the controls and possible risk
  • Integrate and manage different security devices, network devices, servers, applications, etc
  • Administration of SIEM tool (IBM QRadar)
  • Managing Vulnerability Assessment and Secure Configuration Assessment
  • Assist, co-ordinate Security Incident Response Team to perform investigations and during any security incident
  • Creation and maintenance of SIEM playbook which includes SIEM operations and maintenance procedures, incident triage & alerting
  • Overseeing Use Cases creation to detect the real-time threat in the traffic
  • Ensure deliverables are met within the SLA
  • Training team members for the SOC workflow of daily operations.

Senior Security Analyst

Paladion Networks Pvt Ltd
07.2014 - 12.2016
  • Analyze and manage the incidents escalated by L1 & L2 analysts
  • Conduct threat analysis, staying updated on the latest threats and vulnerabilities, and raising awareness within the team
  • Develop rules, dashboards, filters, reports and queries in QRadar
  • Review daily, weekly, and monthly reports, investigating anomalies and providing detailed client views with impact and recommendations
  • Optimize performance of SIEM tools on a regular basis
  • Advise clients on new security vulnerabilities, attack vectors, and mitigation strategies
  • Create secure configuration guidelines for devices and conduct vulnerability assessments, driving findings to closure in co-ordination with relevant teams
  • Initiate change management requests for necessary security device changes, providing detailed plans and risk analysis
  • Collect, analyze, and preserve evidence related to incidents
  • Collaborate with the manager to review daily security requests from the business
  • Co-ordinate with the Security Incident Handling team during investigations
  • Engage with process owners to understand business nature, controls, and potential risks
  • Report any security threats or policy violations to the Information Security Manager
  • Develop and maintain a SIEM playbook covering operational procedures, incident triage, and alerting

Associate Engineer - Security Management

Wirpo Infotech
09.2011 - 07.2014
  • Monitoring real-time events across security devices such as Firewalls, Routers, and Servers utilizing SIEM technology
  • Ensuring 24/7 surveillance of enterprise network and system security
  • Conducting health monitoring and basic troubleshooting of the SIEM system
  • Perform incident analysis and management within the Security Operations Centre
  • Crafting and executing queries to generate automated reports for customers on a daily or weekly basis, tailored to their requirements
  • Implementing agent-level filters, creating aggregation and correlation rules, and fine-tuning configurations
  • Promptly troubleshooting SIEM-related activities to resolve issues within tight timeframes
  • Generating daily reports, security advisories for devices, and monthly incident reports with comprehensive customer device analysis
  • Analyzing events, providing detailed insights and offering solutions for escalation as needed
  • Collaborating with L3 teams for escalation and co-ordination on unresolved incidents
  • Compiling security advisories for newly identified vulnerabilities and promptly communicating these to customers
  • Advise customers on findings and recommendations based on security assessments
  • Initiating and executing change control processes and maintaining a knowledge base for all resolved incidents, changes and problems
  • Developing SOPs to ensure consistent resolution of issues

Education

Bachelor of Computer Application (BCA) -

Alagappa University

Diploma in Information Technology (IT) - undefined

NTTF, Bangalore

Skills

SIEM management

Disclaimer

I affirm that all information given in this CV is true and correct to the best of my knowledge.

Certification

Splunk Enterprise Certified Architect

Timeline

Senior Security Consultant

SilverSky Technology
02.2020 - 02.2022

Senior Security Consultant

Ernst & Young
12.2018 - 01.2020

Team Lead, SOC Operations

Paladion Networks Sdn Bhd
01.2017 - 12.2018

Senior Security Analyst

Paladion Networks Pvt Ltd
07.2014 - 12.2016

Associate Engineer - Security Management

Wirpo Infotech
09.2011 - 07.2014

Manager - Information Security

DXC Technology
2 2022 - Current

Bachelor of Computer Application (BCA) -

Alagappa University

Diploma in Information Technology (IT) - undefined

NTTF, Bangalore

Similar Profiles

CREATE PROFILE
Kiran Vyas ManikkothManager Information Security