Microsoft Sentinel
Prushotaman Nadarajah
Cyber Security Professional
Shah Alam,Shah Alam
Summary
Persistent, detail-oriented cybersecurity and incident response lead with 9+ years of experience with the managed security service provider and telecommunication industries. Identified and remediated threat actor attacks on the organization. Proficient with the Security Information Event Management and Manage Detection & Response (MDR) products.
Overview
8
8
years of professional experience
7
7
years of post-secondary education
3
3
Certifications
3
3
Languages
Work History
Senior Security Analyst
Axiata Digital Labs
05.2023 - Current
- Monitors availability, operation, maintenance and security of operating companies’ (OpCo) computer systems, networks and data. Using a variety of enterprise monitoring tools, reviews anomalies, bulletins, and alerts as may apply to enterprise network.
- Oversees and serves as primary resource responsible in Axiata GSOC for operational and technical aspects of Security Information and Event Management (SIEM) and multiple threat management platforms such as MDR.
- Providing use case development ideas and finetuning in SIEM to reduce False Positive rates and enhance accuracy in detection.
- Involve in SIEM Migration Project- for use case development, threat detection and deployment.
- Reviews and maintains required security metrics and documentation on operating companies’ (OpCo systems, ensuring compliance with security standards.
- Plans cybersecurity tabletop exercises with Incident Responder Team based on existing policies and procedures.
- Provides governance report to senior management.
- Develops company-wide best practices for IT security.
- Proposing security enhancements and make recommendations to management.
- Provides leadership, direction, coordination and training to L1 staff on case escalations. Advises other staff (L1s) and enterprise clients of steps to take to mitigate security threats.
Assistant Manager, Cybersecurity Emergency & Incident Response
Digital Nasional Berhad
4 2022 - 05.2023
- Monitoring Security Information Event Management, End-Point Detection & Response, Email Security Protection
- Managing and monitoring Threat Intelligence Platforms for threat hunting, domain take-down tasks and sandboxing investigation
- Created and documented Incident Response Playbooks
- Governing security vendor- Providing incident response/remediation guidelines to senior and junior analysts
- Performing investigation based on the incidents and behavioral map triggered
- Documenting security breaches and assess the damage
- Guiding Incident Response procedures to the MSSP Incident Response Team
- Documenting monthly security reporting dashboards
- Participated in Table-top exercises to share ideas on improving cybersecurity measurements on handling cybersecurity incidents, Developing company-wide best practices for IT security
- Proposing security enhancements and make recommendations to management
Senior Associate, Security Analyst
Digi Telecommunications Sdn Bhd
02.2020 - 02.2022
- Monitoring Security Information Event Management and End-Point Detection & Response, and creating incident reports based on alarms triggered (HIDS and NIDS)
- Managing and monitoring Threat Intelligence Platforms for threat hunting and domain take-down tasks
- Documented Incident Response Playbooks for MSSP
- Governing security vendor- Providing incident response/remediation guidelines to senior and junior analysts
- Perform investigation based on the alarm and behavioral map triggered
- Documenting security breaches and assess the damage
- Documenting monthly security reporting (monthly statistics)
- Threat Hunting
Security Analyst
Vigilant Asia (M) Sdn Bhd
05.2018 - 02.2020
- Monitoring Security Information Event Management and End-Point Detection & Live Response, and creating incident reports based on alarms triggered (HIDS and NIDS)
- Perform investigation based on the alarm and behavioral map triggered
- Documenting security breaches and assess the damage they cause
- Threat Hunting and Mobile forensics
- Developed Disaster Recovery/Business Continuity Plan for the company (part of ISO requirements)
- Trained junior members of the SOC team regarding network security and troubleshooting of data circuits
- Preparing client monthly report based on SLA
- Monitoring use of data files and regulated access to protect secure information
- Monitoring and remediation in endpoint's antivirus software
- Developed company-wide best practices for IT security
- Proposing security enhancements and make recommendations to management
User/Security Analyst
Prudential Services Asia
04.2017 - 01.2018
- User administrator with job scope of ID creation, modification, password reconciliation deletion and password reset for Prudential staffs based in Malaysia
- Handle Optimus Project which related to application management for clients
- Respond to customer requests via telephone and email
- Prepare weekly and monthly reports of D creation, modification, password reconciliation deletion and password reset to team leads.
System Engineer
T-Systems Malaysia Sdn. Bhd
12.2015 - 12.2016
- Provide documentation on start-up, shut down and first level troubleshooting of processes to help desk staff
- Create change tickets for issues related to Windows servers
- Perform Level 1 tasks such as task assignment for Level 2 engineers in the Wintel Team Performing LAR for Shell customers in Windows servers
- Perform slice extensions/deductions in Windows Servers
- Perform server migration- Basic Level
- Perform server remediation- Installing HPOA into Windows servers (Server remediation)
- Diagnosing and troubleshooting Windows processing problems and applied solutions to increase company efficiency
- Mentored junior engineers and new hires to better improve the competency and efficiency of all staff
Education
Bachelor in Computer Forensic (Hons.) -
Management And Science University
Shah Alam 07.2012 - 05.2017
Cambridge A Levels -
Taylor's College Subang Jaya
Subang Jaya 03.2010 - 05.2011
Sijil Pelajaran Malaysia -
Sekolah Menengah Kebangsaan Batu Unjur
Klang 01.2008 - 05.2009
Skills
Incident Response Management
Security Information and Event Management
Advanced Threat Analysis
Disaster Recovery Strategies
Network Security Monitoring
Endpoint Protection
Intrusion Detection Systems
Vulnerability Scanning
Identity and Access Management
Security Awareness Training
Security policy development
Critical Thinking Skills
Security Needs Assessment
Vulnerability Assessment
Threat Intelligence
Details
Malaysian, Endpoint Detection Response (NGAV), Computer Skills, Microsoft Office, Active Directory, Incident Response, Incident Management, Microsoft Defender, SIEM, Mobile Forensics, Computer Forensics, Threat Hunting and Threat Intelligence, Incident Response, Nessus, Microsoft Azure, Kali Linux, Microsoft Power BI, Autopsy Forensic, Vulnerability Assessment (VA) Management: Governing MSSP on weekly remediation status, Assigning Vaccine process in NIPS (Virus Remediation), Participating in O365 migration projects- under cyber security operations (Threat Actor Removal), Developing company-wide best practices for IT security, Proposing security enhancements and make recommendations to management, Stay up-to-date on information technology trends and security standards, Diagnosing and troubleshooting Windows processing problems and applied solutions to increase company efficiency, Mentored junior engineers and new hires to better improve the competency and efficiency of all staff, Tamil, English, Malay
References
- Abu Emran A.Hishamuddin, Threat Intelligence & Landscape Manager, Digital Nasional Berhad, 60162789880
- Ravi Ramasamy, Incident and Response Manager, Digi Telecommunications Sdn. Bhd., 0126198274
- Edmund Tan, Incident Response Manager, Digital Nasional Berhad, 0163747854
Accomplishments
Red Team Security Project involvement in Axiata GSOC.
- Developed and implemented security procedures/playbooks in Vigilant Asia SOC.
- Made recommendations to management on new security software to improve security monitoring in Axiata GSOC.
- Performed comprehensive investigations of security breaches and implemented appropriate solutions during planned table-top exercises.
- Supervised SOC team in Vigilant Asia, Digi and Digital Nasional Berhad.
Software
Azure Security
Microsoft Defender
CrowdStrike
SentinelOne
LogRhythm
AlienVault
CyberBit
BitDefender
Splunk
Microsoft Office
Nessus
PowerBI
Certification
Systems Security Certified Practitioner (SSCP), (ISC)²
Timeline
Senior Security Analyst
Axiata Digital Labs
05.2023 - Current
Systems Security Certified Practitioner (SSCP), (ISC)²
07-2020
Network Security Associate
06-2020
Senior Associate, Security Analyst
Digi Telecommunications Sdn Bhd
02.2020 - 02.2022
ITIL Foundation v3
10-2018
Security Analyst
Vigilant Asia (M) Sdn Bhd
05.2018 - 02.2020
User/Security Analyst
Prudential Services Asia
04.2017 - 01.2018
System Engineer
T-Systems Malaysia Sdn. Bhd
12.2015 - 12.2016
Bachelor in Computer Forensic (Hons.) -
Management And Science University
07.2012 - 05.2017
Cambridge A Levels -
Taylor's College Subang Jaya
03.2010 - 05.2011
Sijil Pelajaran Malaysia -
Sekolah Menengah Kebangsaan Batu Unjur
01.2008 - 05.2009
Assistant Manager, Cybersecurity Emergency & Incident Response
Digital Nasional Berhad
4 2022 - 05.2023
Similar Profiles
Arunya SaravanabavaArunya Saravanabava
Software Engineer at Axiata Digital LabsSoftware Engineer at Axiata Digital Labs
Suaidah MahzanSuaidah Mahzan
L2 Application Support Specialist (Team Leader) at Axiata Digital LabsL2 Application Support Specialist (Team Leader) at Axiata Digital Labs
Rishi UkwattaRishi Ukwatta
Senior Software QA Engineer at Axiata Digital LabsSenior Software QA Engineer at Axiata Digital Labs