Hemantkumar Kailas Bairagi

[email protected]
+91-976265678

Executive Summary
Information Security Professional with 9.1 years of industry experience in Security Operations
Center & Currently associated with BNY Mellon as Lead Information Security Analyst. Responsibilities include
doing analysis of Security Events observed in multiple customer environments to ensure that the client IT
infrastructure is secured. Incident handling, incident response, Identity Access management, Vulnerability
Assessment and escalation management.
Objective
Contributing best to the organization that I work for and utilizing my qualifications and experience
related to information security to achieve the organizational goals and boost my own career goals as well as
Improve my skill sets.
Personal Information
Date of Birth 13th June 1992
Languages known English, Hindi, Marathi.
Permanent Address Flat No. A-8, Gangotri Park, Gondhale Nagar, Hadapsar, Pune-411028.
Marital Status Married
Professional Skills and Achievements
Certifications 1. EC Council Certified Ethical Hacker v9 (2015)
2. EC Council Certified Security Analyst v9 (2018)
3. EC Council Certified Threat Intelligence Analyst - CTIA (2020)
4. Completed CISSP training (2021).
5. CompTIA Security+ certified (2021)
6. Microsoft Certified: Security Operations Analyst Associate SC-200 (2022)
7. Microsoft Certified: Security, Compliance, Identity Fundamentals SC-900.
8. CompTIA Cyber security Analyst CySA+ (2023)
9. CompTIA Security Analytics Professional – CSAP Stackable (2023).
10. Microsoft Certified: Cyber Security Architect Expert SC-100 (Sept 2023)
11. Microsoft Certified: Azure Security Engineer Associate AZ-500 (Sept 2023)

IDS / IPS Devices & Sourcefire, Imperva WAF, CISCO NSM, Wireshark, FireEye Hx-Nx, McAfee EDR &
Other Security Tools
AV, Symantec AV, Zscaler, ScanSafe, Windows defender, AnyRun, Qualys VMDR.

SIEM & Monitoring ArcSight 6.5, QRadar, LogRhythm (Version 7.12), Splunk 8.1.5, MS Sentinel.

Network and OS Security 1. DDOS attacks, Perform Vulnerability assessment using Qualys
2. Phishing campaigns, Analyze the Vuln. Reports and suggest mitigation plan.
3. AV-HIDS, NIDS, Malware Outbreaks, Cisco & Juniper Firewall monitor.
Current Work Experience
Organization Bank Of New York Mellon
Duration 13th Dec 2021 to Till date.
Designation Lead Information Security Analyst

Roles & Responsibility 1. Active monitoring of various alarms, threats, intrusion and triage Incidents
by analyzing them, Investigate MS Azure alerts, perform various compliance
checks. Mentor/Support L1 Team to run the operations smoothly.

2. Vulnerability detection and Assessment reports from Qualys, Perform Patch

Tuesday activity, conduct various compliance checks and notify different
teams with the risks involved along with mitigation plans.

3. Malware analysis using Zscaler Sandbox, logs analysis, identify false

positives to fine tune SIEM Console and Incident Response process,
creating lesson learned documents/security Incidents.
4. Contribute in Identity and Access Management, Privileged Access
Management, Perform Threat Hunting, Suggest use case modifications/BAU
Enhancement techniques.

5. Coordinating with Onsite IT Sec Team, active participation in business

calls/meetings and provide the timely updates as per the agreed SLA.

6. Conduct KT Sessions to New Joiners/Movers of SOC, Suggest and document

new SOPs, Suggest Modifications to existing process.

7. Contribute for Auditing documentation, Perform Quality Assurance on

incidents/tickets closed by the team.

8. Perform various Cloud operational checks, Analyzing user reported

suspicious Emails and taking preventive actions on them.
Previous Work Experience

Organization
CompuCom CSI Systems India Private Limited
Duration 12th Aug 2019 to 3rd Dec 2021.
Designation Security Analyst (Level 2)

Roles & Responsibility 1. Contributed in Creation of SOC environment from Scratch, Monitoring of
security alerts, create-edit dashboards, develop use-cases using Splunk.

2. Identify areas of improvement in security solutions periodically by looking

at some standard improvements. Followed Owasp Top 10 for Web apps.

3. Create and review the security procedures and provide management report
with latest updates on security aspects. Research, design and apply
advanced security techniques.
 4. Mentor L1 team by Analysis, investigation of Logs and escalation of various
security incidents. Perform Threat Hunting & identifying risks.

5. Malware detection, Vulnerability Assessment, suspicious logs analysis,

identify false positives and Incident Response process, creating lesson
learned documents.

6. Monitor corporate network for security breaches, compromises, potential

cyber-attacks using SOC plans and procedures.

7. Develop SPL queries to onboard different use-cases. Use Windows Defender

ATP and FireEye Hx, NX to analyse various critical alerts and incidents using
behavioural analysis.

8. Participate in daily onsite calls to design use cases, rules, SOPs. Conduct
security assessments, reviews of on-boarded devices

9. Providing regular management reporting to senior management and

relevant stakeholders in business units. Analyse Spam and phishing Emails
reported by users.

10. Structure & Align the team roles and responsibilities, documenting Runbook
& playbooks. Conduct KT sessions to new joiners.
Previous Work Experience
Organization FIS Global Business Solution, Pune
Duration 3rd April 2017 to 6th Aug 2019
Designation Senior Analyst - Information Security (Level 2)

Roles & Responsibility 1. Monitoring & Analysis of security offenses using QRadar & LogRhythm.
Analyze the existing security processes, policies,

2. Provide L2 Support in Analysis, investigation of Logs and Escalations of

various security incidents.

3. Malware detection, payload analysis and Incident Response of various

events/offenses.

4. Performing patching on the Sourcefire every month to keep the patches up

to date.

5. Use case validation created by SIEM Team & report creation. Identify and
communicate current and emerging security threats.

6. Analysing and investigating Scan-safe proxy logs to monitor any critical data
loss.

7. Perform Quality assurance on resolved incidents by the L1 team.

8. Operational Run Book, Play Book creation & update as per requirement.

9. Analysis of Spam, Phishing, Malicious E-mails & taking proper actions.

 Previous Work Experience
Organization Vodafone India Services Private Limited.
Duration 19th Sept 2014- 30th Mar 2017.
Designation Senior Security Analyst (Cyber Security Operations Center)

Roles & Responsibility 1. Monitoring and Analysis of Security Events through HP ArcSight and Splunk.
2. Notifying any suspicious traffic, create security tickets/incidents.
3. Update, maintain, monitor and support enterprise network and system’s
security operations throughout the shared services environment.
4. Scheduling reports from SIEM tool & Perform Quality Assurance checks on
resolved incidents by Level 1 colleagues.
5. Participate in weekly, monthly incident calls with Customers.
6. Monitoring and keeping customers updated with their TOP N Service status.
7. Analysis of Suspicious E-mails, protect network from email attacks.
8. Monitor the Vodafone TOP-N Services, DDOS attacks.

Internship Experience
Organization: Concept Telecommunication System INC.
Duration: 1st Aug 2013 to 31st Aug 2013.

Roles: 1. Developed a Software tool using technologies like Java and SQL,
2. Implemented Telecom Equipment installation

Qualification
Year Qualification Institution Percentage
2013-2014 B.E. IT MIT COE, Pune 63.93% (First Class)

2009-2010 Diploma in Computer Govt. Poly. Nashik. 83.44 % (Distinction)

2006-2007 SSC SSC Board 82.46% (Distinction)

Hobbies

Listening Songs, Playing Cricket, Web Surfing, Sports.

I do hereby declare that the above information is true to the best of my knowledge.

Date: 27-Sep-23 (Signature)

Place: Pune. Hemantkumar K. Bairagi