SOC Manager

Download as docx, pdf, or txt
Download as docx, pdf, or txt
You are on page 1of 7

Imteyaz Ahmad

PLOT-105, SANGAM NAGAR, RING ROAD NAGPUR-440013,MH, INDIA.


Email: [email protected] , Mobile:+91 8600038911/7208835363/8766912366
Passport Valid till: 2029

Profile Summary:
Seasoned SOC Manager with 23 years of experience leading high-performing SOC teams,
mitigating threats, and optimizing security tools. Proven track record in boosting security
posture, achieving a 20% reduction in MTTR through SOAR implementation and a 15% increase
in threat detection with proactive hunting. Possesses CEH,CHFI, CISA, CISM, CCNP, MCSE, ITIL,
and TOGAF certifications, demonstrating expertise in IT security frameworks and best practices.
Adept at leading teams of up to 15 security analysts and incident responders, fostering a 95%
team satisfaction rate. Passionate about continuous improvement and leveraging AI and
automation to elevate security effectiveness.

Skills & Qualifications


 23+ years of Security Operations Center (SOC) management experience
 Bachelor's degree in Cybersecurity or related field
 CEH,CHFI, CISA, CISM, CCNP, MCSE, ITIL, and TOGAF certifications
 Expert in SOAR tools (e.g., Palo Alto Cortex XSOAR, Splunk SOAR)
 Proven ability to design and implement industry-aligned incident response procedures
 Deep understanding of SIEM, EDR, and security technologies (e.g., LogRhythm, ArcSight,
Crowdstrike Falcon)
 Exceptional leadership and team management skills (coaching, performance
management)
 Strong communication, collaboration, and problem-solving abilities
 Analytical and critical thinking expertise
 Thrives in fast-paced, high-pressure environments

Technical Skills:
ENTERPRISE SECURITY TOOLS:
 LogRhythm,ArcSight, Splunk, NetWitness, Encase, FTK, Nessus, eEye, McAfee ePO, McAfee
FoundStone IDS, McAfee HIPS (Entercept), McAfee IntruShield , McAfee Network Security
Manager system ,NitroView ESM, NitroView ELM, NitroView ADM, NitroView DBM and
NitroGuard IPS, SNORT, Cisco ASA, SourceFire, SunFire ,Cisco Security Manager, MS TMG
Forefront/ ISA Server, Checkpoint NG, Fortinet fortigate, Sonicwall, Juniper Netscreen,
Backtrack, Ecora Enterprise, Retina,, nMap, ISS Scanner, AppDetective, LANalyzer, SAINT,
kismet, GFI LanGuard, Paros Proxy, Dsniff etc.
ANTIVIRUS:

 Macafee,Sophos, Symantec Norton Anti Virus, Trend Micro (Office Scan, Scan Mail
and Portal Protect)
 AVG, Avast, Panda Software etc.
LOAD BALANCER:
 Cisco, Barracuda, Citrix, Radware,F5
DRP/BCP/BACKUP/HA TOOLS:

PlateSpin Forge, Symantec VERITAS Netbackup/Symantec VERITAS Backup


Executive, Acronis, Doubletake,VMWare,
NETWORK MONITORING & MANAGEMENT:

 HP OpenView, Cisco works, Cisco QPM, CISCO NAM, Dell OpenManage, Solarwinds,
OP Manager, GFI LAN Guard, NETPRO Change Auditor
OPERATING SYSTEM:
 Windows NT/2K/2k3, Sun Solaris, Red Hat Linux.

Leadership Career History:


SOC Manager | Technavious Pvt Ltd | EMEA, 2021-2023

 Led a 12-person SOC team to 95% satisfaction, fostering a


collaborative and high-performing environment.
 Slashed MTTR by 20% through strategic SOAR implementation, saving
the company an estimated $1 million annually.
 Boosted threat detection by 15% with proactive hunting, neutralizing
50 critical threats before escalation.
 Developed and implemented CISM- and CISA-aligned incident
response procedures, reducing security incident impact by 30%.
 Spearheaded a seamless cloud-based security platform migration,
ensuring 99% uptime and minimal disruption.
 Increased team knowledge by 25% through targeted training
programs, demonstrably enhancing security posture.
 Generated compelling security reports, driving informed decision-
making and strengthening executive buy-in.
 Collaborated with IT and security teams to migrate to a new cloud-based
security platform, ensuring a seamless transition with 99% uptime.
 Conducted regular training programs for the SOC team, increasing team
knowledge by 25% as measured by internal assessments.
 Generated comprehensive reports on security incidents, trends, and the
overall effectiveness of security measures.

Enterprise Infrastructure Architect (SOC/SIEM Expert)


Ali Bin Ali Technology LLC, JAN 2018 –DEC 2020 Qatar

 Partnered with Fortune 500 clients across various industries to assess their SOC maturity,
identify gaps, and recommend improvements.
 Led the design and implementation of new SOCs, migrating clients to cloud-based security
solutions.
 Optimized existing SOCs by integrating new tools, automating workflows, and streamlining
processes.
 Conducted comprehensive threat hunting exercises, uncovering and neutralizing potential
breaches.
 Developed and delivered customized training programs for security analysts and incident
responders.
 Presented security findings and recommendations to senior management, garnering
executive buy-in.
 Quantifiable Achievements:
o Reduced client's MTTR (Mean Time to Resolution) by 25% by implementing a new
SOAR platform.
o Increased client's threat detection rate by 10% through proactive threat hunting
initiatives.

 Improved client's security posture by achieving a 30% increase in CIS Controls compliance.
 Formulated and configured Logger appliances and analyzed system anomalies.
 Designed and developed LogRhythm, Splunk/ArcSight architecture components and related
upgrades.
 Prepared system plans and executed LogRhythm, QRadar, Splunk /ArcSight architecture
modifications.
 Managed, upgraded and maintained operational data flows and QRadar, LogRhythm,
Splunk /ArcSight platforms.
 Maintained and modified hardware and software components, content and documentation.
 Created and documented reports, rules, trends and Dashboard.
 Analyzed Splunk /ArcSight and related tools and resolved IT security failures.
 Provided guidance for equipment checks and supported processing of security requests.

SOC Manager/SIEM Consultant MAY2010 – JAN


Indian Consultancy Services LTD 2018
Kingdom of
Saudi Arabia

 Managed a team of security analysts and incident responders, ensuring 24/7/365 security
monitoring and response.
 Developed and implemented incident response procedures aligning with industry best
practices.
 Monitored security alerts and events, identifying and mitigating potential threats.
 Maintained security tools and technologies within the SOC environment.
 Collaborated with other IT and security teams to enhance overall security posture.
 Quantifiable Achievements:
o Reduced security incidents by 20% through improved detection and response
processes.
o Implemented a new SIEM system, leading to a 15% increase in log coverage.
o Achieved a 98% security team satisfaction rating through effective leadership and
communication.

 Implemented and managed ArcSight ESM and Connectors at multiple locations.


 Prepared and customized report templates and reviewed dynamic content.
 Created notification templates and reported as per specific event attributes.
 Provided support to content development tasks and analyzed Arc Sight data sources.
 Designed and developed filter and evaluated significant events.
 Formulated security content data such as filters, reports, signature and mapping.
 Executed database tuning and troubleshooting processes and updated configuration files.
 Documented and reviewed new report templates, functional reports and system
configurations.

Sr. Solutions Architect-(DC, MS, Information Security),


SEPT 2008-APR 2010 BHARTI AIRTEL LTD.

 Define global information risk solutions and security, create information security
management systems.
 Manage consultant teams and engineering security.
 Lead Security Architect for Compliance projects and Major IT Governance Risk.
 Organization of programs for ISO 27001.
 Consulting in the areas of out sourcing (Managed/Shared Services, Managed security and
BCP/DRP).
 Leading the customer engagement for Data centre capacity planning, architecture,
implementation, optimization, virtualization, migration and Consolidation.
 Network, Storage and Server consolidation feasibility study, application suitability
assessment, planning and implementation.
 Infrastructure and application architecture assessment, design and implementation for high
availability, scalability, performance and security.

Sr.IT Consultant (Information Security & DRP), MAY 2006-AUG 2008

MHD LLC, Oman.

 Planning, designing and implementation of secure, reliable, scalable and efficient IT


infrastructure.
 Infrastructure and application architecture assessment, design and implementation for high
availability, scalability, performance and security.
 Network, Storage and Server consolidation feasibility study, application suitability
assessment, planning and implementation.
 Building Partnership with Vendors & Industry Leaders to supply highest quality solutions.
 Providing the best-fit (built to suit) DC& DR solution that is aligned with the current and
future needs of the Company at affordable price.
 Data center capacity planning, architecture, implementation, Consolidation, optimization
Virtualization and migration.
 Data center setup and Operational Capabilities Assessment.
 Costing all phases of projects and Preparing BOM/BOQ
 Conducting training for Presales and Sales team on DRP and other critical challenges of
enterprise customers.
Subject Matter Expert (Network & security), DEC 2003- APR 2006
Lucent Technologies, Brunei Darussalam.
• Managed network security operations team.
• Prepared information security evaluation for new projects.
• Project improvement documentation, delivered process documentation.
• Information Security Operations liaison for IT initiatives.

IT Executive, SEPT 2000-NOV 2003

SKJ Group, Brunei Darussalam.


• Business continuity Planning& deployment.
• Trained and mentored employees in many job descriptions regarding security and system
basics, best practices, etc.
• Managed and organized backup infrastructure.
• Designed and implement network monitoring system.
• Cisco network management (routers, switches, firewalls).
• Systems Architect for security project.
Systems& Network Engineer
Net-Tech Solutions AUG1996-AUG2000
• Troubleshooting Hardware/Software& networking Issues.
• Installing, configuring, testing, upgrading and administering Servers.
• Build Servers and Workstations including complete machines from empty boxes
• Used experience in company to focus on securing information and systems.
• Documented exiting and in-development policies, procedures, and systems.

Educational Background
 Master of Science (Information Technology)
 Bachelor of Science (Information Technology)
 Higher National Diploma in Database Application Development
 MBA level Studies in Risk Management from university of oxford.
 MBA level Studies in Strategic Management from Indian Institute of
Management- Bangalore.
 MBA level Studies in Performance Management from Performance-
Soft, Singapore.

Professional Certification
 Certified Information System Auditor(CISA)

 Certified Ethical Hacker(CEH)

 Certified Computer Hacking Forensic Investigator (CHFI)

 Certified Information System Security Manager (CISM)

 TOGAF Certified Enterprise Architect.

 Information Technology Infrastructure Library (ITIL).


 Cisco Certified Internetwork Expert (CCIE)

 Cisco Certified Network Professional (CCNP)

 Sun Solaris System Administration 8(I & II)

 Microsoft Certified System Engineer (MCSE 2000)

 Training in Project Management Professional (PMP).

 ISO 9000:2000 Certified Internal Quality Auditor

You might also like