MEGHANA PATEL JAYAPRAKASH

• Client-Centric Threat Monitoring: Own end-to-end monitoring for multiple clients, tailoring detection logic and alert triage strategies based on their unique risk profiles and business operations.
• Security Intelligence Integration: Regularly feed threat intel sources (e.g., MITRE ATT&CK, open-source feeds, vendor advisories) into detection pipelines to refine proactive threat identification.
• Behavioral Analytics & Baseline Drift Analysis: Leverage endpoint and network behavior patterns to spot slow-burning threats and insider activity. Adapt detection thresholds to account for user or system drift.
• Custom Rule Engineering: Design and tune SIEM rules and correlation logic to minimize false positives while ensuring high-fidelity alerting across client environments.
• Playbook Development & Automation: Build and refine incident response playbooks customized to client infrastructure. Collaborate with SOAR engineers to automate repetitive containment tasks.
• Multi-Tenant SOC Oversight: Juggle responsibilities across client environments without cross-contamination, maintaining clear segmentation of workflows, assets, and data handling.
• Compliance Alignment: Ensure detection and response activities meet regulatory and industry standards (ISO 27001, NIST, CIS, etc.) and prepare audit-friendly evidence on control effectiveness.
• Adversary Emulation & Purple Teaming: Partner with red teams or simulate adversary behaviors to test SOC detection depth and resilience. Use findings to drive threat detection maturity.
• Advanced Threat Campaign Identification: Link disparate incidents into broader campaigns using TTP mapping and threat intelligence pivoting—turn one alert into full-blown threat attribution.
• Digital Forensics & Timeline Reconstruction: Develop rich timelines for incidents using endpoint telemetry and log analysis. Validate root cause and lateral movement with confidence.
• Security Briefings for Clients: Deliver contextual incident walkthrough, threat landscape updates, and prioritized remediation recommendations in client-friendly language.
• Bridging the Gap with IT & DevOps: Advise infrastructure and development teams on secure configurations and response readiness. Translate detection gaps into actionable engineering changes.
• Continuous Uplift Initiatives: Lead retrospectives post-incident to refine playbooks, reduce dwell time, and elevate overall SOC agility

• Execute daily checklist activities for Security operations, encompassing both proactive and reactive incident management, remediation tasks using Rapid 7
• Conduct vulnerability scans and aid in the identification of exploits, vulnerabilities, and potential threats using offensive security techniques.
• Create comprehensive documentation of controls and propose actionable recommendations to continuously enhance the organization's overall security posture.
• Oversee the infrastructure to detect security breaches and conduct investigations into incidents using EDR tools such as Crowdstrike and Withsecure.
• Conduct threat hunting for potential threat actors or malicious threats on the network and infrastructure
• Perform risk analysis to identify vulnerabilities and countermeasures to remedy the detected vulnerabilities, and recommend solutions and best practices.
• Provide weekly reports to key stakeholders on current SLA's including vulnerability, patch and incident reports.
• Found and prevented string of phishing emails identified through high risk users , Threat hunting and through proactive method of user reporting
• Involved in developing and executing Change Management process by obtaining necessary approvals. for introducing changes within IT infrastructure

• Assisted multiple users over phone call , email, and chat and via ticketing tool system.
• Created user accounts on Active Directory and Citrix account for new users User account , user groups and Distribution List creation and adding users
• Performed Password reset and account unlocks for customer
• Took Responsible for PC's, Printers, Servers, and related equipment.
• Performed Network drive mapping and providing access to network folder Maintain user PCs, including upgrades and configuration as needed.
• Assist with on boarding of new users and off boarding
• Streamlined IT processes with implementation of automation tools, improving overall efficiency.
• Collaborated with cross-functional teams to successfully complete complex projects on time and within budget constraints.
• · Reduced average call time and number of tickets in queue to well under expected numbers

• Evaluated latest technology innovations and adopted cost-effective, useful solutions.
• Managed onboarding and offboarding of employees.
• Kept software licenses current for computers and mobile devices.
• Oversaw IT activities to maintain operations by maintaining laptops, tablets and PDAs for 350 users.
• Provisioned new software and hardware for use according to internal business and security policies

• Built, released, and managed ,configured all production systems.
• Created VPC's and to performed health checks on all VPC's and to run error checks using DataDog Educated teams on implementation of new cloud technologies and initiatives
• Ensured efficient functioning of data storage and processing functions in accordance with company security policies and best practices in cloud security
• identified, analysed, and resolved infrastructure vulnerabilities and application deployment issues
• Interacted with clients, providing cloud support, and made recommendations based on client needs.
• Performed duties in accordance with applicable standards, policies and regulatory guidelines to promote safe working environment.
• Used critical thinking to break down problems, evaluate solutions and make decisions.

• Resolved any technical issues experienced by client, including raised IT requests Skilled experience on ticketing tools such as manage Engine and service now.
• Facilitated user training on basics of Windows 10 and VDI using Citrix.
• Developed extended knowledge of software and hardware used in installation, configuration, and troubleshooting system set-ups.
• Active Directory, CPU, Memory and Disk I/O Installed and configured all Microsoft software for users Managed all customer enquiries and further educated them on the available IT system and tool as required.
• Analyzed, troubleshot and diagnosed problems and provided prompt repair and solutions.
• Collaborated with supervisors to escalate and address customer inquiries or technical issues