Raghav Gupta

Worked in a 24/7 Security Operations Center (SOC) environment under a rotational shift model, supporting continuous security monitoring, incident detection, and operational response across enterprise environments. Leveraged multiple SIEM and security platforms to perform real-time threat analysis, incident handling, and escalation in coordination with senior analysts and vendor teams. Key Contributions:- • Monitored and analyzed security events using SIEM tools including Rapid7 and Microsoft Sentinel to detect anomalies and potential threats • Performed alert triage, incident validation, and escalation based on severity and impact • Investigated incidents through log analysis and correlation across multiple sources • Created and managed incident tickets in ServiceDesk, ensuring proper tracking and timely closure • Worked on ManageEngine security solutions for monitoring, alerting, and incident handling • Supported SIEM rule tuning, use-case optimization, and configuration tasks • Coordinated with vendor and product support teams for incident resolution and troubleshooting • Assisted in vulnerability assessment and basic security operations across firewall and endpoint environments • Maintained incident documentation, reports, and adherence to SOC processes/SOPs.

Selected under a Fixed-Term Hire (FTH) engagement to support large-scale data breach assessment projects for US and UK clients operating within highly regulated environments. Contributed to breach investigation workflows involving sensitive data classification, regulatory compliance analysis, and incident reporting. Key Contributions:- • Conducted large-scale dataset analysis to identify and classify sensitive information including PII, PHI, and PCI, supporting breach notification and regulatory compliance processes. • Performed structured data breach analysis and exposure validation, helping legal and compliance teams assess the scope and impact of security incidents. • Collaborated with privacy, legal, and regulatory stakeholders to ensure data review accuracy and confidentiality alignment with ISO 27001 security standards. • Contributed to breach investigation reports used in client-facing risk communication and regulatory response workflows. • Maintained high-quality analytical output while working within time-sensitive incident response environments involving high-volume datasets.

Worked within a Security Operations Center environment responsible for continuous monitoring of enterprise infrastructure and investigation of security alerts across network and endpoint environments. Key Contributions:- • Monitored real-time security events and network activity through SIEM dashboards to detect anomalies and potential cyber threats. • Investigated security alerts and suspicious activity, documenting findings and maintaining incident tracking throughout the investigation lifecycle. • Supported containment and remediation actions by collaborating with senior SOC analysts and infrastructure teams during active incidents. • Prepared security incident summaries and trend reports for operational review and risk visibility. • Developed hands-on experience with FortiSIEM dashboards and SOC investigation workflows, improving understanding of threat detection and response processes.

Provided enterprise technical support for RFID, barcode, and biometric technologies, helping organizations deploy and maintain operational systems used in logistics, authentication, and asset tracking environments. Key Contributions • Delivered technical support for enterprise hardware including RFID devices, barcode scanners, and biometric authentication systems. • Assisted clients with system integration, deployment, and configuration, ensuring seamless adoption across operational environments. • Diagnosed and resolved technical issues affecting device functionality and system performance, minimizing operational downtime. • Coordinated with internal engineering and support teams to provide effective troubleshooting and technical resolution. • Maintained detailed service records and technical documentation to support product improvement and operational reliability.

Supported enterprise IT operations and infrastructure monitoring while assisting with system troubleshooting and security-related operational tasks. Key Contributions • Assisted in monitoring IT infrastructure and resolving technical incidents reported through Zoho ticketing systems. • Supported troubleshooting of network and system issues including dialer systems used in operational communication platforms. • Participated in monitoring security-related system activity and improving operational documentation for infrastructure support. • Contributed to improving internal processes related to incident handling and infrastructure monitoring.

Supported enterprise endpoint and server security operations across distributed infrastructure environments. Key Contributions • Assisted in threat monitoring and detection using Cortex XDR and CrowdStrike Falcon endpoint security platforms. • Supported identity and access management operations using Okta IAM, helping maintain secure authentication workflows. • Monitored endpoints and system health while assisting with backup and data protection operations using Druva. • Contributed to server monitoring, patch management coordination, and infrastructure health checks. • Assisted with incident response procedures and security event tracking across enterprise environments.