Jones Qadir

• Malware Analysis, Forensic Analysis & Incident Response: Conducted malware analysis and led incident response for escalated incidents from L1/L2 SOC analysts. Performed forensic analysis of incidents and created reports for the CISO. Tasked with creating use cases.

• SOC Coordination: Managed and coordinated SOC service providers and served as the primary point of contact for internal stakeholders.

• Security Architecture Consulting: Provided consultation and prepared documentation to improve security architecture and overall security.

• Incident Analysis in Microsoft Stack etc.: Expertise in analyzing security incidents from various channels across the entire Microsoft stack (M365, Sentinel, Azure, Intune), Fortinet products, and Elasticsearch. Performed forensic analysis and generated reports.

• Endpoint Security & Incident Response: Utilized TrendVisionOne (TrendMicro XDR), Defender for Endpoint, and Bitdefender with advanced incident response capabilities.

• Security Administration: Served as Azure Security Administrator and M365 Security Administrator, as well as for Trendmicro, Bitdefender, and Elasticsearch.

• L3 Security Engineering Support: Handled complex security incidents and/or service requests via Jira.

• Management and technical implementation of rollout projects

• On-site support

• Outlook mailbox setup

• Installation and updates of personalized software

• Introduction to Windows 10

• Creation and responsibility for the blueprint of the Microsoft Defender Suite and Microsoft Sentinel:

Developed and implemented a comprehensive security architecture to standardize and optimize security solutions for client environments.

• L2/L3 Analyst – Incident Handling:

Handled incidents from various clients. Served as a point of contact for L2 and L1 analysts on more complex incidents.

• Analysis and Optimization of Client Environments: Conducted detailed security analyses within clients' Microsoft security products, identified vulnerabilities, and developed and implemented targeted improvement suggestions.

• Consulting on Optimization of Microsoft Security Suite and Sentinel: Provided strategic advice to team leadership and clients on the further development and improvement of Microsoft Defender, Sentinel, and other security solutions.

• Development and Customization of Intune Policies: Created and optimized device configuration and security policies to enhance device management and compliance.

• Creation and Preparation of Conditional Access Rules: Designed and implemented access control policies to strengthen access security to corporate resources.

• Support in Incident Analysis: Temporarily took over incident analysis for rapid response.