Summary
Overview
Work History
Education
Skills
Certification
Languages
Timeline
Extra-Curricular Activities
Bio Data
Productivity Tools
Disclaimer
Generic

Kural Mani E

Manama

Summary

Quest to work in an atmosphere that enables me to widen the spectrum of my knowledge. Learning & acquiring new techniques/methods in the industry, while sharpening the inherent skills on a regular basis.

  • 10 years of Experience in Cyber Security focusing on Security Monitoring (SIEM), Vulnerability Management, Application Security, Risk & Compliance. Currently engaged on Implementation project with Government of Bahrain.
  • Led the deployment and integration of DEVO SIEM components, ensuring seamless collection and analysis of log data from diverse sources.
  • Managed and guided the implementation of log source integrations into DEVO, optimizing data ingestion pipelines for real-time security monitoring.
  • Developed and customized content for DEVO, including creation of tailored alert configurations, real-time event correlation, and automated incident response triggers.
  • Designed and implemented custom dashboards in DEVO for enhanced visibility, enabling proactive threat detection and quicker response times.
  • Collaborated with cross-functional teams to ensure alignment with security requirements and streamline data flows across different systems.
  • Provided leadership and mentorship to the team throughout deployment phases, ensuring timely and accurate delivery of SIEM solutions.
  • Monitored and fine-tuned DEVO’s performance, making adjustments based on emerging threats and evolving security needs.
  • Managed team of 7+ members within Vulnerability Management as well as SOC environment for Oil & Gas client in UAE
  • Professionally trained on AWS Solution Architect Associate.
  • Professionally certified on Splunk power user and trained on Splunk admin.
  • Experience of working as a Consultant for Client with respect to SIEM, Vulnerability Management, handled Proposal for New CR and POC’s.
  • Experience working in Defense, Banking and Financial, Energy, HealthCare, Oil & Natural Gas and Engineering domain.
  • Experience of working under MSS for multiple clients simultaneously as well as service delivery SPOC for individual client.
  • Excellent communication and presentation skills & ability to work independently or as a part of a team.
  • Experience of being a Subject Matter Expert (SME) for the team with multiple domains like Access control, Investigation, Application Security, Security Architecture.
  • Developed and maintained professional relations with service providers, Vendors, Stake holders and Client. Handled client escalations and worked on RCA.
  • Worked on process improvement, SOP creation. Preparing Daily/ Weekly/Monthly reports on the analysis /incidents/ and on monthly data required for Clients.

Overview

11
11
years of professional experience
1
1
Certification

Work History

Subject Matter Expert (Cyber Security Engineering)

Computer World (Devo Inc.)
09.2024 - Current
  • Leading SIEM and security analytics capabilities using Devo platform for enterprise clients.
  • Advising on end-to-end integration of cloud-native security monitoring and log management solutions.
  • Designing and implementing advanced detection use cases, custom threat models, and SOC workflow optimization.
  • Providing in-depth expertise during major incident investigations and post-incident reviews.
  • Training and mentoring client teams on security best practices and Devo platform administration.

Sr. Cyber Security Consultant

KPMG
12.2021 - 07.2024
  • Responsibility to manage End to End Vulnerability Management Workflows.
  • Scanning & Identifying vulnerabilities associated with digital IT assets connected to the network.
  • Assisting with prioritizing & remediation of identified vulnerabilities utilizing operational best practice along with business contextualization.
  • Performed assessments of security controls using NIST special publication 800-53A Rev4, identify weaknesses and track remediation activities in plan of action & milestone.
  • Determine the risk levels of information system and categorize according to the sensitivity and importance of the information contained in these systems.
  • Configuring log generation and collection from a wide variety of products distributed across categories of servers, network devices, security devices, databases, and apps.
  • Categorize the messages generated by security and networking devices into the multi-dimensional ArcSight normalization schema.
  • Investigate and identify events, qualify potential security breaches, raise security incident alerts, and perform technical & management escalation.
  • Recommended security strategies based on real time threats.
  • Installation of Connectors and Integration of multi-platform devices with ArcSight ESM, Develop Flex Connectors for the ArcSight Unsupported devices / Custom Apps.
  • Develop content for ArcSight like correlation rules, dashboards, reports and filters, Active lists and Session lists.
  • Creating alerts and reports as per business requirements and Threat modelling with specific security control requirements.
  • ArcSight asset modelling implementation, it is used to populate asset properties in Correlation rules and reports.
  • Collection of Evergreen data for multiple applications from the business and used in correlation Rules for monitoring and alerting and reporting.
  • On-boarded 1500+ devices (Windows, Linux, IIS, DNS, DHCP, NPS, Main frame, firewall, VPN, bluecoat proxies) to ArcSight ESM for monitoring.
  • Troubleshooting the issues which are related to ArcSight ESM, logger, DB and Conapps performances.

Sr. Security Analyst

Accenture Solution
11.2016 - 11.2021
  • Segregating and correlating the logs and configuring active channel, queries, reports, filters, dashboards, and real-time alerts using SIEM tools (ArcSight & Splunk).
  • Malware analysis determining the root cause of the alert and execute mitigation plan.
  • Analysis of reported suspicious/spam emails and take prevention action.
  • Handled all end users reported Incidents and Change management tickets with respect to Network Security within the agreed SLA.
  • Performing daily health checks, creating documents for technical reference, creating reports for hours, daily and weekly, monthly.
  • Handling various technical aspects like project documentation, report preparation and reviewing the documents. Meeting the SLA and timeframe.
  • Tracing, reporting and escalating malicious activity such as policy violations, Worm Out breaks from end-to end.
  • Monitoring security devices like firewall and provide L1 support for the clients.

SSR4A

Unisys Global Service
03.2015 - 10.2016

Technical Engineer

IBM India Pvt Ltd
08.2014 - 03.2015

Education

Bachelor of Engineering - Information Science & Engineering

Visvesvaraya Technological University
Bangalore, KA
01.2014

Skills

  • Security Monitoring
  • Vulnerability Management
  • Network Monitoring
  • Devo SIEM
  • Tenable
  • Nessus
  • Fortify
  • Code DX
  • Prisma Cloud
  • Black Duck
  • Securonix
  • ArcSight
  • Splunk
  • Solar Winds
  • Palo Alto
  • Qualys guard
  • ITSM Remedy version 76 and 81
  • Service Now
  • Symantec DLP
  • McAfee NSM

Certification

  • CISSP Trained
  • Splunk Certified Power User
  • AWS Solution Architect Associate
  • ITIL V3 Foundation
  • CEH (Certified Ethical Hacking)
  • Qualys Guard Vulnerability Management
  • CompTIA Security+ Trained
  • Securonix SNYPR Security Analyst

Languages

Tamil
Kannada
English

Timeline

Subject Matter Expert (Cyber Security Engineering)

Computer World (Devo Inc.)
09.2024 - Current

Sr. Cyber Security Consultant

KPMG
12.2021 - 07.2024

Sr. Security Analyst

Accenture Solution
11.2016 - 11.2021

SSR4A

Unisys Global Service
03.2015 - 10.2016

Technical Engineer

IBM India Pvt Ltd
08.2014 - 03.2015

Bachelor of Engineering - Information Science & Engineering

Visvesvaraya Technological University

Extra-Curricular Activities

Represented the state at the national throw ball meet in 2010 Represented the Zonal team at the state level cricket tournament.

Bio Data

  • Father's Name: Ekambaram.S
  • Visa Status: Bahrain Resident Visa
  • Date of Birth: 11th August 1992
  • Nationality: INDIAN
  • Residence Permit: Bahrain Resident Visa

Productivity Tools

  • Devo
  • Tenable
  • Nessus
  • Fortify
  • Code DX
  • Prisma Cloud
  • Black Duck
  • Securonix
  • ArcSight
  • Splunk
  • Solar Winds
  • Palo Alto
  • Qualys guard
  • ITSM Remedy version 7.6 and 8.1
  • Service Now
  • Symantec DLP
  • McAfee NSM

Disclaimer

I hereby declare that the above-mentioned information is correct up to my knowledge and I bear the responsibility for the correctness of the above-mentioned.

Similar Profiles

CREATE PROFILE
Kural Mani E