An expert information security professional with expereicne of cyber investigation and Incident Response experience involving imaging, forensic analysis (Win / Mac / Linux), data recovery, carving, threat hunting and password cracking activities, looking for challenging opportunities in the field of digital forensics, malware analysis and cyber investigations.
Experienced in handling incidents involving various malware like ransomware (CryptXXX, CryptoLocker, Locky, GameOverZeus), adware, acceptable policy violations, intellectual property theft, copyright violations, code of ethics violation etc.
Vast experience in handling mobile devices (Android / Windows / iOS / Symbian etc) under numerous incidents and generating actionable intelligence from devices for use in field.
Highly skilled and expert in manually decoding data from mobile device’s internal file system.
Gap Analysis for APT campaigns
Worked on multiple recently discovered vulnerabilities with recommendations to avoid the damage.
Revised and maintaining the procedures for Threat Handling, Incident Handling, and Forensics.
Handling multiple high-profile incidents related to spearphishing, web application attacks, ransomware
Perform static dynamic analysis of malwares found during IR.
Provide detailed forensic investigation report on incidents Identify, collect and seize documentary or physical evidence, to include digital media and logs associated with cyber intrusion, incidents, investigations, and operations.
Identify and / or determine whether a security incident is indicative of a violation of law that requires specific legal action.
Coordinate with the external IR team if incidents require deep forensic investigation
Time Line Analysis
Certifications (nice to have)
EnCE (EnCase Certified Examiner)
SANS GCFE (GIAC Certified Forensic Examiner)