OPERATION LOGS

SUBJECT: RAGHAV GUPTA // EXPLOIT_REGISTRY // EYES_ONLY

TOP SECRET

ARCHIVE_DELTA_9

ID: OP-PARA-001

PARAMARSH INFORMATICS PVT. LTD.

SOC Analyst L1 | Gurugram – Remote

Jan 2026 – PresentPRODUCTION[ACTIVE]

•24×7 rotational shift SOC: continuous network monitoring, real-time threat detection and complete incident handling aligned with NIST procedures.
•Triage and investigate 15-20 security alerts daily across Microsoft Sentinel and Rapid7 InsightIDR, separating ~10 false positives/day from confirmed threats.
•Full incident lifecycle via ServiceDesk: ticket opening, playbook execution, IOC enrichment, L2 escalation and SOP-compliant closure within SLA.
•ManageEngine for security monitoring; vulnerability assessment; firewall and endpoint ops; vendor coordination during complex incidents.

ID: OP-ULEX-002

UNITEDLEX

Associate – Incident Response (Contract) | Gurugram

Oct 2025 – Nov 2025CONFIDENTIAL[COMPLETED]

•Short-term contract: large-scale data breach investigations for US and UK clients in regulated industries.
•Structured PII/PHI/PCI data classification across high-volume datasets to identify and document exposure for breach notification workflows.
•Produced ISO 27001-aligned breach response documentation enabling legal teams to assess risk scope and prepare client-facing communications.

ID: OP-OGMA-003

OGMA CONSULTING PVT. LTD.

SOC Analyst L1 | New Delhi

Jun 2025 – Sep 2025RESTRICTED[COMPLETED]

•First dedicated SOC analyst role. FortiSIEM-based 24×7 SOC monitoring network traffic, device events and authentication activity.
•Triaged 50+ weekly security alerts against MITRE ATT&CK TTPs, maintained zero false-negative escalation rate throughout engagement.
•End-to-end alert investigation: log source correlation, IOC enrichment & pivoting, root cause analysis, formal incident reports.

ID: OP-NYKAA-004

NYKAA

Server & Endpoint Security Support | Gurugram

Jan 2024 – Jun 2024INTERNAL[COMPLETED]

•Monitored enterprise alerts using CrowdStrike Falcon and Palo Alto Cortex XDR; extracted and validated IOCs; coordinated containment.
•Okta IAM: employee provisioning/deprovisioning, MFA configuration, periodic access reviews to enforce least privilege.
•ManageEngine patch deployment across server estate; Druva backup and recovery operations for business continuity.

VERIFIED CLEARANCE — CERTIFICATION DATABASE

GROUP: SECURITY OPERATIONS & SIEM

CERT-001

Certified Ethical Hacker (CEH)

EC-Council · Jul 2023

CERT-002

IBM Cybersecurity Analyst Professional Certificate

IBM / Coursera · Sep 2023

CERT-003

Mastering Cyber Threat Intelligence for SOC Analysts

SOCRadar · Jul 2025

CERT-004

Proofpoint Certified AI Data Security Specialist

Proofpoint · Jan 2026

GROUP: ENDPOINT, NETWORK & FIREWALL

CERT-005

Qualys Endpoint Detection & Response Specialist

Qualys · Sep 2024

CERT-006

Fortinet Certified Associate Cybersecurity (FCA)

Fortinet · Sep 2025

CERT-007

Foundation Level Threat Intelligence Analyst

AttackIQ · 2025

CERT-008

AttackIQ Certified

AttackIQ · 2025

GROUP: PRACTICAL & BLUE TEAM

CERT-009

Blue Team Junior Analyst (BTL1)

Security Blue Team · Aug 2025

CERT-010

Certified Network Security Practitioner (CNSP)

SecOps Group · May 2025

FIELD OPERATIONS & CTF RECORD

▶THM Delhi CTF — Learner of the CTF, The Hackers Meetup, New Delhi (Jun 2024)

▶Hack The Mountains 5.0 — 30-hour hybrid hackathon, Marwadi University, Rajkot (Sep 2024)

▶9× Forage job simulations: Cybersecurity Operations · Analyst · Consulting tracks

FILE: OPERATION_LOGS_v2026

SUBJECT: RAGHAV GUPTA // EYES ONLY