Summary

Overview

Work History

Education

Skills

Accomplishments

Certification

Timeline

Languages

ABHISHEK BEKWADKAR

Cyber Security Engineer

Tokyo, Japan

Summary

Cyber Security Engineer with 6.8+ years of experience specializing in Cortex XSOAR, SIEM tools, Threat Analysis, Vulnerability Assessment, Endpoint Security, and Automation. Skilled in developing automated workflows, playbooks, and integrations using XSOAR and Microsoft Sentinel. Experienced in server administration, log enrichment, IDS improvement, and scripting with Python. Adept at enhancing SOC processes, mentoring team members, and driving process improvements. Motivated to continuously learn and contribute to organizational success.

Overview

2025

years of professional experience

Certificates

Language

Work History

Information Security Engineer

Rakuten Group Inc.

12.2024 - Current

Designed, developed, and optimized automated playbooks in Cortex XSOAR to streamline incident response processes and improve efficiency.
Integrated XSOAR with various security tools (SIEM, EDR, JIRA, threat intelligence platforms, etc.) to enable seamless data sharing and automated workflows.
Developed custom integrations, APIs, and Python-based scripts for Cortex XSOAR to connect with third-party tools and ingest threat intelligence feeds, enhancing detection and response capabilities.
Proficient in managing and configuring Microsoft Sentinel, including writing KQL queries, creating custom dashboards, and automating incident response workflows with Logic Apps.
Created and implemented use cases in Microsoft Sentinel to enhance threat detection and monitoring in production environments.
Administered and maintained Logstash servers, production servers, and XSOAR servers to ensure seamless operations and optimal performance.
Managed Azure resources such as Sentinel blob storage and virtual machines (VMs) to enhance security and efficiency.
Utilized Domo API to push data from Microsoft Sentinel and JIRA into Domo, creating management dashboards for effective visualization
Applied leading theories and concepts to development, maintenance and implementation of information security standards, procedures and guidelines.
Collaborated with cross-functional teams to align security protocols with business objectives.

CYBER SECURITY ANALYST - III

RAKUTEN

8 2021 - 11.2024

Working on SIEM tool, EDR & Email Phishing Analysis
Working on Security Risks as per OWASP TOP 10 and conduct Threat analysis for latest threats based on MITRE ATT&CK framework.
XSOAR Instance integration & creation of playbooks.
Assist with development of processes and procedures to improve incident response times, analysis of incidents, usecase creation and overall SOC functions.
Good Exposure on EDR tool to investigate the infected endpoint. Deep Analysis of the event logs in EDR using Splunk.
Automation using Python & Bash script to reduce the repeated tasks.
Working in development of playbooks on SIEM & SOAR to automate the workflows.
Working on logstash configuration in further enrichment of logs & also working on IDS improvement.
Working with IT and Business Departments to identify gaps in procedures. Also few other management tasks like working on quality checks of the team & preparing the performance report, handling the monthly reports, taking interviews, process improvement planning with stakeholders, mentored new associates on process and procedures, etc

CYBER SECURITY ANALYST

HAPPIEST MINDS BANGALORE

12.2019 - 08.2021

Worked as SOC Analyst with multiple customers aligned, using multiple SIEM & other SOC tools like EDR, Endpoint Security, WAF & Email Security.
Monitor and investigate Security incidents.
Worked on POC for EDR, right from installation of collectors on endpoints, to Administration. Also handled events/threats in EDR. Created multiple VMs using AWS, launched various malware's on VM to test the EDR tool.
Worked on CDN to understand the traffic from various regions and taking necessary actions.
Collaborating with IT and Business Departments to identify gaps in procedures. Recommend improvements in security systems and procedures.

PYTHON DEVELOPER

TATA CONSULTANCY SERVICES

01.2019 - 11.2019

Worked on Python Framework development for Automotive Domain.

JUNIOR DESIGN SOFTWARE ENGINEER

CARDIAC DESIGN LABS

07.2018 - 11.2018

Web development using AngularJS, NodeJS, and MySQL
Algorithm building using Python.

Education

Bachelor of Engineering - COMPUTER SCIENCE & ENGINEERING

VTU University (College - KLE DR. MSS CET)

Belgaum, Karnataka, India

04.2001 -

Skills

SOAR Platforms: Cortex XSOAR (Playbook Development, Integration, Custom APIs, Automation)

SIEM Tools: Microsoft Sentinel (KQL Queries, Use Case Creation, Dashboards, Logic Apps)

Endpoint Security: CrowdStrike, EDR (Endpoint Detection and Response)

Threat Intelligence: MITRE ATT&CK Framework, Threat Analysis, OWASP Top 10

Log Management: Logstash (Configuration, Enrichment), IDS Improvement

Email Security: Phishing Analysis, Email Threat Detection and Response

Azure Resource Management: Blob Storage, Virtual Machines (VMs)

Server Administration: XSOAR Servers, Logstash Servers, Production Servers