Summary
Overview
Work History
Education
Skills
Certification
Projects
Languages
Timeline
Generic

Aman Thakur

Shimla

Summary

Dynamic Senior Security Administrator with extensive experience at Coforge, excelling in incident response management, endpoint security, threat analysis and mitigation, and automation processes. Leading a team of more than 20 individuals in the organization's SOC to improve and maintain the security posture of the organization. Proven expertise in SOC operations, incident response, implementing EDR solutions, and enhancing security posture. Adept at leveraging Python, PowerShell, and Java for robust application development, while effectively communicating technical guidance across departments. Recognized for leading investigations and driving corrective actions.

Overview

6
6
years of professional experience
1
1
Certification

Work History

Senior Security Administrator

Coforge
New Dekhi
01.2025 - Current
  • Analyzed security bulletins, gathering information on software vulnerabilities and patches.
  • Prepared and presented reports on security status and incidents to senior management.
  • Evaluated daily activity, incidents and irregularities and recorded equipment and property damage, theft, and presence of unauthorized persons.
  • Performed bi-weekly payroll, set schedules, and dealt with rule infractions.
  • Led investigations into security breaches and implemented corrective actions to prevent future incidents.
  • Provided technical guidance on security issues to other departments within the organization.
  • Patrolled sites on foot and by vehicle to provide visible deterrence to criminals.
  • Directed the response to cyber security incidents, working closely with IT to mitigate risks.
  • Developing Python scripts for IOC verification and efficient data gathering from threat intelligence platforms.
  • Developing Python scripts for automatic case creation when an incident is observed.
  • Developing Python scripts for automatically notifying the concerned owners of the incident for immediate and effective action on the cases.
  • Developing Automated reminders and alerts on pending security incident cases
  • Pursuing CompTIA SecurityX (Formerly CASP+) certification which is expert-level cybersecurity certification for security architects and senior security engineers.

Security Administrator

Coforge
Delhi
02.2024 - Current
  • Enabling endpoint security for Central and State government of India under National Informatics Center (NIC) cyber security division
  • Managing and maintaining the security posture of endpoints, responsible for the implementation and management of the EDR solution, SentinelOne
  • Responsible for administration-related roles like segmentation and segregation of endpoints according to multiple indicators, such as endpoint location, security posture level, and security policy scope on EDR SentinelOne
  • Well versed in security policies administration, threat analysis, and mitigation on SentinelOne tool
  • Responsible for maintaining the security posture of endpoints through proactive threat analysis on the endpoint using the SentinelOne central console, taking appropriate mitigation measures such as killing, quarantining, remediating, rolling back, and marking the threat as benign
  • Applying host-based firewall rules and policies, as per the endpoint location and exposure, to mitigate vulnerabilities like lateral movement
  • Enabling device controls, like USB port blocking and Bluetooth blocking, to reduce the physical attack surfaces of the device
  • Performing SentinelOne security log analysis on the endpoint to find the root cause of a threat, and identifying threats that may not be detected.
  • Conducting Threat analysis on suspicious applications, files etc by investigating the processes, directories, and the behavior of the threat to appropriate mitigation perform action on the threat and thus reducing false positives.
  • Troubleshooting any device issues related to SentinelOne installation, connectivity, operational issues like application blocking/unblocking, hash analysis, etc.
  • Automation of SentinelOne REST APIs using Python as the programming language and using libraries like Pandas, Requests, Openpyxls, logging to perform daily console maintenance activities and threat management
  • Thus greatly improving efficiency and reducing manual efforts
  • Handling endpoint management using the KACE 1000 solution by Quest
  • Writing and deploying PowerShell scripts from KACE to perform tasks like software installation, uninstallation, system configuration retrieval, and modification to make endpoints compliant with the central policies.
  • Ensured Zero trust using Zscaler ZTA to ensure that the data is transmitted through secure channel across the orginazation.
  • Completed Zscaler Digital Transformation Administrator certificate issued by Zscaler indicating proficiency in implimenting and managing Zero Trust Architechure in the orginazation using ZTA.

Senior Software Engineer

LTI
PUNE
06.2019 - 01.2024
  • Experienced Software Engineer working in the insurance domain for Nordea Bank (LTI Client Project).
  • Perform incident detection, triage, and escalation, ensuring a timely response to high-priority incidents.
  • Provide reports on security incidents, including root cause analysis and remediation steps.
  • Work with other teams (IT, network security, etc.) to implement preventative measures and improve security posture.
  • Utilize threat intelligence tools to identify emerging threats and vulnerabilities.
  • Proficiently performed SAST on the in-house applications to ensure that the applications adhere to security compliance and standards.
  • Leveraged Python scripting using libraries like Requests, Pandas, BeautifulSoup, and Openpyxl to automate security scans on the applications for finding vulnerabilities.
  • Improved efficiency and workload management by automating repetitive tasks using Python scripts.
  • Developed and integrated RESTful microservices and microservice frameworks using technologies like Spring Boot, Kafka, JPA, and Hibernate.
  • Developed Kafka consumer pipelines for extracting, transforming, and loading streams of data from various Kafka topics and producers to client application databases and topics
  • Constructed schemas and structures on the IBM DB2 database for microservices, and queried data to be used in RESTful APIs using Spring Boot, JPA, and Hibernate.
  • Worked on the ELK (Elasticsearch, Logstash, and Kibana) stack and Kibana (Elasticsearch UI Dashboard) to configure Elasticsearch properties, create indexes, query indexes, and store data.
  • Developed microservices that uses the Elasticsearch Java implementation to index and retrieve medical data, such as medicine names and classifications, from Elasticsearch instances
  • Proficient in Elasticsearch queries to store and index data in Elasticsearch
  • Experience in managing configurations such as properties, security tokens, server URLs, and project configs, along with node and pod management of hosted applications using Kubernetes.
  • Configured servers and environments to create scheduled build and deployment jobs using Jenkins.
  • Contributed to creating automation frameworks for UI testing and REST API testing using technologies like Selenium and REST Assured.

Education

XII - PCM

St. Edward's School
Shimla, Himachal Pradesh, India
05.2019

Bachelor Of Technology - CSE With Specialization In Cyber Security And Forensics

University Of Petroleum And Energy Studies
Dehradun, India
05.2019

Skills

  • Web Application Security
  • Network Security
  • Java
  • Python
  • Powershell
  • Microservices
  • Threat Intelligence
  • Kafka
  • Elasticsearch
  • Infra Security
  • Rest API Development
  • Rest API Integration
  • Spring Boot
  • JSON
  • Splunk
  • ELK
  • Burp Suite
  • Metasploit
  • Postman
  • Kali Linux
  • AWS
  • NMap
  • Nessus
  • Security incident management
  • Threat analysis
  • Endpoint security
  • Python scripting
  • ZTA
  • Zscaler ZPA and ZIA

Certification

ISO 27001:2013 Lead Auditor, IRCA Global, MM/DD/YY

Projects

Creating a Spring boot microservice that can maintain the list of inventories and generate a bill., Java, MVC, Spring Boot, Increased understanding of coding practices to better understand vulnerabilities and risks.

Languages

  • Hindi, 80/100
  • English, 80/100

Timeline

Senior Security Administrator

Coforge
01.2025 - Current

Security Administrator

Coforge
02.2024 - Current

Senior Software Engineer

LTI
06.2019 - 01.2024

XII - PCM

St. Edward's School

Bachelor Of Technology - CSE With Specialization In Cyber Security And Forensics

University Of Petroleum And Energy Studies

Similar Profiles

CREATE PROFILE
Aman Thakur