ARUNA JOSHY
Cyber Security Consultant
Kochi
Summary
Cybersecurity Consultant with over 6 years of experience in Security Operations Center (SOC) and SOAR environments, specializing in SIEM content development, use case engineering, and threat detection. Expertise includes multiple SIEM platforms such as IBM QRadar, CrowdStrike SIEM, Securonix, Microsoft Sentinel, Qualys, and Tenable Nessus. Proficient in designing advanced detection use cases aligned with the MITRE ATT&CK framework, integrating diverse log sources, and optimizing alert fidelity. Holds multiple certifications and possesses hands-on scripting skills in Python and SQL to enhance detection and automation efforts. Open to opportunities in Kochi with flexibility for relocation and remote work.
Overview
8
8
years of professional experience
6
6
Certifications
Work History
Cybersecurity Consultant
Wipro Ltd.
Kochi
10.2021 - Current
- Developed and maintained advanced detection use cases mapped to MITRE ATT&CK, using IBM QRadar, CrowdStrike SIEM, Securonix, and Microsoft Sentinel.
- Integrated tools like Microsoft Defender ATP, Office 365, and other log sources into SIEM platforms to improve visibility and detection accuracy.
- Conducted alert tuning and rule optimization to reduce false positives and improve SOC efficiency.
- Collaborated with security analysts to improve use case logic and develop investigation playbooks.
- Contributed to SOAR workflows, automating response actions for critical threat scenarios.
- Used Python and SQL for data parsing, enrichment, and detection logic enhancement.
Cybersecurity Analyst
Capgemini
Bangalore
01.2019 - 10.2021
- Monitored security incidents within SOC using IBM QRadar, handled real-time alerts, and escalated verified threats.
- Built foundational experience in use case lifecycle, log analysis, and incident resolution.
- Worked with cross-functional teams to tune existing rules and improve correlation accuracy.
GIS Engineer
NeST Digital
10.2017 - 07.2018
- Worked on LiDAR Utility Pole Extraction and Load Analysis using Cloud Compare, ArcGIS, and Ocalc Pro.
- Participated in Kurdistan Base Mapping project, focusing on land-based building identification and mapping.
Education
Bachelor of Technology (B.Tech) - Electronics & Communication Engineering
College of Engineering
Cherthala05.2017
Higher Secondary - Science
St. Antony’s HSS
Kacheripady01.2012
Secondary Education -
St. Antony’s HSS
KacheripadySkills
SIEM Tools: IBM QRadar, Securonix, CrowdStrike SIEM, Microsoft Sentinel, Tenable Nessus, Qualys
Accomplishments
- Lead the SIEM migration for 4 clients from IBM Qradar to CrowdStrike SIEM with respect to detection coverage.
- Completed the creation of all the use cases with in the committed time line without any disruption in the regular monitoring
- Implemeted MITRE attack framework for more coverage across all the device types
- Created Automation workflows for more efficiency and accuracy
Certification
Microsoft Certified: Azure Fundamentals (AZ-900)
Technical Skills
- IBM QRadar
- Securonix
- CrowdStrike SIEM
- Microsoft Sentinel
- Tenable Nessus
- Qualys
- Microsoft Defender ATP
- Office 365
- SOAR (IBM Resilient/XSOAR)
- Case Development
- MITRE ATT&CK Mapping
- Alert Tuning
- Log Normalization
- Python
- SQL
- Regex
- SOC Operations
- Incident Response
- Threat Investigation
- Cloud Compare
- ArcGIS
Timeline
CrowdStrike Certified SIEM Engineer
01-2026
Microsoft Certified: Azure Fundamentals (AZ-900)
05-2024
Microsoft Security Operations Analyst (SC-200)
04-2022
Cybersecurity Consultant
Wipro Ltd.
10.2021 - Current
IBM Q Radar Fundamentals (Badge)
07-2020
Cybersecurity Analyst
Capgemini
01.2019 - 10.2021
GIS Engineer
NeST Digital
10.2017 - 07.2018
Higher Secondary - Science
St. Antony’s HSS
Bachelor of Technology (B.Tech) - Electronics & Communication Engineering
College of Engineering
Secondary Education -
St. Antony’s HSS