ASHA SHAJI

• Continuously monitor OSINT, dark web forums, and proprietary tools for emerging threats and vulnerabilities, leveraging Threat Intelligence Platforms (TIPs) and analytics tools to process, correlate, and analyze threat data.
• Produced daily situational awareness reports for senior leadership teams outlining current developments in assigned areas.
• Create and distribute tactical, operational, and strategic intelligence reports tailored to stakeholders.
• Conduct daily threat calls to brief key stakeholders on significant threats, emerging vulnerabilities, and their potential impact, while producing Daily Threat Briefs, Weekly/Monthly Threat Reports, and Ad-Hoc Alerts.
• Identify and validate Indicators of Compromise (IoCs) and Indicators of Attack (IoAs), managing their lifecycle from collection and enrichment to sharing with relevant teams.
• Conduct cyber threat risk assessments for business-critical assets, global sites, and third-party entities, and present findings, threat trends, and actionable intelligence to both technical and non-technical audiences.
• Research and profile threat actor groups, including Advanced Persistent Threats (APTs), and their techniques, tactics, and procedures (TTPs).
• Analyze and produce geopolitical intelligence reports on events like elections, protests, crises, and wars, assessing their implications for cybersecurity, while staying updated on geopolitical developments impacting cyber threats.
• Collaborate with the Incident Response (IR), Security Operations Center (SOC), Threat Hunting, and Vulnerability Management teams to assess and address threats.
• Enhance CTI processes, playbooks, and workflows for efficiency, ensure timely threat feed ingestion, provide intelligence training, support investigations, contribute to cybersecurity awareness, and recommend proactive security measures.

• Conduct daily assessments of vulnerabilities identified through Tenable.io, ensuring accurate detection, validation, and prioritization of risks.
• Perform asset onboarding and offboarding, maintaining up-to-date inventory, and vulnerability tracking.
• Manage Tenable.io scans, ensuring proper agent deployment, configuration, and troubleshooting for comprehensive coverage.
• Gather vulnerability data from various teams, including security operations, infrastructure, and application teams, for accurate risk assessments.

Participate in daily threat calls, discussing emerging threats, vulnerabilities, and remediation strategies with key stakeholders.

• Analyze scan results, validate findings, and eliminate false positives to ensure actionable intelligence.
• Collaborate with SMEs and global teams (security architecture, penetration testing, application development, and risk officers) to address security risks.
• Maintain awareness of the evolving threat landscape, providing continuous reporting, analysis, and follow-ups on vulnerabilities.
• Generate detailed vulnerability reports using Tenable.io, providing insights and recommendations for remediation.
• Collect, assess, and catalog threat indicators to enhance the organization’s security posture.
• Work as part of a team to deliver administrative support for protective monitoring, vulnerability management, and security deliverables.
• Identified opportunities for process automation through technology upgrades.

• Assist in planning, designing, testing, troubleshooting, and deploying physical/virtual server environments, and workstations.
• Manage incidents, escalations, and post-incident reporting, ensuring timely resolution within SLAs.
• Work with Change and Problem Management tools, coordinating with OCC, technical teams, and business teams to enhance incident management maturity.
• Perform capacity management on VMware servers, and ensure adherence to industry best practices.
• Conduct Post-Incident Reviews (PIRs), identify process improvements, and provide incident reports to executive management.
• Initiate bridge calls, drive communication, and coordinate teams to maintain infrastructure uptime.
• Support Service Management processes, and follow up with teams to meet SLAs.
• Experience with tools like Summit and Smart Center.

• Managed change and project management initiatives, ensuring seamless transitions and service integration.
• Led service management processes, including incident and change management, while overseeing Change Managers' performance and career development.
• Facilitated workshops and interventions to drive change management initiatives across the organization.
• Supported clients in transforming their operating models and implementing business transitions.
• Managed client change agendas, coordinating rollouts of new services, and projects.
• Developed and implemented change management strategies, integrating them into overall project plans.
• Conducted CAB meetings, reviewed change requests, and ensured smooth approvals.
• Defined project success criteria, aligned stakeholders, and ensured high-quality, timely, and budget-compliant project deliverables.
• Maintained business continuity during IT landscape changes.