Summary
Overview
Skills
Work History
Education
Personal Information
Timeline
Generic
Debansi Chakra

Debansi Chakra

Cyber Security Incident responder
Bangalore,Karnataka

Summary

Cybersecurity professional with 9+ years of experience in Threat Hunting, Incident Response, SOC Operations, and EDR technologies within AI-driven and Next-gen SOC security environments. Extensive experience leveraging the MITRE ATT&CK framework to analyze adversary tactics, improve detection coverage, and enhance investigation accuracy. Proven expertise in validating AI-generated investigations, identifying detection gaps, and developing automated queries and playbooks to reduce manual effort and accelerate response time. Strong customer-facing experience, effectively translating security requirements into actionable improvements for development and AI teams to strengthen overall security posture.

Overview

9
9
years of professional experience

Skills

  • AI-SOC
  • Incident Response
  • Threat Hunting
  • Security Operations
  • Cortex XDR
  • Cortex XSOAR
  • Carbon Black EDR
  • Splunk
  • IBMQradar
  • ARCSIGHT
  • Email Analysis
  • APT
  • Customer Success
  • Threat management
  • Threat analysis

Work History

Senior Security Consultant

AIStrike
06.2025 - Current
  • Serve as a Senior Incident Responder in an AI-driven Security Operations Center (AI-SOC) environment.
  • Act as a key customer-facing security lead, gathering client requirements and translating them into actionable technical objectives for the Development and AI Engineering teams.
  • Investigate and evaluate security incidents analyzed by AI systems, ensuring accuracy, relevance, and high-quality detection outcomes.
  • Provide structured feedback to AI and development teams to continuously improve detection logic, investigation workflows, and automation capabilities.
  • Collaborate with customer SOC teams on escalated cases, reviewing their investigation findings and identifying gaps or optimization opportunities.
  • Design and develop custom queries, detection rules, and automated playbooks to eliminate repetitive manual investigations.
  • Drive investigation automation initiatives to enhance SOC efficiency, reduce analyst workload, and improve response time.
  • Contribute to continuous improvement of AI-driven threat detection models and response mechanisms.

Incident Response Consultant

Palo Alto Networks
Bangalore, Karnataka
05.2023 - 06.2025
  • As an Incident Response Consultant at Palo Alto Networks contracted through HCL Payroll, I played a pivotal role in securing over 100 customers across diverse business domains. My primary responsibilities and achievements include:
  • Senior Incident Responder:Led incident response efforts for a broad portfolio of clients, demonstrating expertise in handling complex security incidents.
  • Threat Detection and Analysis:Utilized Cortex XSOAR and Cortex XDR as the primary tools for threat detection and analysis, ensuring swift response to emerging security incidents.
  • Collaboration and Root Cause Analysis:Worked collaboratively with the threat hunting team, contributing to root cause analysis and containment strategies.
  • Applied frameworks such as the Cyber Kill Chain, NIST, and MITRE ATT&CK to enhance incident response effectiveness.
  • Automation and Process Improvement:Actively proposed enhancement ideas for Security Operations Center (SOC) automations, streamlining incident response procedures.
  • Documented and improved SOC procedures for increased efficiency and adherence to industry best practices.
  • Cross-Team Collaboration:Collaborated with diverse teams, including cloud engineering and threat researchers, to enhance security detection methods and broaden threat vector coverage.
  • This role allowed me to leverage my expertise in incident response and security operations while actively contributing to the continuous improvement of security postures for a diverse clientele.

Senior Incident Responder

SHARE POINT SHOP - VMWARE
Bangalore, Karnataka
10.2022 - 04.2023
  • Threat analysis using Splunk and Carbon Black EDR primarily
  • Actively engaged in the practice of threat hunting and gathering threat intelligence. This involves proactively searching for potential security threats within the organization's network, systems, and applications, as well as collecting and analyzing data from various sources to identify potential risks and vulnerabilities. Through this ongoing process, I am able to stay ahead of potential threats and ensure that the necessary measures are taken to mitigate any risks to the organization's security.
  • Conducting email analysis using multiple tools, including EOP (Exchange Online Protection) and Phishlabs-Cofense.
  • Securing cloud environments and have extensive experience working with two of the most popular cloud platforms, Azure and AWS.
  • Analyzing IDS (Intrusion Detection System) alerts using Lastline and Suricata.

Senior Security Analyst

Atos Mexico
Mexico City, Mexico
10.2020 - 03.2022
  • Working as a SOC operations Lead for our Government customer in Mexico
  • Performing 2nd level of analysis for the escalated Incidents by L1.
  • Continuous evaluation of triggered alerts in Aisaac to understand the threat pattern and fine tune the use case when needed.
  • Takes the lead role in threat detection, suggesting use case creation.
  • Advanced Cyber Analytics, Proactively drive hunting and analysis.
  • Map all the SIEM use-cases with MITRE framework to understand the risk posture from APT attacks perspective.
  • Capable in identifying Behavioral based Indicators of Compromise (BIOC).
  • Vigorously validating IOCs received by Threat eed as a part of threat intelligence.
  • Creating and presenting the monthly and weekly trend analysis in a Dashboard to the client.
  • Vigorously working towards the SOC process development to enhance SOC detection and response capabilities.
  • Recognize and codify attacker techniques, tactics, and procedures with a view to creating indicators of compromise (IOCs) that can be applied to current and future investigations.
  • Creating and reviewing Runbooks for new use cases.
  • Track team metrics in a detailed and timely manner; proactively monitoring SLA's.

Senior Security Analyst

IBM
Bangalore, Karnataka
05.2020 - 10.2020
  • Working as a Shift lead/ Senior analyst in IBM global soc.
  • Leveraging internal and external resources to research threats, vulnerabilities, and intelligence on various attackers and attack infrastructure
  • SPOC for 4 clients out of 24 clients as it is a MSS.
  • Using Qradar and Arcsight for analyzing the Alerts/Offenses.
  • Analyze the different log sources (ASA,PaloAlto Firewall,Proxy,IPS,UTM,WAF, DDI etc) .
  • As a shift lead deep diving on escalated incidents by L1 analysts and guiding them to understand the log analysis.
  • Fine tuning of Rules by suggesting the admin team the conditions to be finetuned in order to reduce FP.
  • Directly involving with client to understand the requirement and implementing it.

Security Analyst

Wipro Techology
Dubai
09.2016 - 05.2020
  • Worked as Sr. Analyst in SOC for using ArcSight for monitoring & analysis of alerts.
  • Creation and analysis of Trends, End to End incident handling where everyday tasks is to monitor and investigation of alerts.
  • Analysis of spam email and taken appropriate action to avoid such scenarios and mitigated the risk if any.
  • Escalate incidents to respective teams when needed and done RCA.
  • Analysis and assessment of Security vulnerabilities and incidents.
  • Worked as Analyst in Incident Response Center (IRC) for Wipro internal (assets & services) using QRadar for monitoring & investigation of offenses.
  • Integrating different Log sources (Checkpoint FW, Database, Sourcefire) in QRadar as per the requirements
  • End to End incident handling where everyday tasks are to monitor and investigate offenses and identifying the signatures from the events, finding vulnerabilities, Malwares, Authentication failures, DDoS attacks, WannaCry, Bad Rabbit, Coin miner and other Ransom-ware attacks as top priority to take action.
  • Investigation of alerts with consoles like FireEye (HX & NX), McAfee ePO, Sourcefire, McAfee NSM, Palo-Alto, IBMIPS Site protector, Forti Analyzer, Wildfire.
  • Guiding L1 Analysts during analysis of offenses and take care that SLA's for critical client's s being met and follow-up with other teams (AV, NOC, Cyber defence). Sending IRC reports on weekly basis for incidents follow-ups and closures/resolution.

Education

Bachelors of Tech - Electronics and Telecommunication

KIIT UNIVERSITY
Bhubaneswar, Odisha
07-2016

Personal Information

Title: Incident Response Consultant

Timeline

Senior Security Consultant

AIStrike
06.2025 - Current

Incident Response Consultant

Palo Alto Networks
05.2023 - 06.2025

Senior Incident Responder

SHARE POINT SHOP - VMWARE
10.2022 - 04.2023

Senior Security Analyst

Atos Mexico
10.2020 - 03.2022

Senior Security Analyst

IBM
05.2020 - 10.2020

Security Analyst

Wipro Techology
09.2016 - 05.2020

Bachelors of Tech - Electronics and Telecommunication

KIIT UNIVERSITY

Similar Profiles

CREATE PROFILE
Debansi ChakraCyber Security Incident responder