Devendra Katdare
SecOps Engineer | Security Analyst
Pune,MH
Summary
IT Security professional specializing in SOC operations, SIEM/EDR monitoring, threat detection, and incident response across cloud and on-prem environments. Hands-on with Microsoft Sentinel, Wazuh, Defender, Nessus, AWS/Azure security, and log analytics. Currently advancing skills through Google Cybersecurity Professional Certificate. Strong analytical approach, cross-team collaboration, and data-driven problem-solving mindset
Overview
4
4
years of professional experience
Work History
Security Operations Engineer
Velsera Inc.
06.2025 - Current
- Email Security - MS defender, Security Awareness Training
- CSPM - AWS/Azure/GCP using Wazuh, Nessus, and CrowdStrike. IOMs, tracking CIS benchmark scan findings from Nessus Scan in Jira
- Wazuh and CrowdStrike Security alerts, incident response and management
- SSL Renewal, Co-ordination with DevOps and Engineering
- Vulnerability Scan schedule (Nessus), Reporting, SLA and Escalations
- Hands-On experience in HIPAA and FedRAMP Audit
- Coordinated cross-functional teams to address and resolve technical challenges effectively.
- Implemented process improvements , reduction in false positive alerts by triage rule with change control management
IT Security Senior Engineer
SFS Group India Pvt. Ltd
02.2022 - 05.2025
- Used Microsoft Sentinel and Wazuh, Graylog for SIEM alert analysis, log review, and incident response.
- 1+ year hands-on with MS Sentinel, intune and Entra ID (security investigations, access control, Device Policy configuration for windows & Mac
- Bash / PowerShell scripting knowledge utilized for automation, software deployment (Windows Task scheduler) and small security repetitive tasks
- Managed vulnerability assessments and tracking using Nessus
- Internal IT security audits - Maintained and updated RET (Risk Exposure Table) for internal audit — tracking risk levels, remediation status, and cross-team coordination (Ping Castle, BitSight, NIST guidelines to compare security posture)
- Network Security: Daily monitoring of BitSight, Icinga , Cisco Prime & Firewall
- Administered - on-prem PKI, SSL lifecycle, domain access control, and firewall operations and all datacenter operations of Org as Individual admin for 600+ users, 10+ Windows servers with complete AD Administration (Dell iDRAC)
- Conducted security training, phish mail testing to reduce phish click rate.
- Managed MFA, RBAC access control, and endpoint security enforcement
Skills
- SIEM & Threat Hunting: MS Sentinel, Wazuh, Graylog with ELK Stack
- Incident Response: IOC Analysis, Malware Analysis, Playbooks, Escalations
- Email Security: MS Defender, Phishedio , Security Awareness Simulations and User training
- EDR & Endpoint Security: CrowdStrike, MS Defender, Symantec
- Cloud & CSPM: AWS, Azure, GCP, Nessus, CrowdStrike CSPM
- Network Security: Fortigate, SonicWall, Cisco Prime, Icinga
- PKI & SSL: Root CA, DNS, SSL Lifecycle, Certificate Management
- Collaboration: With DevOps, Engineering, and IT management
- Compliance & Audit: Exposure to HIPAA, FedRAMP, NIST SP 800, ISO27001
- Vendor Communication: IT Procurement, External Risk assessment
SELECTED ACHIEVEMENTS
- Won APEX Award 2023 - Reduction in phishing click rate after awareness training, Vulnerability backlog reduction, SLA & Escalation matrix implementation helped in reducing MTTR, increased incident closure rate,
- Recognized for restoring full datacenter operations during the July 19, 2024, CrowdStrike global outage — restored operations within 6 hours.; by following guidelines from CrowdStrike.
Education
Google Cybersecurity Professional Certificate - Cyber Security
In Progress
CourseraBachelor of Engineering - Mumbai University
MGM College of Engineering & Technology
Navi Mumbai01.2019