GOKULAKRISHNAN VENUGOPALAN
Sr Security Analyst l2/l3
Hyderabad
Summary
IT Professional with over 10 years of comprehensive experience in the Cyber Security industry. Extensive expertise in Security Operations Center (SOC), enterprise security, security engineering, and Digital Forensics and Incident Response (DFIR), with a broad understanding of the cyber security landscape. Proficient in conducting thorough investigations, responding to security incidents, and developing robust security protocols. Proficient in Incident Response for both Windows and Linux/Unix environments. Strong foundation in networking fundamentals and network security. Experienced in analyzing network intrusions and identifying security threats. In-depth understanding of the Risk Management Framework (RMF), security life cycle, and vulnerability management processes. Knowledgeable in FISMA and NIST frameworks. Proven ability to undertake complex assignments and deliver results within tight deadlines. Capable of working effectively independently or as part of a team.
Overview
11
11
years of professional experience
4
4
Certifications
Work History
Senior IT Security Analyst – Security Engineering & Security Operations
YEXT INC
11.2021 - Current
- Integral member of the core team responsible for establishing Security Operations Center (SOC)
- Lead Incident Response as a First Responder, creating and submitting detailed IR reports based on investigation findings
- Facilitate post-incident review meetings
- Documented and updated incident response procedures and playbooks.
- Collaborated with cross-functional teams to address complex security incidents, minimizing potential damage.
- Authored security incident reports, highlighting breaches, vulnerabilities and remedial measures.
- Deliver Brown Bag Sessions to enhance team knowledge on various tools and operations
- Serve as a Blue team member for Tabletop Exercises (Purple team activities)
- Conduct proof-of-concept (PoC) evaluations on SIEM/SOAR platforms (Coralogix, Hunters), Zero Trust/DLP platforms (Zscaler, Netskope), and EDR solutions (SentinelOne, CrowdStrike), providing assessment reports to leadership
- Delegate tasks to Junior SOC Analysts, assist in work ramp-up, and support training during investigations
- Provide evidence for audits, user access reviews, and compliance requirements
- Conduct security awareness sessions for new employees
- Integrate data sources into SIEM from both on-premises and cloud environments
- Develop custom detectors and scoring rules in Hunters SIEM platform for fine-tuning and alert generation.
Senior Security Analyst – Enterprise Security
POLY INC (POLYCOM + PLANTRONICS)
07.2017 - 10.2021
- Responded to security events, alarms, and incidents, performing analysis using AlienVault USM SIEM, ELK Kibana, and Exabeam UEBA
- Sourced, aggregated, and analyzed log data from network devices, security devices, and other critical assets
- Analyzed network attacks, blocks, and detections, conducting regular health check-ups across the entire enterprise environment
- Analyzed files and network artifacts using a bare metal sandboxing environment with Symantec EDR
- Conducted network analysis to isolate and diagnose threats using TCP/IP protocols
- Monitored and managed endpoint protection infrastructure for IT clients using Symantec Endpoint Protection and McAfee ePO
- Conducted proof-of-concept (PoC) for implementing a cloud asset management platform (Axonius)
- Conducted PoC for implementing a next-generation cloud-based endpoint protection solution (CrowdStrike)
- Monitored and executed incident responses using Microsoft E3 and E5 Office 365 solutions
- Generated initial incident response reports following attack investigations
- Utilized PowerShell for Active Directory searches and scripting to purge phishing campaigns, providing scripts to the IT Service Desk for endpoint protection client installations based on tags and organizational units
- Collected open-source intelligence from various Indicators of Compromise (IOC) channels
- Assessed the security impact of traffic anomalies on internal and external networks
- Assisted examiners during internal and external audits
- Possess knowledge of PowerShell, and Linux/Unix commands
- Participated in Purple Team activities
- Prepared knowledge transfer guides on processes and technical specifications for internal use and new hires.
Security Analyst - Level I/II
PRUF INC
11.2015 - 06.2017
- Responded to security events and incidents, performing analysis using Qradar SIEM in a 16/5 SOC MSSP
- Sourced, aggregated, and analyzed log data from network and security devices
- Conducted network analysis to diagnose threats using TCP/IP protocols
- Maintained awareness of current hacker techniques, vulnerabilities, and countermeasures
- Managed Data Loss Prevention incidents and developed remediation protocols.
Junior SOC Analyst
XEROX
10.2013 - 09.2015
- Provided 24/7 security monitoring and alerting services, performing log analysis to identify security issues using SIEM solutions (Splunk ES & Arcsight ESM)
- Monitored Intrusion Prevention Systems, Intrusion Detection Systems, firewalls, and antivirus for analysis and reporting, and managed Data Loss Prevention incidents, developing remediation protocols.
Education
Master of Science - Industrial Engineering
University of New Haven
New Haven, Connecticut 04.2001 -
Bachelor of Science - Marine Engineering
Vels University
Chennai, India 04.2001 -
Skills
SIEMSOAR: Hunters, Sumologic, ExaBeam UEBA, Qradar, Arcsight, ELK Kibana
IPS/IDS: FireEYE DarkTrace
FIREWALLS: PA Series (Panorama), Checkpoint (Smart Console)
NETWORK MONTORING: Solarwinds, XYMON
PROTOCOL ANALYZER: WireShark
ASSET MANAGEMENT: Axonius Asset Management Platform Oomnitza
SERVICE MANAGEMENT: ServiceNOW, Archer ZenDesk, Jira
VULNERABILITY ASSESMENT: Insight VMRapid7
EDR: Symantec EDR, CrowdStrike Falcon, SentinelOne, Cybereason
THREAT INTELLIGENCE: MITRE ATT&CK, OpenIOC, YARA
Certification
COMPTIA SECURITY+
Accomplishments
Successfully mitigated various incidents thus minimizing downtime and data loss.
Enhanced incident response times by 25% through the optimization of alert triage processes.
Timeline
Senior IT Security Analyst – Security Engineering & Security Operations
YEXT INC
11.2021 - Current
Senior Security Analyst – Enterprise Security
POLY INC (POLYCOM + PLANTRONICS)
07.2017 - 10.2021
Security Analyst - Level I/II
PRUF INC
11.2015 - 06.2017
Junior SOC Analyst
XEROX
10.2013 - 09.2015
Master of Science - Industrial Engineering
University of New Haven
04.2001 -
Bachelor of Science - Marine Engineering
Vels University
04.2001 -
Similar Profiles
Vinnal MalhotraVinnal Malhotra
Senior Demo Engineer at Yext IncSenior Demo Engineer at Yext Inc
Wendy MisikowetzWendy Misikowetz
Director, Enterprise Sales at YextDirector, Enterprise Sales at Yext
Vijay Raj RVijay Raj R
IT Operations Analyst at YextIT Operations Analyst at Yext
Sai Pratap GunturuSai Pratap Gunturu
Lead Data Analyst ( Senior Consultant) at Deloitte ConsultingLead Data Analyst ( Senior Consultant) at Deloitte Consulting
S N Aditya MurthyS N Aditya Murthy
Lead Product Manager - Digital Supply Chain at Dr Reddy's LaboratoriesLead Product Manager - Digital Supply Chain at Dr Reddy's Laboratories