Kruthy Vasireddy
Lead Threat & Vulnerability Management Analyst
Hyderabad
Summary
Dedicated and results-driven Lead Vulnerability Management Analyst with over 7 years of experience identifying, assessing, and mitigating security risks across large-scale enterprise environments. Proven expertise in managing end-to-end vulnerability management programs using tools such as Qualys, Nessus, and ServiceNow. Adept in risk-based prioritization, threat intelligence analysis, and cross-functional collaboration to drive timely remediation and strengthen overall security posture. Strong knowledge of CVSS, MITRE ATT&CK, and both cloud and on-premise infrastructure. Recognized for optimizing security processes, mentoring teams, and delivering actionable insights aligned with business objectives.
Overview
8
8
years of professional experience
4
4
years of post-secondary education
Work History
Lead Infosec Analyst VMP
Micron
07.2022 - Current
- Monitored and analyzed emerging threats, zero-day vulnerabilities, and security advisories to proactively adjust prioritization and enhance security posture.
- Performed validation and triage of vulnerability reports from security researchers, vendors, and internal sources, ensuring accurate impact assessments and effective remediation planning.
- Collaborated with infrastructure and application teams to track, remediate, and verify vulnerability fixes across the environment.
- Led enterprise-wide vulnerability assessments, ensuring comprehensive coverage and accuracy across infrastructure assets.
- Delivered risk-based vulnerability prioritization leveraging CVSS, threat intelligence feeds, and asset criticality to support business-aligned remediation decisions.
- Led the overhaul of the vulnerability management program, achieving a 60%+ reduction in critical vulnerabilities within one year.
- Administered and optimized the Qualys platform for real-time scanning across 7,000+ assets, including asset on-boarding/off-boarding and scanner deployments.
- Deployed virtual scanners and Qualys agents on DMZ assets, ensuring full coverage across multiple global regions.
- Troubleshooted and resolved issues related to long-running scans, agent reachability, scanner communication, and authentication failures on Windows and Unix systems.
- Developed and documented standard operating procedures (SOPs), improving team efficiency and streamlining on-boarding for new team members.
- Provided mentorship and technical guidance to junior analysts, fostering a culture of continuous learning and collaboration.
- Generated detailed vulnerability reports via Service Now and collaborated with cross-functional stakeholders to address remediation gaps.
Technology Security Analyst
Accenture
06.2020 - 06.2022
- Deployed and configured security tools across multiple sites, including the installation of virtual scanners and scheduling of weekly/monthly vulnerability scans to ensure continuous infrastructure monitoring.
- Configured, maintained, and administered Qualys Vulnerability Management tools to ensure accurate asset coverage, including on-boarding and de-boarding of target technologies.
- Conducted vulnerability assessments by executing authenticated scans, analyzing results, and researching threats to deliver clear, actionable remediation recommendations.
- Resolved scan-related issues such as Qualys Agent reachability, scanner communication failures, and authentication errors on Windows/Unix systems, ensuring consistent scan reliability.
- Evaluated reported vulnerabilities for accuracy, re-prioritized based on asset criticality, and removed false positives to streamline and accelerate remediation efforts.
Security Operations Analyst
Ericsson
09.2017 - 05.2020
- Delivered clear, comparative, and actionable vulnerability analysis to internal stakeholders, aligning security findings with business context and risk impact.
- Tracked and reported key vulnerability management metrics by processing scan results, correlating data across multiple inventories, and transforming findings into meaningful security reports.
- Conducted hands-on vulnerability assessments using industry-standard tools, with expertise in identifying security weaknesses across operating systems, databases, and application platforms.
- Prioritized and drove remediation of vulnerabilities based on severity, exploitability, and asset criticality, ensuring alignment with enterprise risk management practices.
- Performed real-time security monitoring and incident investigation, documenting findings and supporting incident response workflows.
- Conducted deep log analysis and managed alert triage to detect, assess, and respond to potential security incidents effectively.
Education
Bachelors in CSE -
Bhoj Reddy Engineering College For Women
06.2013 - 05.2017
Skills
- Vulnerability Management Tools: Qualys, Tenable, Nessus
- Risk-Based Vulnerability Prioritization
- Service Now VMDR
- Operating Systems: Windows Server, Linux (RedHat, Ubuntu), Unix
- Cloud Platforms: AWS, Azure, GCP
- Threat & Vulnerability Management Lifecycle
- Cross-functional Team Collaboration
- Process Improvement
- Certifications: CEH, Qualys VMDR
Timeline
Lead Infosec Analyst VMP
Micron
07.2022 - Current
Technology Security Analyst
Accenture
06.2020 - 06.2022
Security Operations Analyst
Ericsson
09.2017 - 05.2020
Bachelors in CSE -
Bhoj Reddy Engineering College For Women
06.2013 - 05.2017
Similar Profiles
Kevin SmithKevin Smith
Probe Lead Technician at MicronProbe Lead Technician at Micron
JUN FATT SOHJUN FATT SOH
Process Engineer Assistant (Wire Bond Department) at MicronProcess Engineer Assistant (Wire Bond Department) at Micron
Lili LiliLili Lili
Engineering Technologist at MicronEngineering Technologist at Micron