Summary
Overview
Work History
Education
Skills
Disclaimer
Timeline
Generic

Lahari Ambati

SOC Analyst
Hyderabad

Summary

Cybersecurity Analyst with a solid history of managing and improving security protocols across diverse platforms. Proficient in employing tools like ArcSight, Azure Sentinel, Proofpoint, and Microsoft Defender to identify and address threats effectively. Proven expertise in performing in-depth threat analyses, creating tailored rules for better detection, and delivering comprehensive cybersecurity awareness training. Key accomplishments include the successful implementation of SOAR automation playbooks.

Career objective: To further progress in the cybersecurity domain by utilizing my extensive experience to safeguard organizational assets against emerging threats. Identified suspicious URLs and file hashes in communications, investigated potential interactions with IOCs, and utilized Proofpoint for effective quarantine measures.

Overview

4
4
years of professional experience
7
7
years of post-secondary education

Work History

SOC Analyst

Wipro
07.2021 - Current
  • Serve as the main escalation contact for SOC L1 analysts, offering technical knowledge and support in managing incidents.
  • Oversaw the entire incident response workflow, which included the triage, investigation, and swift resolution of security incidents.
  • Conduct in-depth analyses of security events utilizing SIEM, EDR, SOAR, email gateway security, and various other security tools.
  • Leveraged Microsoft Defender and Sentinel for endpoint detection, effectively investigating and triaging alerts while producing comprehensive investigation reports.
  • Created security rules within SIEM and enforced security policies in EDR and Azure Sentinel.
  • Designed and implemented automation playbooks for the SOAR platform.
  • Managed the deployment and enhancement of ArcSight connectors.
  • Connected new Windows, Linux, Cisco firewalls, routers, and switches to ArcSight.
  • Oversaw operations related to the onboarding and offboarding of devices within Microsoft Defender.
  • Deployed the Tenable scanner to identify vulnerabilities on newly onboarded devices, providing detailed vulnerability reports and remediation recommendations to dedicated teams for Windows and Linux.
  • Identified new system vulnerabilities using WIZ and Defender.
  • Modified AV and ASR exclusions within Defender to bolster overall security compliance.
  • Performed analyses to detect and mitigate email threats flagged by TAP and TRAP in Proofpoint.
  • Utilized Proofpoint to quarantine suspicious emails after identifying harmful URLs, file hashes, and potential indicators of compromise.
  • Established Proofpoint filtering rules and threat intelligence feeds to enhance the detection of sophisticated email attacks.
  • Executed management-focused phishing campaigns to raise awareness of phishing threats using PSAT.
  • Employed Phish Alarm Analyzer to automate the review of user-submitted emails.
  • Conducted security training sessions on recent breaches and strategies to prevent cyber-attacks.
  • Provided daily security updates and implemented preventive measures.

Education

B.Tech - Electronics and Communication Engineering

Sri Venkateswara College of Engineering
01.2017 - 01.2021

Intermediate - Science

Narayana Junior College
01.2015 - 01.2017

ST. Ann's English Medium High School
04.2014 - 01.2015

Skills

ArcSight

undefined

Disclaimer

I hereby declare that the above written particulars are true to the best of my knowledge and belief.

Timeline

SOC Analyst

Wipro
07.2021 - Current

B.Tech - Electronics and Communication Engineering

Sri Venkateswara College of Engineering
01.2017 - 01.2021

Intermediate - Science

Narayana Junior College
01.2015 - 01.2017

ST. Ann's English Medium High School
04.2014 - 01.2015

Similar Profiles

CREATE PROFILE
Lahari AmbatiSOC Analyst