Mahesh Naik Venjravath

Email Security Analyst

• Monitored, analyzed, and responded to email security alerts related to phishing, spam, and malware.
• Administered Proofpoint configurations, including threat policies, quarantines, and TAP rules, improving detection efficiency.
• Implemented and fine-tuned DLP policies in Microsoft 365 and Google Workspace, reducing data leakage incidents.
• Conducted phishing investigations and malware analysis on suspicious emails, preventing targeted attacks.
• Collaborated with the SOC and incident response teams for escalations and remediation.
• Developed email security awareness guidelines to reduce end-user susceptibility to phishing attempts.
• Identified or monitored current and potential customers using business intelligence tools.
• Authored incident response playbooks for phishing and spoofing incidents, standardizing escalation workflows.
• Collaborated with the SOC, Threat Hunting, and Forensics teams to resolve advanced email threats.
• Prepared weekly/monthly email threat reports for management, highlighting trends, risks, and mitigation steps.
• Provided technical guidance to L1 analysts, improving SOC efficiency and knowledge transfer.

• Monitored security alerts to identify potential threats and vulnerabilities.
• Conducted proactive email threat hunting using SIEM and Proofpoint TAP, detecting anomalous activity.
• Managed email authentication protocols to prevent domain spoofing and business email compromise.
• Assisted with phishing simulation campaigns and user training to enhance security awareness.
• Tuned security and data loss prevention rules across Microsoft 365 and Gmail for compliance.
• Supported incident response operations by correlating logs for thorough root cause analysis.
• Analyzed security incidents to identify root causes and develop prevention strategies.
• Executed phishing simulations, resulting in a 40% reduction in user click rates.
• Assisted in configuring and validating SPF, DKIM, and DMARC policies, improving domain reputation and preventing spoofing.
• Designed and executed phishing simulation campaigns across the organization, resulting in a 40% reduction in user click rates.
• Investigated malicious attachments and URLs within suspicious emails using sandbox and threat intelligence tools.
• Worked on SIEM (Splunk/QRadar/ELK) to correlate email incidents with firewall and EDR logs for end-to-end visibility.
• Tuned DLP policies to align with GDPR and HIPAA compliance requirements.
• Created and maintained knowledge base articles for handling recurring email threats and DLP alerts.
• Participated in post-incident reviews to identify gaps and propose improvements in email security controls.
• Conducted root cause analysis on recurring phishing incidents and implemented preventive measures.
• Supported onboarding of new domains into Proofpoint and ensured email security hardening from day one.
• Provided security awareness training sessions to end-users focusing on phishing, spoofing, and safe email practices.