Naimisha Segu
Banglore
Summary
Experienced Cyber Security Analyst proficient in implementing robust measures for system and data protection. Skilled in vulnerability assessments, penetration testing, and incident response. Analyzes network traffic to detect anomalies and develops effective security strategies. Dedicated to obtaining certifications CEH, CISSP, and CISM to strengthen security analysis capabilities.
Overview
3
3
years of professional experience
1
1
Certification
Work History
Value Point - Noventiq
Security Analyst
Banglore
07.2024 - Current
- Provided expert recommendations on risk assessment, access control, encryption, and compliance (ISO 27001, SOC2, NIST, CIS). Conducted internal and external audits, gap assessments, and improved security posture.
- Performed network and system vulnerability assessments, identifying attack vectors and developing remediation plans to mitigate risks. Monitored security alerts using SIEM tools (Splunk, ArcSight, QRadar) and created custom dashboards. Analyzed threat data from IDS/IPS, firewalls, and endpoints to address potential threats proactively.
Aditya Birla Capital
Risk Management & Compliance
Mumbai
06.2022 - 05.2024
- Led the implementation of ISO 27001-aligned security solutions, ensuring compliance with SEBI and CERT regulations. Conducted SEBI gap assessments, risk evaluations, and developed strategic action plans, resolving high-priority vulnerabilities identified during BSE VAPT audits and maintaining a clean audit record.
- Monitored SIEM alerts via ArcSight and addressed security incidents using tools such as Zoologic, MX Toolbox, Guardicore, and Qualys VMDR. Conducted POCs for micro-segmentation and evaluated VAPT scanners like Seconize, ensuring robust brand monitoring and system
Vcomply
Security Analyst
Kolkata
01.2022 - 05.2022
- Conducted manual testing following OWASP Top 10 guidelines to identify and mitigate critical vulnerabilities, including SQL injection, cross-site scripting, and file upload flaws, reducing overall security threats by 40%. Performed API testing using Autify to ensure the robustness and functionality of cloud-based GRC software.
- Developed and maintained the frontend of the cloud-based GRC platform using the MEAN stack (Angular, HTML, TypeScript) and managed efficient database operations with MongoDB.
Deloitte
Risk Advisory - VAPT
Gurgaon
08.2021 - 11.2021
- Experienced pentester with expertise in conducting vulnerability assessments using tools like Postman, Burp Suite, Nexpose, and Wireshark
- Proficient in identifying and exploiting security flaws in APIs, ensuring their robustness and resilience against attacks. Skilled in analyzing network traffic using Wireshark to detect vulnerabilities and recommend appropriate countermeasures
- Proficient in generating comprehensive VAPT reports, outlining identified risks and providing actionable recommendations for mitigation.
Education
B.Tech - Computer Science And Engineering
Vellore Institute of Technology
05.2022
Skills
- Splunk
- Burpsuite
- Metasploit
- Nexus
- Qradar
- Arcsight
- Risk Assessments - Risk register, BIA
- Gap assessments - ISO 27001, SOC 2, NIST, CIS
- EDR - SentinelOne
- Promisec, McAfee
- DLP - Forcepoint, Trelix
- CyberArk, Colortokens, Guardicore, Panorays, IZoolab
Certification
- Certified Incident Handler (ECIH) by Ec-Council
- Ethical Hacking offered by Internshala
- Introduction to Cyber Security by Cisco Networking Academy
- Node Red Basics to bots offered by IBM
- Cyber Security Specialization offered by Verzeo
Timeline
Value Point - Noventiq
Security Analyst
07.2024 - Current
Aditya Birla Capital
Risk Management & Compliance
06.2022 - 05.2024
Vcomply
Security Analyst
01.2022 - 05.2022
Deloitte
Risk Advisory - VAPT
08.2021 - 11.2021
- Certified Incident Handler (ECIH) by Ec-Council
- Ethical Hacking offered by Internshala
- Introduction to Cyber Security by Cisco Networking Academy
- Node Red Basics to bots offered by IBM
- Cyber Security Specialization offered by Verzeo
B.Tech - Computer Science And Engineering
Vellore Institute of Technology
Similar Profiles
Raoul ZibiRaoul Zibi
SOC Analyst at Cyber Security Analyst At Pitch Tech ConsultingSOC Analyst at Cyber Security Analyst At Pitch Tech Consulting
Shayna M. GibbensShayna M. Gibbens
Cherokee Nation at Nuclear Weapons Security Management AnalystCherokee Nation at Nuclear Weapons Security Management Analyst
Akshay ShettyAkshay Shetty
Axis Bank Ltd at Credit Risk Analyst/Project Manager, Data AnalyticAxis Bank Ltd at Credit Risk Analyst/Project Manager, Data Analytic