Summary
Overview
Work History
Education
Skills
Certification
Accomplishments
Languages
Timeline
Phalguni

Phalguni

Unnao,UP

Summary

Dynamic cybersecurity professional with extensive experience with 11 years of experience, specializing in vulnerability management and policy compliance. Proven track record of achieving over 50% vulnerability closure within eight months. Skilled in training teams and utilizing tools like Qualys Guard and Tenable, while demonstrating strong project management and risk mitigation capabilities.

Overview

12
12
years of professional experience
8
8
Certification

Work History

Senior Associate-Project

Cognizant Technologies
Bangalore
07.2023 - 07.2025
  • Leading Vulnerability Management Process.
  • Planning and suggesting vulnerability management best practices to the client.
  • Vulnerability reporting and coordination with stakeholders from various departments to ensure the efficient remediation.
  • Accomplished more than 50 percent vulnerability closure within eight months.
  • Prepared weekly progress reports summarizing accomplishments achieved over the course of each week's activities.
  • Responsible for process documentation within the project.
    Providing training to the teams on cybersecurity fundamentals and vulnerability management.
  • Manage zero-day vulnerability until remediation.

Senior Cyber Security Engineer

Emudhra Limited (Bank Client)
Bangalore
10.2021 - 07.2023
  • Worked on tracking upskill training for the team members and new joiners.
  • Trained and guided the team on cybersecurity fundamentals and daily vulnerability management operations.
  • Handled vulnerability assessment processes using Tenable.SC.
  • Scheduled, tracked monthly vulnerability assessments, and daily ad hoc scans.
  • Analyzing threat advisories using Tenable SC and ATP.
  • Baseline compliance assessment and reporting for servers and network devices using Tenable SC and HPNA.
  • Configuration review of the middleware, OS, and network devices.
  • Risk-based mitigation for networks, operating systems, and applications. Compiling and tracking vulnerabilities and mitigations.
  • Coordinating with multiple service owners for RBVMJ request validation and Jira closure.

Consultant

Infrasoft Technology(Bank Client)
Mumbai
01.2021 - 04.2021
  • Planned and scheduled Vulnerability scans to be run on the customer's environment using Qualys Guard tool.
  • Configured report templates, generated and segregated reports, configured asset groups and tags, created option profiles (scan profiles), created Vulnerability Lists from the knowledge base in Qualys Guard.
  • Worked with stakeholders and technical teams to remediate vulnerabilities, tracked SLAs for Vulnerability remediation.
  • Worked on the policy compliance module in Qualys.
    Took appropriate actions on threat advisories.

Associate Consultant

ATOS India
Bangalore
03.2019 - 06.2020
  • Worked in different Qualys Guards Modules like VM, Policy Compliance, web application scanning.
  • Conducted vulnerability scanning using Tenable.io
  • Worked with stakeholders and technical teams to remediate vulnerabilities.
  • Worked on Change Requests for configuration changes in Scan profiles and schedules.
  • Trained the team on Vulnerability Management tools and operations.

Senior Project Engineer

Wipro
Bangalore
01.2013 - 03.2019
  • Handled incidents related to Windows OS issues, network physical port issues like connectivity, changing port VLAN as per the requirement.
  • Handled incidents related to VOIP phones and printer issues, desktop/laptop hardware issues.
  • Configured security policies in Email and web gateway, managed URL/Email domain and released the email from Quarantine using McAfee Email Gateway.
  • Performed URL white listing and blacklisting, reducing spam emails and avoiding domain blacklisting.
  • Configured vulnerability scans as per the requirement, report templates, asset groups and tags, option profiles (scan profiles) in Qualys Guard.

Education

MTech -

BITS Pilani (Wipro Integrated Program)
12.2017

B.S -

BITS Pilani (Wipro Integrated Program)
12.2015

Diploma (Polytechnic) -

Feroz Gandhi Polytechnic
08.2012

Skills

  • Vulnerability management, CVSS Scoring
  • policy compliance
  • Endpoint security
  • Web application pentesting
  • Web App Scanning
  • CI/CD/IaC Scanning
  • Project management
  • Microsoft Azure fundamentals
  • Microsoft Azure Security
  • Tools: Qualys VMDR, Tenableio, Tenablesc, Microsoft Defender, McAfee Web Gateway, McAfee Email Gateway, McAfee EPO, Burp Suite, Wireshark, and other pentesting tools
  • Cyber Security Concepts CIA Triad, Defense in Depth, Cyber Kill-Chain, MITRE ATT&CK
  • Application security - OWASP Top 10
  • Risk based prioritization
  • Incident response
  • Training and mentoring

Certification

  • Project Management Certification
  • Qualys Vulnerability Management Certificate
  • Qualys Policy Compliance Certificate
  • Qualys Cloud Agent Certificate
  • Qualys PCI Compliance
  • Qualys VMDR
  • Microsoft Azure Fundamentals
  • Tenable.SC Specialist

Accomplishments

  • Achieved appreciation from the client for great communication, team management and organizational skills.
  • Achieved Start Performer Award for outstanding performance in project transition phase.

Languages

Hindi
First Language
English
Advanced (C1)
C1

Timeline

Senior Associate-Project - Cognizant Technologies
07.2023 - 07.2025
Senior Cyber Security Engineer - Emudhra Limited (Bank Client)
10.2021 - 07.2023
Consultant - Infrasoft Technology(Bank Client)
01.2021 - 04.2021
Associate Consultant - ATOS India
03.2019 - 06.2020
Senior Project Engineer - Wipro
01.2013 - 03.2019
BITS Pilani (Wipro Integrated Program) - MTech,
BITS Pilani (Wipro Integrated Program) - B.S,
Feroz Gandhi Polytechnic - Diploma (Polytechnic),
Phalguni