Cybersecurity and Finance professional with 4.5 years of overall experience, specializing in network security, incident response, and security operations. Proficient in SIEM, IDS/IPS, firewalls, threat mitigation, and EDR technologies. Experienced in 24x7 SOC operations, including log monitoring and security information management. Passionate about safeguarding digital environments and enhancing organizational security posture.
Overview
6
6
years of professional experience
1
1
Certification
Work History
Cybersecurity Analyst
Gradient Cyber – US Based Cybersecurity Firm operating from Dallas, Texas
03.2022 - Current
Worked as an L2 Analyst for Carbon Black, managing and configuring the Carbon Black EDR system for clients' endpoints.
Responsible for managing the Carbon Black EDR project from start to finish, including project planning, resource allocation, and project execution.
Conducting investigations into security incidents and providing detailed reports on findings and recommendations for remediation
Conducting malware analysis using tools such as VirusTotal, ANY. RUN, Hybrid Analysis (along with other Threat Intelligence sources) to identify and prevent malware attacks.
Managing and reporting on alerts from M365, Cortex, IDS, and CrowdStrike.
Monitored and responded to security alerts in SentinelOne, isolating compromised machines to mitigate potential risks. Prepared detailed incident reports and communicated findings to customers for prompt resolution.
Performing a Carbon Black EDR alert investigation.
Analyze security events and incidents using SIEM tools to identify potential threats and vulnerabilities.
Analyze network traffic and logs to identify and prevent attacks.
Monitoring and reporting alerts for efficient risk assessment.
Blocking and isolation on the client's firewall.
Identifying issues and potential enhancements to security solutions for the client.
Led the successful onboarding of over 20 customers, overseeing network infrastructure checks during the process.
Analyzing security breaches to identify the root cause.
Work within Quorum to monitor for any suspicious activity in the client's network.
Testing and analyzing the internal platform quorum to monitor network traffic.
Providing technical training and mentoring junior analysts, and other team members.
Process Associate
First American India
Bangalore
01.2020 - 12.2021
Spearheaded collaborative efforts with diverse branches within top lenders in Canada to facilitate seamless mortgage approvals, leveraging cross-functional communication skills.
Preparing and maintaining daily and monthly trackers, and handling payment-related inquiries from vendors and clients.
Coordinating with the invoice team to correct issues such as short payments, amount mismatches, duplicate postings, and incorrect entries.
Liaising with the payment team to obtain remittance and check copies, and promptly providing them to vendors.
Reviewing vendor statements and addressing their inquiries with accurate information.
Led a project to update and refine Suricata rules within the IDS framework, resulting in improved threat detection capabilities, a significant reduction in false positives, and optimized Time to Detect (TTD) for potential threats.
Proactively monitored Emerging cyber threats and industry trends, regularly updating and adapting Suricata rules to address evolving security challenges, ensuring the organization remained ahead of potential threats.
MITRE & ATT&CK Framework
Contributed to the MITRE Mapping project by integrating advanced Techniques and Mitigations specifically tailored for LDAP event IDs, enhancing client reporting capabilities and fortifying the project's overall security framework, with a focus on optimizing Time to Respond (TTR).
Trello Automation
Spearheaded the automation of Trello card management through strategic enhancements to Butler rules, significantly optimizing team workflows and boosting overall productivity by reducing manual intervention.
Implemented scheduled updates and task assignments through Butler rules,ensuring timely and consistent progress tracking, which led to more efficient project management and a streamlined process.
Certification
CompTIA Security+ (SYO-601) from Alison
Phishing Email analysis (Job Simulation for Master Card)
Endpoint Security from CISCO
Networking Basics from CISCO
Accomplishments
Received the Best Employee Award for two consecutive years.
Participated in inter-college fest
Languages
Kannada
First Language
Hindi
Intermediate (B1)
B1
English
Intermediate (B1)
B1
Timeline
Cybersecurity Analyst
Gradient Cyber – US Based Cybersecurity Firm operating from Dallas, Texas
Intern Data Analyst at CyberSecurity Malaysia (CSM) – Cyber Risk Intelligence DepartmentIntern Data Analyst at CyberSecurity Malaysia (CSM) – Cyber Risk Intelligence Department
Senior Software Development Engineer in Test (SDET at In Time Tec Vision Soft Pvt LtdSenior Software Development Engineer in Test (SDET at In Time Tec Vision Soft Pvt Ltd