Sai Adithya Thatipalli
Bengaluru
Summary
Experienced Information Security Engineer with 7+ year history of managing security of physical and cloud infrastructure. Adept at identifying security risks and improving security architecture designs. Proven to maintain efficiency in high-stress situations. Accomplished Information Security Engineer with 4 years of experience leading the development and daily management of information security systems for a TD Bank organization. Expertise in threat detection, mitigation and management. Eager to contribute in a senior-level IT security role. Watchful professional offering comprehensive, hands-on experience identifying, investigating and responding to information security alerts. Expertise in searching through data-sets to detect threats and anomalies and administering metrics to maintain security processes and controls. Focused on helping businesses safeguard sensitive data from hackers and cyber-criminals. Dedicated Cyber Security professional with history of meeting company goals utilizing consistent and organized practices.
Overview
7
7
years of professional experience
Work History
Senior Engineer
Acuity Knowledge Partners
06.2021 - Current
- Conduct end-to-end phishing simulations, followed by awareness training and newsletters.
- Perform endpoint security detection analysis and effectively manage infrastructure security using CrowdStrike and Trellix, ensuring protection of critical assets and data.
- Administer and manage enterprise DLP control using Netskope, including user onboarding, policy creation, traffic steering, and alert investigation, to maintain compliance and prevent data breaches.
- Execute compliance activities such as annual software reviews, additional phishing campaigns for failed users, and testing and reporting of new security features from existing and new vendors, driving continuous improvement in security measures.
- Manage cloud infrastructure and service-level security using Prisma Cloud, including policy creation, alert investigation, and compliance management, to ensure the integrity and confidentiality of cloud-based systems and data.
- Investigate and block malicious DNS queries using Cisco Umbrella, effectively mitigating potential risks and protecting network from external threats.
- Track and manage evidence for compliance audits, such as SOC2 and ISO audits, ensuring adherence to regulatory requirements and industry standards.
- Perform web content analysis and whitelist URLs on a request basis, ensuring secure access to approved websites and preventing unauthorized access to potentially harmful content.
- Review AWS CloudWatch alerts and provide support to the cloud infrastructure team by ensuring adherence to security practices and workflows in the cloud environment.
- Developed technical documentation for seamless communication of complex engineering concepts among team members and stakeholders
Information Security Engineer
Consilio
04.2021 - 06.2021
- Raised awareness among users about phishing email attacks, conducting training sessions and providing guidance on identifying and avoiding such threats.
- Analyzed phishing emails to identify patterns and trends, contributing to the development of more effective security measures.
- Monitored and investigated incidents related to data loss prevention (DLP), ensuring compliance with security protocols and minimizing the risk of data breaches.
- Collaborated with outsourced vendors to ensure their adherence to contracted service-level agreements, maintaining a high standard of information security.
- Conducted Security Incident Event Management (SIEM) console monitoring and correlation, utilizing User/Device Behavior integrated Security Solution to identify and respond to potential security threats.
- Conducted web content analysis and whitelisted URLs on a request basis, ensuring safe and secure browsing for users.
Information Security Engineer
Harman Connected Services
12.2019 - 03.2021
- Raised awareness among users about phishing email attacks, conducting training sessions and providing guidance on identifying and avoiding such threats.
- Analyzed phishing emails to identify patterns and trends, contributing to the development of more effective security measures.
- Monitored and investigated incidents related to data loss prevention (DLP), ensuring compliance with security protocols and minimizing the risk of data breaches.
- Collaborated with outsourced vendors to ensure their adherence to contracted service-level agreements, maintaining a high standard of information security.
- Conducted Security Incident Event Management (SIEM) console monitoring and correlation, utilizing User/Device Behavior integrated Security Solution to identify and respond to potential security threats.
- Conducted web content analysis and whitelisted URLs on a request basis, ensuring safe and secure browsing for users.
Security Analyst
DXC Technology
01.2017 - 12.2019
- Provided 24x7 support and response as a Security Operations Center (SOC) Analyst, identifying and analyzing security alerts from network traffic and Endpoint protection devices, ensuring timely resolution and mitigation of potential threats.
- Installed and troubleshooted McAfee Endpoint Security Products on servers and workstations, ensuring comprehensive protection against cyber threats.
- Proactively monitored and assessed US-CERT advisories, analyzing their potential impact on the environment and recommending appropriate actions to the respective teams.
- Collaborated with vendors to obtain extra DAT or seek advice on creating policies related to McAfee products, ensuring optimal security measures.
- Conducted monthly Vulnerability Assessments using Tenable Nessus Scanner, identifying vulnerabilities and assisting teams in implementing necessary mitigation measures.
- Utilized tools such as Cisco Iron port and Tipping Point IPS to conduct in-depth analysis and identify the root cause of security alerts.
- Maintained clear and concise documentation of all security incidents, actions taken, and recommendations, ensuring effective communication and knowledge sharing within the team.
- Ensured adherence to industry best practices and compliance standards in all security-related activities, contributing to a secure and resilient IT environment.
Education
Bachelor of Technology - Electronics And Communication Engineering
Jawaharlal Nehru Technological University
Hyderabad06.2016
Skills
- Security logging
- Security regulations compliance
- Security infrastructure architecture
- Endpoint Security
- Cloud Security
- Data Security
- Email Security
- Security consultation
- Incident Response
- Risk mitigation strategies
- Phishing Awareness and Simulation
Accomplishments
- Crowdstrike EDR
- Trellix (McAfee)
- Prisma Cloud
- Netskope DLP
- Cloud Access Security Broker (CASB)
- Amazon Web Services (AWS)
- Microsoft Azure
- Security Incident and Event Management (SIEM)
- Cisco APP
Timeline
Senior Engineer
Acuity Knowledge Partners
06.2021 - Current
Information Security Engineer
Consilio
04.2021 - 06.2021
Information Security Engineer
Harman Connected Services
12.2019 - 03.2021
Security Analyst
DXC Technology
01.2017 - 12.2019
Bachelor of Technology - Electronics And Communication Engineering
Jawaharlal Nehru Technological University
Similar Profiles
Naveen KumarNaveen Kumar
Senior Associate at Acuity Knowledge Partners (formerly Moody’s Analytics Knowledge Services)Senior Associate at Acuity Knowledge Partners (formerly Moody’s Analytics Knowledge Services)
Abhisek SasmalAbhisek Sasmal
Assistant Director at Acuity Knowledge PartnersAssistant Director at Acuity Knowledge Partners
Shipra ShivangiShipra Shivangi
Associate at Acuity Knowledge PartnersAssociate at Acuity Knowledge Partners
Kalyani KumarKalyani Kumar
Associate at Acuity Knowledge PartnersAssociate at Acuity Knowledge Partners
Keshav PushadappuKeshav Pushadappu
Community Specialist at G2.com Private LimitedCommunity Specialist at G2.com Private Limited