Summary
Overview
Work History
Education
Skills
Tools Exposure
Certification
Timeline
Generic
SHAFIQUE SHAIK

SHAFIQUE SHAIK

Bengaluru

Summary

Accomplished Senior Security Engineer with over 7.5 years of expertise in Cyber Security, specializing in investigating security alerts, digital forensics, and threat hunting. Demonstrated success in enhancing security measures through automation and effective incident response strategies. Currently contributes to the Gartner SIRT team by developing advanced detection capabilities and addressing complex security incidents.

Overview

8
8
years of professional experience
1
1
Certification

Work History

Senior Security Engineer

Gartner
Bengalure
03.2024 - Current
  • Perform a thorough analysis of potential threats, including malware and intrusion attempts, and deliver top-tier security services to protect highly sensitive data.
  • Possess extensive technical expertise, particularly in the areas of forensics, malware analysis, and threat intelligence.
  • Implemented a proactive Threat Hunting program, leveraging advanced detection tools to identify and mitigate potential cyber threats before impact.
  • Communicate effectively with various stakeholders, including technical teams, management, and legal, to ensure that everyone is informed of the incident and the steps being taken to mitigate it.
  • Developed SOPs to handle cloud alerts, insider risk alerts, and automated various alerts to improve metrics and reduce investigation time.
  • Developed detection rules based on TTPs to identify and mitigate advanced persistent threats, aligning with the MITRE ATT&CK framework to enhance the visibility and effectiveness of the security team.
  • Perform static and dynamic malware analysis with proper documentation, and perform successful remediation of threats.
  • Collecting evidence from the compromised machine to determine the root cause.
  • Mentor junior team members in investigating security incidents.

Security Analyst

UBER
Bengaluru
03.2023 - 03.2024
  • Responsible for developing and maintaining incident response plans that outline the steps to be taken in the event of a security incident.
    Participate in the on-call rotation periodically, which may involve non-traditional, non-working hours.
  • Experience using investigative tools such as SIEM, Phantom SOAR, CrowdStrike, SentinelOne, and GCP.
  • Perform post-incident reviews and ensure all findings are documented, and remediation is appropriately actioned.
  • Be the conduit for DFIR and threat intelligence, extracting IOCs and IOAs from raw data, analysis reports, and threat hunting.
  • Develop specific content necessary to implement Security Use Cases and transform it into correlation queries, templates, reports, rules, alerts, dashboards, and workflow.

Senior Security Analyst

GAP IT Services
Hyderabad
07.2021 - 03.2023
  • Work closely with the security operations center (SOC) and threat intelligence teams to identify, investigate, and respond to advanced security threats and attacks.
  • Oversee information security audits, like the PCI DSS audit.
  • Part of the threat detection engineering team is to develop various detections and automate them using the SOAR platform, which helps to detect threats and vulnerabilities.
  • Automating the repeated response workflow of various security incidents by using SOAR gives more time for higher-priority incidents.
  • Creating detection rules to reduce the mean time to detect and respond to a threat that could compromise the network.
  • Respond to and manage multiple security incidents by collecting, analyzing, and preserving digital evidence.

Security Analyst

Tata Consultancy Services
Gurgaon
06.2017 - 07.2021
  • Performed investigations on security incidents, root cause analysis and deep dive analysis of malicious artifacts, analyze threat intelligence, identify TTP and attack patterns
  • Performed MITRE ATT&CK framework driven threat hunting campaigns
  • Collecting indicators of compromise in the form of the hash value, URL, IP addresses and vulnerability details for threat identification
  • Performed Phishing Email Analysis by examining the email headers, URL, IP reputations, attachments and identifying the impact of them
  • Integrating new data sources in SIEM and preparing use cases based on concurrent threat landscape
  • Analyzing the events through McAfee SIEM for threats
  • Documenting the incident for future reference and for prevention of similar incidents from occurring in the future
  • Managing Infrastructure vulnerability remediation program including running scan, preparing report and working with relevant stakeholders to remediate the vulnerability

Education

B.Tech - Electrical and Communication Engineering

Gandhi Institute of Technology and Management
Visakhapatnam
05.2017

Skills

  • Security Analysis
  • Digital Forensics
  • Threat Hunting
  • Threat Intelligence
  • Incident response management
  • Vulnerability assessment expertise
  • Malware Analysis
  • Threat Intelligence

Tools Exposure

  • SIEM/Mcafee
  • Splunk SOAR/Phantom
  • Volatility
  • Velociraptor
  • OSQuery
  • Nexpose/Nessus/Qualys
  • Microsoft Defender for Endpoint
  • CrowdStrike
  • Microsoft Defender for Cloud Apps
  • Microsoft Azure, GCP
  • AWS Cloud
  • Griffith
  • Mimecast, Office 365, Google Admin

Certification

  • GIAC Certified Forensic Analyst (GCFA)
  • Certified Ethical Hacker v10
  • Qualys Certified Specialist in Vulnerability Management
  • CompTIA Security+ (SY0-501)
  • Azure Security Associate (AZ-500)

Timeline

Senior Security Engineer

Gartner
03.2024 - Current

Security Analyst

UBER
03.2023 - 03.2024

Senior Security Analyst

GAP IT Services
07.2021 - 03.2023

Security Analyst

Tata Consultancy Services
06.2017 - 07.2021

B.Tech - Electrical and Communication Engineering

Gandhi Institute of Technology and Management

Similar Profiles

CREATE PROFILE
SHAFIQUE SHAIK