Open To Work
Shamit Das
Cybersecurity Analyst
Mumbai,MH
Summary
Cybersecurity Analyst with 2+ years of experience executing SOC operations, incident response, and security automation within a 24/7 banking environment. Specialized in triaging high-volume alerts via IBM QRadar and Cortex XSOAR. Conducted cloud security audits and TPRM assessments against ISO 27001 and PCI DSS.
Work History
Cybersecurity Analyst
Deloitte India
Mumbai
09.2024 - Current
- Triage and investigate an average of 100+ daily security alerts across on-premise and cloud infrastructure using IBM QRadar SIEM and Cortex XSOAR, including verifying anomalous activities directly with end-users, consistently meeting strict triage SLAs within a 24/7 banking environment.
- Initiate threat containment via Trend Micro EDR and Zscaler Proxy, while leveraging CloudSEK to monitor brand abuse and escalate takedowns of fraudulent domains, ads, and social media pages.
- Collaborated with the engineering team to optimize Cortex XSOAR playbooks to automate IP reputation checks and evidence gathering, reducing alert investigation times by 50% (from 10 minutes to 5 minutes).
- Conduct routine log source validation across the bank's security architecture, identifying time discrepancies and ensuring continuous, accurate log reporting from all security devices.
- Third-Party Risk Management (TPRM): Managed end-to-end physical and virtual vendor risk assessments aligned with ISO 27001, PCI DSS, and CIS Benchmarks; evaluated cloud, network, application, and physical security controls, delivering comprehensive audit reports and remediation recommendations within a strict 7-day SLA.
Risk Advisory Intern (Cloud Security)
Deloitte India
Bhubaneswar
02.2024 - 08.2024
- Co-developed a comprehensive security audit checklist integrating global frameworks (ISO 27001, PCI DSS v4, NIST 800-53, CIS Benchmarks) and regional regulations to standardize compliance assessments.
- Conducted security audits on simulated cloud environments (AWS, Azure, GCP); authored and presented detailed risk assessment reports to stakeholders, outlining findings, risk ratings, and recommendations.
Skills
- IBM QRadar SIEM
- Cortex XSOAR
- Threat Intel & Analysis
- Trend Micro Vision One EDR
- CloudSEK
- Burp Suite
- RustScan
- Google Cloud Platform (GCP)
- AWS
- Azure
- Terraform (IaC)
- ISO 27001/27017
- PCI DSS v4
- NIST 800-53
- CIS Benchmarks
- Third-Party Risk Management (TPRM)
- Python
- C
- C
- VMware
- UTM
- Hyper-V
- MacOS
- Linux
- Windows Server
- Active Directory
Certification
- Google Cloud Certified - Associate Cloud Engineer (ACE), Google Cloud, 2025-09-01
- Google Cloud Certified - Cloud Digital Leader (CDL), Google Cloud, 2025-04-01
- Certified in Cybersecurity (CC), ISC2, 2024-12-01
Education
Master of Science - Information Security
07.2026
Bachelor of Science - Computer Science (Honours)
09.2023
Skills Strengths
IBM QRadar SIEM, Cortex XSOAR, Threat Intel & Analysis, Trend Micro Vision One EDR, CloudSEK, Burp Suite, RustScan, Google Cloud Platform (GCP), AWS, Azure, Terraform (IaC), ISO 27001/27017, PCI DSS v4, NIST 800-53, CIS Benchmarks, Third-Party Risk Management (TPRM), Python, C, C++, VMware, UTM, Hyper-V, macOS, Linux, Windows Server, Active Directory
Websites
Work Preference
Work Type
Full TimeLocation Preference
On-SiteRemoteHybridTimeline
Cybersecurity Analyst - Deloitte India
09.2024 - Current
Risk Advisory Intern (Cloud Security) - Deloitte India
02.2024 - 08.2024
Indira Gandhi National Open University (IGNOU) - Master of Science, Information Security
Maharaja Bir Bikram University - Bachelor of Science, Computer Science (Honours)