Siva Mummidi
Hyderabad
Summary
Proficient Security Analyst with 6.5 years of experience. Installed and configured software protecting against viruses, malware and network security breaches. Investigated and remedied vulnerabilities potentially exposing sensitive data to unauthorized access, instructing clients on proper procedures to protect company systems. Dedicated expert implementing cutting-edge security solutions.
Overview
7
7
years of professional experience
1
1
Certification
Work History
Sr Security Analyst
Micron Technologies
Hyderabad
11.2022 - Current
- Engaging in incident response and malware analysis while serving as a senior security analyst
- Utilizing SIEM tools like Splunk and additional EDRs like Digital Guardian, Sentinel One, and Microsoft Defender ATP, we are developing new use cases and doing threat hunting.
- Supporting the L2 team with important research and exploring new educational opportunities
- Charged with both incident analysis and validation. For remediation based on SLA expectations, escalate high-severity incidents to L3/Customer.
- Updating the knowledge base, escalation matrix, patch installation, and general SOC administration; reporting incidents and alerting the management if something seems off.
- Performed vulnerability assessments to identify threats and weaknesses in the system infrastructure.
- Identified possible "leakage" of company proprietary data to unauthorized resources and analyzed past performance data to enhance operations.
- Implemented security measures such as firewalls, encryption technologies, intrusion detection systems, and other network appliances.
Solution Delivery Lead
Deloitte Touch & Tohmatsu India LLP
Bengaluru
12.2020 - 11.2022
- Analyzed malware samples using automated tools such as VirusTotal or Cuckoo Sandbox to determine its intent and possible methods of mitigation and prevention.
- Responded promptly to all reported security incidents by investigating them thoroughly and taking appropriate action where necessary.
- Designed and implemented plans to secure computer files against breach, destruction, or accidental modification.
- Implemented firewalls, intrusion detection systems, anti-virus software and other related technology to protect organizational assets.
- Mentored junior employees in departmental activities and procedures.
- Created detailed reports outlining current cyber security measures in place across the organization.
- Investigated computer security incidents as they occurred, analyzed root cause of incidents, documented findings and recommended corrective actions.
- Collaborated with cross-functional team to define features and build powerful and easy-to-use products and customer-facing workflow tools.
Cyber Adviser
PwC India LLP
Bengaluru
01.2020 - 11.2020
- Conduct thorough investigations into suspicious and malicious activities
utilizing SentinelOne, performing in-depth triage analysis to identify attacker
footholds, active malware, compromised user accounts, and other indicators
of compromise. - Perform comprehensive analysis of diverse incidents such as Ransomware,
Malware, Exploits, BEC, and additional cyber-attacks, effectively determining
appropriate course of action to mitigate risks and safeguard against potential
threats. - Deployment of Arisnal Storyline Active-Response (STAR) rules, utilizing
advanced Threat Hunting techniques to proactively detect and neutralize
threats linked to threat actor activities and breaches. - Conduct detailed host investigations using Windows event logs, Netstat
analysis, remote endpoint access and perform Forensics. - Maintain comprehensive documentation for SOC procedures, S1 deployment,
support, and troubleshooting, while generating daily progress reports for S1
deployment during engagements. - Increased internal/external customer satisfaction by 40% due to creating
detection rules in Sentinel One EDR.
Associate Security Analyst
NTT Security India Pvt Ltd
Bengaluru
01.2019 - 12.2019
- Implemented network security measures such as firewalls, intrusion detection systems, antivirus software.
- Evaluated evidence of violations in company security policies to identify violators and investigate incidents, instructing employees on correct procedures.
- Monitored alerts generated by intrusion detection systems to identify potential attacks against corporate networks.
- Reviewed network traffic logs to identify signs of unauthorized access and underlying network vulnerabilities, explaining breaches and surrounding conditions to client.
- Identified possible "leakage" of company proprietary data to unauthorized resources and analyzed past performance data to enhance operations.
- Investigated information security breaches to identify vulnerabilities and evaluate damage.
Information Security Analyst
Reliance Industries
Mumbai
08.2016 - 12.2018
- Actively monitor, analyze, and resolve security alerts and incidents on a daily basis.
- Take responsibility for training the L1 team and conducting reviews of their work.
Provide assistance to the triage team in security analysis and incident - Alleviated leakage of company proprietary data to unauthorized resources and analyzed past performance data to enhance operations.
- Provide support in the operations and management of defense systems such as Fireeye (ETP, HX, and Helix) and Falcon - Crowdstrike.
- Conduct in-depth forensics analysis
Education
B Tech - Electrical, Electronics And Communications Engineering
AIIT
Hyderabad05-2016
Skills
- Threat Hunting
- Threat Intelligence
- New Use Case creation
- Malware Analysis
- Malware Sandboxing
- Vulnerability Assessment
- Phishing Email Investigations & Conducting Campaigns
- Purple Team Activity
- SOAR Development
Tools
- SIEM: Splunk, LogRthyam, NTT ESM, McAfee ESM, FireEye Helix
- EDR: Crowd Strike, Carbon Black, Sentinel One, MicroSoft Defender ATP, Cortex XSoar, FireEye EX, Digital Guardian, Cisco AMP
- AV: TrendMicro NXG, Symantec AV, FireEye AV, McAfee AV
- Proxy: Zsclare, Symantec Wss, Bluecoat, Palo Alto UTM, ForcePoint Proxy
- Firewall: Palo Alto, Cisco, Check Point, Fortinet
- Email Gateway: O365 Email Security, Iron Port, PoofPoint, Dark Trace Email Security
- Networking Tools: Dark Trace, FireEye NX
- DLP: McAfee CASB, Zscaler DLP, Microsoft Purview, Symantec DLP
Certification
- AZ-900
- AZ-500
- SC-200
- CEH, CHFI
- NSE 1 & 2
- FireEye
Accomplishments
- Got two spot awards in Deloitte
Timeline
Sr Security Analyst
Micron Technologies
11.2022 - Current
Solution Delivery Lead
Deloitte Touch & Tohmatsu India LLP
12.2020 - 11.2022
Cyber Adviser
PwC India LLP
01.2020 - 11.2020
Associate Security Analyst
NTT Security India Pvt Ltd
01.2019 - 12.2019
Information Security Analyst
Reliance Industries
08.2016 - 12.2018
B Tech - Electrical, Electronics And Communications Engineering
AIIT
Similar Profiles
Satvik P MalandSatvik P Maland
SR. OPERATION'S ANALYST (Channel) at Micron TechnologiesSR. OPERATION'S ANALYST (Channel) at Micron Technologies
Satvik MalandSatvik Maland
Operation's Analyst at Micron TechnologiesOperation's Analyst at Micron Technologies
Rishita RajRishita Raj
IT Project Manager at Micron TechnologiesIT Project Manager at Micron Technologies
Meghana AcharMeghana Achar
Lead Business Analyst / Product Owner at Micron TechnologiesLead Business Analyst / Product Owner at Micron Technologies
PETLA VENKATA DHATRI VISWANADHPETLA VENKATA DHATRI VISWANADH
Mechanical Engineering Intern at JDK DronesMechanical Engineering Intern at JDK Drones