SRINIVAS PAIDA
Bangalore
Summary
Experienced Information Security Engineer with over 5 years in multi-industry roles. Expertise in AWS and Azure cloud security services, endpoint security solutions like MDE Defender 365, Crowdstrike Falcon, SIEM Splunk , Sentinel SOAR,CSPM Prisma and Email Security O365 MDO and Proofpoint. Skilled in vulnerability Management using Nessus and Qualys and incident management. Proficient in SOC2, PCI DSS, GDPR, HIPAA frameworks. Strong skills in GitHub, Jira, Confluence, and MITRE ATT&CK framework mapping , Application Penetration testing using Burpsuite and Kali Linux.
Overview
5
5
years of professional experience
1
1
Certification
Work History
Cloud Security Engineer
Mphasis
12.2019 - Current
- Investigated AWS Cloud Security alerts to mitigate potential threats on the cloud environment to increase the Security Score
- Performed log monitoring from AWS cloud sources such as AWS Guard duty
- Successfully integrated log sources into CSPM
- Hands on experience in monitoring alerts in CSPM Prisma Cloud Investigating Config and Cloud audit events and assign to right team for remediation
- Performed real-time monitoring, investigating, analysis, remediation and escalation of incidents/alert triggered on Splunk SIEM from Enterprise and AWS cloud networks
- Handling the escalated incidents from the L1 analyst and creating tickets and coordinating with respective teams on various technical issues
- Log monitoring, analyzing alerts, Anomaly Detections, Known Botnet traffic detections, creating reports on traffic that are notified which are used to fine-tune the policies
- Performed continuous logs or data flows monitoring from various security devices in the infrastructure such as NexGen firewalls, EDR, windows, Email security server and AWS cloud
- Worked with the network team to take the required actions to contain/stop the suspicious communication
- Identifying the true positive incidents and network anomalies including root cause analysis by following the structured process of Incident Management
- Proactively monitored the dashboards to identify suspicious activities on the infrastructure
- Creating customized dashboards and reports
- Preparing and presenting daily, weekly & monthly incident reports
- Closely worked with the admin of SOC while investigating the True positive incidents
- As a part of EDR, monitored and investigated the detections triggered on the MDE console from the endpoint machines and mitigating them to secure the assets
- Acknowledged tickets from the L1 EDR team, internally creating tickets regular follow-ups till the ticket closure
- Performed analysis of spam and phishing emails that are triggered on SIEM from Proofpoint there by coordinating with the respective asset owners on suspicious emails and provided necessary recommendations
- Blocking spam emails in Proofpoint tool Worked on VM Tools (NESSUS) to find the vulnerabilities on the machines within the infrastructure
- Responsible for conducting vulnerability assessments for networks, applications and operating systems Using automated tool Nessus to pinpoint vulnerabilities
- Identifying critical flaws in applications and systems that cyber attackers could exploit
- Preparing reports and working with respective teams and assist with the remediation’s of the identified vulnerabilities.
Education
MBA -
ANR Collage
Gudivada05.2012
Skills
- SIEM : Splunk ES, Microsoft Sentinel
- Cloud Security : AWS cloud Services, Azure cloud
- Endpoint Security : MDE, Crowdstrike Falcon XDR
- AWS Cloud Security : CloudTrail, CloudWatch, GuardDuty
- Vulnerability Management : Nessus VM
- Cloud security CSPM Prisma Cloud, Defender for Cloud
- Email security : Proofpoint, Phishing Email analysis
- Threat Intelligence : Recorded future, Virus total,
- Ticketing Tool (Case Management) : JIRA, ServiceNow
- Data Loss Prevention : Microsoft DLP, MIP
- Cisco ASA, Palo Alto Networks, Check Point, Juniper, Fortinet)VPN IPsec, SSL/TLS, VPN concentrators)TCP/IP, routing, switching
- BurpSuite, Kali Linux , NMAP, OWASP
Certification
- CCNA R&S
- CEH certified from EC-Council.
- Certified Splunk User
- AZ-900: Microsoft Azure Fundamentals.
- SC 200: Security Operations Analyst.
Timeline
Cloud Security Engineer
Mphasis
12.2019 - Current
MBA -
ANR Collage
Similar Profiles
PHANINDRA KUMAR CHINTAPALLIPHANINDRA KUMAR CHINTAPALLI
AI/ML Solution Delivery Lead at MphasisAI/ML Solution Delivery Lead at Mphasis
Joel Joy GeorgeJoel Joy George
Senior Scrum Master at MphasisSenior Scrum Master at Mphasis
Naveen Kumar MarrapuNaveen Kumar Marrapu
Assoc QA automation engineer at MphasisAssoc QA automation engineer at Mphasis
Linda FortenberryLinda Fortenberry
Senior Mortgage Underwriter at MphasisSenior Mortgage Underwriter at Mphasis
Sangeetha NaikSangeetha Naik
Lead Software Engineer at Wells FargoLead Software Engineer at Wells Fargo