Sruthi Susan Shyju
Bengaluru
Summary
Dynamic Cyber Security professional with proven expertise at Cyberproof in Incident Response and Endpoint Security. Demonstrated leadership in managing EDR/XDR platforms, enhancing security posture, and resolving critical incidents. Skilled in Microsoft DLP and fostering collaboration across teams to drive impactful security solutions. Committed to delivering results and optimizing operational efficiency.
Overview
12
12
years of professional experience
1
1
Certification
Work History
Senior Security Specialist
LTI Mindtree
Bengaluru
09.2025 - Current
- Define and implement endpoint security roadmap.
- Own EDR platforms (CrowdStrike, SentinelOne, MS Defender, etc.).
- Oversee threat hunting, incident response, and endpoint isolation playbooks.
- Integrate EDR with SIEM, SOAR, and email security solutions.
- Mentor SOC analysts and track KPIs (MTTD, MTTR, detection accuracy). Analyzed security incidents to identify vulnerabilities and risks.
- Collaborated with cross-functional teams to enhance overall security posture.
- Trained staff on best practices for information security awareness.
- Implemented advanced security technologies for threat detection and response.
- Led incident response efforts during security breaches and threats.
- Researched emerging cyber threats, viruses, malware and other malicious software programs.
- Performed regular system scans to detect any suspicious activity or malicious code.
- Analyzed logs from various sources such as firewall logs, web server logs, anti-virus logs, to identify anomalies or suspicious activities.
- Provided training on proper use of computer systems to reduce risks associated with user error or negligence.
- Developed and implemented security policies, procedures, standards and guidelines.
- Provided technical support related to information security issues.
- Documented all changes made to the company's information systems environment in accordance with change control procedures.
- Maintained up-to-date knowledge of latest developments in information technology and cybersecurity trends.
- Ran routine security checks, suggesting improvements as necessary.
- Completed day-to-day duties accurately and efficiently.
- Worked successfully with diverse group of coworkers to accomplish goals and address issues related to our products and services.
- Promoted high customer satisfaction by resolving problems with knowledgeable and friendly service.
MXDR Platform Specialist
Cyberproof
05.2021 - Current
- Managed MXDR platforms such as Crowdstrike Falcon, Cybereason, Microsoft Defender, E5 stack, Sentinel-One, and Carbon Black.
- Configured policies according to standard requirements and tailored them to client environments.
- Validated and prepared proof of concepts in alignment with market standards.
- Led the team in onboarding implementation of EDR/XDR platforms and ensured smooth BAU of platform management.
- Established and maintained the EDR platform, adhering to best practices and aligning with customer environment.
- Proactively recommended new features released by vendors to clients.
- Managed P1 and P2 issues around the clock, ensuring swift resolution.
- Collaborated with the sales and marketing team to comprehend RFPs, provide effort estimations, and define project scope.
- Demonstrated expertise in Microsoft 365, Azure, and other components of the Microsoft E5 stack, with a strong emphasis on security and compliance requirements.
- Showcased excellent problem-solving skills and meticulous attention to detail.
- Exhibited strong communication skills, fostering effective collaboration with other teams.
- Generated weekly and monthly reports pertaining to Sensors' health and detections.
- Created exclusions and custom rules to optimize investigation efficiency by reducing false positives.
- Troubleshooted platform issues related to Sensors to ensure seamless operations.
- Regularly uploaded IOCs related to active malware in the wild and swept the network.
- Developed Playbooks for the automation of actions, streamlining operational processes.
Cyber Security Engineer
Cyberproof
04.2020 - 04.2021
- Management of Security tools such as Cylance protect, Cybereason, CyberArk, Mimecast, Cloudflare and Palo Alto firewall/Prisma.
- Monitor cloud security platform such as Azure and AWS, performing threat simulations to detect possible risks, monitoring security access, providing security recommendations and work with the infrastructure team towards fixing the issues.
- Worked on Mimecast and Tessian to investigate suspicious/malicious emails.
- Assisting in proof of concept evaluations of new security devices and services.
- Perform deployment activity, upgradation of Cybereason Endpoint tool across install base and mitigate in case of failure.
- Monitor, analyze and resolve the security alerts and incidents on daily basis.
- Document all activities during an incident and providing leadership with status updates during the life cycle of the incident.
- Provide latest security advisory alerts to customers based on the assets list provided by the customer.
Cyber Security Incident Response Analyst
UST GLOBAL TECHNOLOGY SERVICES
08.2018 - 01.2020
- Management of Security tools such as Cylance Protect, McAfee EPO Server, Thycotic PAM Solution and Symantec DLP.
- Performed real-time monitoring, investigation, analysis, reporting and escalations of security events.
- Cylance protect Implementation, support and service validation.
- Perform deployment activity, upgradation of McAfee Endpoint tool across install base and mitigate in case of failure.
- Generate Endpoint Compliance Reports regularly and present it to the Management to define compliance and coverage.
- As part of an Incremental build, built Virtual Machines in the production environment.
- Using the YARA tool, trying to identify the pieces of malware if any and proactively monitoring the infra using existing IOCs. File analysis and email analysis.
Cyber Security Incident Response Analyst
Enmarq Technologies
Bangalore
11.2017 - 08.2018
- Managing client phishing mailbox and corresponding phishing investigations using FireEye NX and Cacti.
- Investigation of various use cases including security violations, attempts to gain unauthorized access and brute force login failure cases using Microsoft Azure.
- Handling virus infections and Ransomware (WannaCry) cases using McAfee EPO etc.
- Coordinating responses with the client Incident response team on high and critical incidents.
- Create weekly and monthly reports related to incidents handled.
- Documenting SOP's and play books for security incident management.
- Collecting required evidence for incident response investigations.
Security Analyst
EY (Ernst & Young) LLP
Trivandrum
03.2014 - 03.2017
- Experience in access monitoring and Video surveillance tools - American Dynamics Victor, Ccure 9000 monitoring station and Administration panel.
- Worked on global projects that oversees security monitoring for US and Canada.
- Real time incident management and reporting.
- Activation of security smart cards, database management and biometric- enrolment.
- Worked with the Security operations team to integrate Physical security devices into SIEM devices primarily Splunk.
- Triaging, Assessing and investigating alerts and filtering true positives.
- Performed risk analyses to identify appropriate security countermeasures.
- Analyzing security incidents and liaising with customers on security instructions.
Education
B.Tech/B.E. -
Noorul Islam university
01.2013
12th -
Kerala, English
01.2009
10th -
Kerala, English
01.2007
Skills
- Information Security
- Incident Response
- Technical Leadership
- Endpoint Security
- Extended Detection and Response (Xdr)
- Enterprise Security
- Microsoft DLP
Certification
Employment Enhancement Certification in Cyber Security
Projects
Computer Security Incident Response Team, 2616 Days, Managing client phishing mailbox and corresponding phishing investigations using FireEye NX and Cacti., Investigation of various use cases including security violations, attempts to gain unauthorized access and brute force login failure cases using Microsoft Azure., Handling virus infection and Ransomware (WannaCry) cases using McAfee EPO etc., Coordinating responses with the client Incident response team., Deliver weekly and monthly reports related to incidents handled., Documenting processes and playbooks for security incident management., Collecting required forensic and log evidence for incident response investigations., Supporting IT teams in managing security incidents with ITSM solutions.
Languages
- English
- Hindi
- Tamil
Timeline
Senior Security Specialist
LTI Mindtree
09.2025 - Current
MXDR Platform Specialist
Cyberproof
05.2021 - Current
Cyber Security Engineer
Cyberproof
04.2020 - 04.2021
Cyber Security Incident Response Analyst
UST GLOBAL TECHNOLOGY SERVICES
08.2018 - 01.2020
Cyber Security Incident Response Analyst
Enmarq Technologies
11.2017 - 08.2018
Security Analyst
EY (Ernst & Young) LLP
03.2014 - 03.2017
B.Tech/B.E. -
Noorul Islam university
12th -
Kerala, English
10th -
Kerala, English