Summary
Overview
Work History
Education
Skills
Timeline
Generic

Sukanya K.

Security Analyst
Bangalore

Summary

Experienced Cyber Security professional with 5.6 years of expertise as a Security Analyst, specializing in Vulnerability Assessment and Threat Modeling. Skilled in identifying and mitigating security risks, and committed to maintaining the highest standards of data security. Seeking to leverage my knowledge and hands-on experience to enhance cybersecurity for an organization. Cybersecurity Specialist with proficiency in online security research, planning, execution and maintenance. Skilled at training internal users on security procedures and preventive measures.

Overview

7
7
years of professional experience
4
4
years of post-secondary education
3
3
Languages

Work History

Security Analyst

Fruition Ecommerce Consultancies Private Limited
Remote
02.2024 - Current
  • Proficient in conducting comprehensive threat modeling using the STRIDE framework (Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, and Elevation of Privilege) to identify potential vulnerabilities and security weaknesses in systems and applications.
  • Experienced in Web Application Firewall (WAF) monitoring to detect and prevent malicious activities targeting web applications, ensuring continuous protection against threats.
  • Skilled in utilizing Splunk monitoring for advanced threat detection, log analysis, and real-time incident tracking, enhancing visibility and response to security events.
  • Proficient in leveraging the MITRE ATT&CK Framework to analyze, understand, and defend against diverse cyber threats and attack techniques, ensuring a robust security posture.
  • Successfully identified and assessed vulnerabilities within network infrastructure, web applications, and software systems, enabling timely remediation, and improved security.
  • Conducted in-depth security assessments, penetration testing, and risk analysis to evaluate the potential impact and likelihood of security risks.
  • Collaborated with cross-functional teams to prioritize and remediate vulnerabilities, providing actionable recommendations for enhancing security measures.
  • Developed and maintained threat models, attack matrices, and risk assessments to support proactive security measures, and strategic decision-making.
  • Proficient in leveraging security assessment tools and methodologies, such as Nessus, Qualys, Nmap, and OWASP, to scan, analyze, and report on vulnerabilities.
  • Created and delivered detailed vulnerability assessment reports, including risk analysis, severity ratings, and mitigation strategies, for stakeholders and management.
    Stayed informed on the latest cybersecurity threats and trends to align security measures with industry best practices.
  • Contributed to the development and continuous improvement of security policies, procedures, and awareness programs to promote a culture of cybersecurity.
    Played a pivotal role in incident response by identifying and mitigating security breaches to minimize potential damage and data loss.
  • Collaborated in implementing security controls, such as firewalls, intrusion detection systems, encryption, and WAF solutions, to strengthen the organization's overall security posture.

Sr. Security Analyst

L&T
Bengaluru
08.2021 - 07.2022
  • Proficient in conducting comprehensive threat modeling using STRIDE (Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, and Elevation of Privilege) to identify potential vulnerabilities and security weaknesses in systems and applications
  • Expertise in utilizing the MITRE ATT&CK Framework to analyze, understand, and defend against various cyber threats and attack techniques, ensuring robust security posture
  • Successfully identified and assessed vulnerabilities within network infrastructure, web applications, and software systems, leading to timely remediation and enhanced security
  • Conducted in-depth security assessments, penetration testing, and risk analysis to evaluate potential impact and likelihood of security risks
  • Collaborated with cross-functional teams to prioritize and remediate vulnerabilities, providing actionable recommendations for improving security measures
  • Developed and maintained threat models, attack matrices, and risk assessments to guide proactive security measures and strategic decision-making
  • Proficient in using security assessment tools and methodologies, such as Nessus, Qualys, Nmap, and OWASP, to scan, analyze, and report on vulnerabilities
  • Created and delivered detailed vulnerability assessment reports, including risk analysis, severity ratings, and mitigation strategies, to stakeholders and management
  • Stayed up-to-date with the latest cybersecurity threats and trends, ensuring that security measures align with industry best practices
  • Continuously contributed to the development of security policies, procedures, and awareness programs to foster a culture of cybersecurity within the organization
  • Played a key role in incident response, assisting in identifying and mitigating security breaches, minimizing potential damage and data loss
  • Collaborated in the implementation of security controls, such as firewalls, intrusion detection systems, and encryption, to enhance the overall security posture of the organization

Security Analyst

Wipro Limited
Bengaluru
11.2017 - 08.2021
  • Collaborative experience working closely with cross functional teams to address and remediate vulnerabilities
  • Strong understanding of manual testing and analysis to validate and prioritize findings from automated scans
  • Expertise in developing and maintaining a comprehensive Vulnerability Management framework
  • Knowledge of industry standards and best practices for vulnerability assessment and management
  • Proficient in managing and executing vulnerability assessments as a core daily responsibility
  • Proven ability to assess and prioritize vulnerabilities based on potential impact and exploitability
  • Skilled in using a range of automated scanning tools to identify vulnerabilities efficiently
  • Strong commitment to ensuring the security and resilience of systems and data through continuous vulnerability assessment and mitigation efforts
  • Experience in creating and maintaining documentation, reports, and metrics related to vulnerability assessments
  • Familiar with tracking and managing vulnerabilities throughout their lifecycle

Education

Bachelore of Technology - ECE

Global College of Engineering & Technologies
01.2012 - 01.2016

Skills

Vulnerability Assessment

Threat modeling

Security Assessment

Endpoint security

Code Review

Nessus

Fortify

BurpSuite

Kali Linux

Metasploit

Microsoft Threat modeler

IrisuRisk

Opensourse tools

JIRA

ServiceNow

Timeline

Security Analyst

Fruition Ecommerce Consultancies Private Limited
02.2024 - Current

Sr. Security Analyst

L&T
08.2021 - 07.2022

Security Analyst

Wipro Limited
11.2017 - 08.2021

Bachelore of Technology - ECE

Global College of Engineering & Technologies
01.2012 - 01.2016

Similar Profiles

  • Varun Rana

    Varun RanaVarun Rana

    Senior Software Engineer at Manash Ecommerce Private Limited (purplle.com)Senior Software Engineer at Manash Ecommerce Private Limited (purplle.com)

    View Profile
  • Daniel Olawale

    Daniel OlawaleDaniel Olawale

    Software Developer at 9xb (Ecommerce) LimitedSoftware Developer at 9xb (Ecommerce) Limited

    View Profile
  • Wendy Tarin Lopez

    Wendy Tarin LopezWendy Tarin Lopez

    Trade Coordinator at Consultancies And ConsultanciesTrade Coordinator at Consultancies And Consultancies

    View Profile
Sukanya K.Security Analyst