SUSHMITA SHETTY
Hyderabad
Summary
MDR Threat Analyst 3 with over 5+ years of expertise in Incident Management across various events detected on EDR and SIEM platforms. Proficient in leadership, incident handling/reporting, and proactive mitigation of security threats through security event analysis.
Overview
5
5
years of professional experience
1
1
Certification
Work History
MDR Threat Analyst 3 (Shift Lead)
Sophos
Bangalore
03.2022 - Current
- Led, responded to, and remediated active incidents for enterprise customers.
• Served as the primary point of contact for clients and as Incident Response Lead for the MDR team during active incidents.
• Performed advanced incident response analysis to uncover initial access points, lateral movement, privilege escalation attempts, and data exfiltration, driving effective containment and remediation.
• Prepared comprehensive incident reports, including executive summaries, incident timelines, and Indicators of Compromise (IOC) collection for enterprise customers.
• Mentoring and leading a team of 10 MDR operations analysts, enhancing team capabilities.
• Possess strong knowledge of the Cyber Kill Chain and the MITRE ATT&CK framework, with extensive experience leveraging both for threat detection, analysis, and response.
• Conducted root cause analysis and performed in-depth host- and network-based forensics across Windows, Mac, Linux, and cloud environments (M365, AWS, Google Workspace).
• Executed proactive threat hunts within client estates to identify, isolate, and neutralize previously undetected malicious activity, safeguarding critical assets.
• Conducted continuous 24/7 threat analysis by triaging, investigating, and neutralizing risks in a high-tempo monitoring environment to ensure comprehensive client protection.
• Handled critical severity escalations and advised junior threat analysts on investigation procedures.
• Developed incident response playbooks and designed investigation templates for threat analysts to improve documentation and efficiency.
Technical Security Lead
Netmonastery Security Pvt. Ltd.
Mumbai
02.2020 - 02.2022
- Simulation, testing, validation of the threat Usecases.
- Creation of usecases based on Mitre ATT&CK framework.
- Working on ticketing tools such as JIRA, Freshdesk.
- Deploying SIEM and integrating new devices with the SIEM.
- Escalate product/process gaps as and when encountered.
- Detecting and analyzing cyber-threat activity for the identification of threats and malware in real-time.
- Create Reports, Alerts and dashboards for Security Monitoring.
- Guide Operation Engineers(OE) in performing the tasks.
- Design, develop and create correlation rules based on SQL and DQL query language within the SIEM platform.
- Hands on experience with linux/Ubuntu OS and network troubleshooting.
- On-boarding device logs with SIEM.
- Assign different tasks/troubleshooting sessions to Operation Engineer(OE)
- Check / Take in charge of on-going troubleshooting sessions if OE is unable to perform the same.
- Hands on Troubleshooting experience and solve issues in SIEM tool DNIF.
Education
Master of Science - Information Technology with Cyber Security Specialization
Usha Pravin Gandhi College of Science
Vile Parle, Maharashtra, India01.2021
Bachelor of Science - Information Technology
SM Shetty College Of Science And Commerce
Powai, Maharashtra, India01.2019
HSC - Science
Bhavans College of Science, Commerce and Arts
Andheri West, Maharashtra, India01.2016
SSC -
St. Xavier's High School
Andheri East, Maharashtra, India01.2014
Skills
- Incident Response
- MITRE Attack Framework
- Threat Hunting
- System Administration
- Risk Analysis
- Problem Solving
- Leadership
- Log Analysis
- SQL Query
- Root cause analysis
Certification
- CompTIA CySA+ CS0-003.
- ICSI | CNSS Certified Network Security Specialist Course
TOOLS AND TECHNOLOGIES
- SIEM: Splunk, DNIF
- XDR: Sophos XDR
- NDR: Sophos NDR
- Endpoint Security: Sophos EDR
- Cloud & Network Security: AWS, Sophos Firewall
- Email Security: Sophos Email Security
Languages
English
Proficient (C2)
C2
Hindi
Proficient (C2)
C2
kannada
Advanced (C1)
C1
Published Article
https://news.sophos.com/en-us/2025/05/09/lumma-stealer-coming-and-going/?amp=1#top
Timeline
MDR Threat Analyst 3 (Shift Lead)
Sophos
03.2022 - Current
Technical Security Lead
Netmonastery Security Pvt. Ltd.
02.2020 - 02.2022
Master of Science - Information Technology with Cyber Security Specialization
Usha Pravin Gandhi College of Science
Bachelor of Science - Information Technology
SM Shetty College Of Science And Commerce
HSC - Science
Bhavans College of Science, Commerce and Arts
SSC -
St. Xavier's High School
Similar Profiles
Carlos D. BonillaCarlos D. Bonilla
Senior Sales Operations Analyst – Global Sales Operations & Reporting Analytics at SophosSenior Sales Operations Analyst – Global Sales Operations & Reporting Analytics at Sophos
ALIASGAR CHATIWALAALIASGAR CHATIWALA
Network Security Engineer (L1-2) at SophosNetwork Security Engineer (L1-2) at Sophos
Shiva BhaviniShiva Bhavini
Senior Engineering Manager at SophosSenior Engineering Manager at Sophos
Shiva BhaviniShiva Bhavini
Senior Engineering Manager at SophosSenior Engineering Manager at Sophos
Suresh BhumireddySuresh Bhumireddy
Technical Specialist at Bosch Global Software TechnologiesTechnical Specialist at Bosch Global Software Technologies