Summary
Overview
Work History
Education
Skills
Websites
Certification
Timeline
Generic

Susmitha Kundum

Hyderabad

Summary

Dynamic SOC Technical Lead with extensive experience at Tata Consultancy Services, excelling in incident response strategies and threat hunting. Achieved seamless integration of 4000+ devices into SIEM, enhancing security visibility. Proven ability to optimize workflows and train teams, driving operational efficiency and fostering collaboration in high-stakes environments.

Overview

15
15
years of professional experience
1
1
Certification

Work History

SOC Technical Lead

Tata Consultancy Services (TCS)
Hyderabad
07.2018 - Current
  • Designed and implemented centralized SIEM solutions for large-scale infrastructures, handling environments with 600 to 9000+ devices.
  • Successfully executed 4000+ device integrations, ensuring seamless log ingestion and enhanced security visibility.
  • Performed SIEM capacity planning, performance tuning, and system optimization to ensure scalability and high availability.
  • Developed and implemented 30+ correlation rules, watchlists, and detection use cases, significantly improving threat detection and reducing false positives.
  • Implemented automation workflows and SOAR-based playbooks for incident response, reducing analyst workload by 30%.
  • Integrated SIEM with external systems including ServiceNow, SMTP, and Firewalls, enabling automated alerting and response mechanisms.
  • Acted as technical escalation point for SIEM engineers, resolving critical issues related to WMI, log collection, and agent failures.
  • Managed SIEM infrastructure (appliances & virtual environments) including OS upgrades, patching, and maintenance.
  • Optimized SOC alert workflows and monitoring processes to enhance detection accuracy and analyst efficiency.
  • Led security investigations, threat hunting, incident response, and digital forensics analysis.
  • Presented SOC performance metrics and reports to leadership for improved security visibility and decision-making.
  • Conducted training sessions for L1 analysts, enhancing team capability in SIEM operations and incident handling.
  • Managed vulnerability advisories and zero-day alerts, ensuring timely incident response and mitigation planning.
  • Collaborated with security vendors and stakeholders to adopt new SIEM features and improve SOC capabilities.
  • Led client onboarding and transition for Managed Security Services as the primary SIEM technical contact for enterprise and government environments.

Security Analyst

Tech Mahindra
Hyderabad
09.2014 - 07.2018
  • Monitored security alerts and conducted incident analysis 24/7 using FortiSIEM and ArcSight, enabling timely threat detection and response.
  • Investigated SIEM alerts, security incidents, and anomalous activities through in-depth log analysis and event correlation.
  • Conducted malware analysis and root cause investigations, developing SOPs and procedures for effective detection, reporting, and containment.
  • Administered and configured Cisco IronPort Email Security Gateway, strengthening protection against spam, phishing, and malware-based threats.
  • Analyzed phishing and malicious emails using email header analysis, URL inspection, and threat intelligence techniques.
  • Implemented and optimized anti-spam, anti-malware, and content filtering policies, improving email security posture.
  • Integrated Cisco IronPort logs with SIEM platforms (FortiSIEM / ArcSight) to enhance centralized monitoring and visibility of security incidents.
  • Performed threat hunting and malware analysis using tools such as Cuckoo Sandbox and ANY.RUN, identifying hidden threats and enhancing detection capabilities.
  • Tuned correlation rules and security policies, reducing false positives and improving alert quality for SOC operations.

Process Associate

Genpact
Hyderabad
01.2011 - 01.2014
  • Oversaw end-to-end collections lifecycle, including customer tracing, follow-ups, and recovery of outstanding dues.
  • Managed delinquent accounts through structured repayment plans and recovery strategies, enhancing collection outcomes.
  • Conducted account analysis and risk assessment to identify payment issues and recommend resolutions.
  • Collaborated with cross-functional teams to streamline processes, reducing aging balances and improving operational efficiency.
  • Strengthened communication and negotiation skills through regular customer interactions, delivering tailored financial solutions.

Education

Bachelor of Science - Computers

Vasundhara Women's Degree College
Hyderabad

Skills

  • Incident response strategies
  • Threat hunting
  • Email security solutions
  • Web filtering technologies
  • Security investigations
  • Vulnerability assessment
  • MITRE ATT&CK framework
  • NIST compliance
  • Cybersecurity frameworks
  • FortiSIEM and FortiSOAR
  • ArcSight
  • QRadar security monitoring
  • Splunk analytics
  • Virtualization technologies
  • Cisco IronPort
  • Security certifications
  • Symantec Endpoint Protection
  • VMware ESXi management
  • System integration
  • Stakeholder reporting
  • Security investigations
  • System integration
  • Cybersecurity frameworks

Websites

Certification

  • Certified Ethical Hacker (CEH) v12
  • Fortinet NSE 5 - FortiSIEM
  • VMware Certified Professional - Data Center Virtualization (VCP-DCV)

Timeline

SOC Technical Lead

Tata Consultancy Services (TCS)
07.2018 - Current

Security Analyst

Tech Mahindra
09.2014 - 07.2018

Process Associate

Genpact
01.2011 - 01.2014

Bachelor of Science - Computers

Vasundhara Women's Degree College

Similar Profiles

CREATE PROFILE
Susmitha Kundum