Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

VENKATESH G

Bangalore

Summary

Security Analyst with 4 years of experience in the field of cybersecurity. Proficient in a wide range of security domains, including EDR, incident response, SIEM tools, malware analysis, vulnerability management, email security, network security, conditional access, and identity access management. Adept at proactively identifying and mitigating security threats and experienced in orchestrating swift and effective incident response strategies.

Overview

5
5
years of professional experience
1
1
Certification

Work History

Senior Security Analyst

Aadit Technologies
Bangalore
05.2023 - Current
  • Established user accounts and roles within team-based security frameworks, enhancing team productivity and streamlining access management processes.
  • Implemented Light House functionality within Microsoft Sentinel to establish secure and streamlined access to client environments.
  • Configured and managed firewall log forwarding to a Syslog server over TLS, enhancing real-time monitoring capabilities and facilitating comprehensive analysis of network traffic.
  • Engaged in firewall support calls, providing troubleshooting assistance for Syslog server issues.
  • Installed and configured OMS agents on DNS servers and On-Premises Servers, enhancing visibility into system activities and supporting comprehensive security monitoring.
  • Monitored the health status of data connectors in Microsoft Sentinel for effective data monitoring and analysis.
  • Managed and optimized Azure Network Security Group (NSG) configurations, ensuring adherence to security standards by modifying both inbound and outbound rules to enhance network security posture.
  • Maintained and fine-tuned SIEM systems to ensure optimal performance and accuracy, adjusting alert thresholds and rules as needed.
  • Analyzed firewall logs to identify patterns, anomalies, and security events indicating unauthorized access or attacks.
  • Reviewed and managed access to cloud apps in Defender for cloud apps, and shared weekly reports derived from workbooks.
  • Handled Microsoft Defender for Endpoint setup and removal on endpoints for effective security management.
  • Created SOPs for incident reporting, investigation procedures, and communication protocols.
  • Manage indicators for a file hash, IP address, URLs, or domains that define the detection, prevention, and exclusion of entities.

Security Analyst

Aadit Technologies
Bangalore
08.2022 - 04.2023
  • Played a key role in the implementation of Microsoft Sentinel, setting up Log Analytics workspaces and configuring data connectors for centralized visibility and analysis of security events.
  • Utilized foundational knowledge of KQL within Microsoft Sentinel to modify analytical rules and enhance threat identification capabilities.
  • Continuously monitored and analyzed Azure AD logs to identify suspicious activities, including logins, failed authentication attempts, privilege changes, and group membership changes.
  • Investigated and analyzed security incidents such as data breaches, malware infections, and unauthorized access, determining root cause, scope, and potential impact.
  • Utilized Microsoft Defender Endpoint for mitigating actions on end devices and investigated network logs for further analysis post-malicious file detection.
  • Responded to cybersecurity breaches by identifying intrusions and isolating, blocking, and removing unauthorized access.
  • Utilized various malware analysis tools to extract indicators of compromise (IOCs) and determine malware functionality.
  • Identified phishing emails, conducted in-depth analysis of phishing campaigns, and developed strategies to prevent phishing attacks while educating end-users about best practices.
  • Created and managed incident and request tickets in Jira, ensuring proper routing and resolution. Prepared and presented reports on the organization's vulnerability management status to senior management.

Security Analyst

XL Softech Systems Ltd.
Bangalore
03.2020 - 05.2022
  • Monitoring the security logs and generating the reports. Investigating the security alerts in azure sentinel tool.
  • Analyzing security incidents generated by various tools from Active Directory, EDR, CASB, O365 Defender and Firewalls.
  • Security Center and other security logging sources. Tweaking SIEM tools to reduce false positives in alerts/incidents.
  • Analyzing the phishing emails detected by O365 defender and reported by users.
  • Managing data connectors health status to Sentinel.
  • Triaging the incidents triggered by Sentinel.
  • Investigating Azure Active Directory triggered alerts.
  • Participating in security incident management table top exercises.
  • Reviewing threat intelligence feeds like ICOs to update rules to timely detect the threats.
  • Following incident response plan.
  • Using the Open-source Intelligence(OSINT) tools to verify the maliciousness of IP Address, URLs and Hashes of suspected files.
  • Configuring firewall security policies to allow/block IP, ports and applications.
  • Updating URL filtering to whitelist and blocklist the URLs. Isolating the compromised machines and running anti-virus scan

Education

Bachelor of Technology (B.Tech) -

Jawaharlal Nehru Technological University
Kakinada
02-2020

Skills

  • Microsoft Sentinel - SIEM/SOAR
  • Microsoft 365 Security - Email Security
  • Microsoft Defender For Endpoint - EDR
  • Azure Cloud Security - Cloud Defender
  • Azure AD Security - Threat Analysis
  • Palo Alto - Firewall
  • Incident Hunting and Detection
  • MITRE ATT&CK Frame Work
  • Windows, Linux, MAC - OS
  • Jira - Ticketing Tool
  • KQL

Certification

  • Microsoft Certified: Security, Compliance, and Identity Fundamentals (SC-900)
  • Security Operations Analyst Associate (SC-200)
  • Azure Security Engineer Associate(AZ-500)

Timeline

Senior Security Analyst

Aadit Technologies
05.2023 - Current

Security Analyst

Aadit Technologies
08.2022 - 04.2023

Security Analyst

XL Softech Systems Ltd.
03.2020 - 05.2022

Bachelor of Technology (B.Tech) -

Jawaharlal Nehru Technological University

Similar Profiles

  • Vikas Adam

    Vikas AdamVikas Adam

    Project Coordinator at Aadit InfraProject Coordinator at Aadit Infra

    View Profile
  • Venkata Nagaraju Inakollu

    Venkata Nagaraju InakolluVenkata Nagaraju Inakollu

    Technical Lead(System Design) at Relysys Technologies Pvt Ltd (now Invendis Technologies pvt ltd)Technical Lead(System Design) at Relysys Technologies Pvt Ltd (now Invendis Technologies pvt ltd)

    View Profile
  • Sachin Hatole

    Sachin HatoleSachin Hatole

    Quality Analyst at Mindpool Technologies Pune, Mindpool TechnologiesQuality Analyst at Mindpool Technologies Pune, Mindpool Technologies

    View Profile
VENKATESH G