Yedukondalu Pechetti
Bangalore
Summary
IT Security professional with extensive experience in cybersecurity and team leadership. Proven track record of enhancing security protocols and reducing vulnerabilities. Committed to leveraging skills to drive organizational success and improve overall security posture.
Overview
7
7
years of professional experience
1
1
Certification
Work History
Team-Lead IT-Security
ZEPTO
Bangalore
01.2025 - Current
- Implemented and managed Sentinel One EDR across endpoints to ensure proactive threat detection, real-time response, and centralized incident handling.
- Created and deployed custom detection rules in SentinelOne EDR to proactively identify and block advanced threats, including malware, suspicious processes, and persistence techniques.
- Conducted regular SentinelOne agent health checks to ensure endpoint visibility, policy compliance, and uninterrupted protection across the environment.
- Tuned and optimized false-positive alerts, improving alert accuracy and reducing SOC operational overhead.
- Configured and monitored Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) for secure web filtering, cloud firewall, and zero-trust network access.
- Implemented Zscaler Sub-Cloud Data Center (DC) traffic diversion to securely route and inspect user internet traffic.
- Configured SSL inspection policies and application-specific SSL bypass rules to maintain security while ensuring business application compatibility and performance.
- Planned and executed simulated phishing campaigns using Threatcop, increasing employee security awareness and reducing phishing risk.
- Implemented and managed Trend Micro Email Gateway, strengthening defenses against phishing, malware, and spam attacks.
- Created and managed Google Workspace (GWS) Organizational Units (OUs), segregating users by Business Unit (BU) and enforcing device trust and contextual access policies.
- Implemented ClearPass Network Access Control (NAC) to enforce secure authentication, role-based access, and device compliance across the network.
- Led asset onboarding and lifecycle management using Zoho SDP (ServiceDesk Plus), ensuring accurate asset tracking, compliance, and audit readiness.
- Administered ManageEngine Endpoint Central for patch management, software deployment, remote troubleshooting, and device control across enterprise endpoints.
- Managed Google Workspace (formerly G Suite) for user provisioning, group policies, email security, and collaboration tool administration.
- Played a key role in IT infrastructure setup and scaling, including hardware/software procurement, network design, endpoint security, and UEM integration.
- Developed standard operating procedures (SOPs) for asset allocation, incident management, and endpoint onboarding to streamline IT operations.
- Collaborated with cross-functional teams to integrate security and asset tools, reducing duplication and improving data accuracy across platforms.
L2 Associate Consultant-GCM3
ATOS
Mumbai
09.2023 - 01.2025
- Monitoring Security alerts generated by SIEM, UEBA, and EDR.
- Monitoring on security alerts various Dashboards on service now.
- Analyzing SIEM alerts by following runbooks and using various tools.
- L1 creating tickets for incidents actively solving on time response.
- Provides primary email security related support co managed platform Proofpoint.
- Phishing and spam email analysis in Proofpoint (TAP, TRAP, Proofpoint Server).
- Investigate on Proofpoint identified URL & Attachment defense alerts and Imposter or BEC alerts.
- If any suspicious identified in phishing analysis contain the host and block URL immediately. And implemented password protected attachment scanning as well as email body banner warning of attachments when Assurant experienced wave of malicious password protected attachments. Improved email hygiene with implementation of forgery email rule in Proofpoint that stopped email sender forgeries of Assurant owned domains.
- CrowdStrike Endpoint detection and response (EDR) is a cybersecurity solution that captures endpoint activity and uses analytics to provide real-time visibility into endpoint health. It can help detect anomalous activity, alert information security teams to events, and provide remediation suggestions.
- Investigate on EDR alerts detected by CrowdStrike based on technique and tactics.
- At the time of Investigation identify any suspicious file executes or run the host immediately co contain the host and take RTR access and perform file sandboxing if find any suspicious delete the file.
- Implemented Team password key vault in CyberArk’s privileged access manager which allowed sharing of platform related credentials.
- Assist in identifying Root Causes of incidents and follow-up with SMEs for incident closure.
- Assist the team lead in generating weekly report.
- Scheduling/performing VA scan submission scan reports.
- Scan with third party tool based on client requirement.
- Performing health check of network security devices and security tools.
- Generate report of critical vulnerability.
- Conducted Vulnerability Assessment for clients.
- Globally detect and prevent malicious cyber-attacks.
Security Associate-L1
Atos
Bangalore
03.2019 - 09.2023
- Working on the Splunk, Elastic, Azure SIEM (console & web console) providing operations support at the Security Operations Center for different member firms.
- Monitoring & analyzing incoming Events in a network.
- Monitoring Windows logs & raising cases for login failures & lockouts based on defined thresholds.
- Monitoring database logs & raise cases for suspicious login failures, DB shut down activities, critical commands execution etc.
- Monitoring IPS logs & Firewall to identify external threats.
- Collecting the logs of all the network devices and analyze the logs to find the suspicious activities.
- Investigate the security logs, mitigation strategies and Responsible for preparing generic security incident report.
- Phishing and Spam Email Analysis in Proofpoint, O365 Defender.
- Analyzing Phishing and Spam related activities and notifying to the users.
- Displaying the event data in different layouts by defining Dash Boards & Data Monitors.
- Checking the overall system health, Connectors health & reporting it to the Admin. Team on daily basis.
- Performing Health check of network security devices.
- Providing daily, weekly, and monthly reports of incident activity.
- Preparing daily and weekly dashboard on the security threats and trends on the network.
- Analyzing findings from document review and field review to ensure they meet ISO 27001 requirements.
- Implementing improvements, as needed, based on audit findings.
Education
MBA -
Jawaharlal Nehru Technological University
Kakinada, India01.2017
Skills
- MSS
- Elastic
- Splunk
- CrowdStrike
- SentinelOne
- Exabeam
- Threatcop
- Proofpoint
- Tipping point
- GWS Admin
- CS sandboxing
- DDAN
- Palo Alto
- Cisco
- Zscaler
- Bluecoat
- Service Now
- Symantec
- Prisma Cloud
- Rapid7
- Threat Intelligence
- SOAR
- Malware Analysis
- Forensics
- Patch management
- Manage Engine EDR
- Endpoint detection
- Asset lifecycle management
- Jira and confluence
- Incident management
- Mobile device management
Certification
• SIEM fundamentals
• CEH (EC Council & Simplelearn)
• MECPA
• CCNA trained (Simpli learn)
• SOAR Analyst
• AZ-900
• Security operation fundamentals (Palo alto)
• Exa beam fundamentals (UEBA)
• CEH (EC Council & Simplelearn)
• MECPA
• CCNA trained (Simpli learn)
• SOAR Analyst
• AZ-900
• Security operation fundamentals (Palo alto)
• Exa beam fundamentals (UEBA)
Disclaimer
I do here by confirm that the information given in this form is true to do the best of my knowledge and belief.
Areas Of Interest
- VA Assessment
- Threat Hunting
- Threat Intelligence
- SOAR (IR Automation)
- Malware Analysis
- Forensics
Languages Known
- English ( R/W)
- Hindi (R/W)
- Telugu (R/W)
Timeline
Team-Lead IT-Security
ZEPTO
01.2025 - Current
L2 Associate Consultant-GCM3
ATOS
09.2023 - 01.2025
Security Associate-L1
Atos
03.2019 - 09.2023
MBA -
Jawaharlal Nehru Technological University