Back to Developers
Aravind S R

Aravind S R

Security Engineer

Bengaluru 3+ yrs exp 88 ยท Excellent

About

Security Engineer with 4 years of hands-on experience in Information Security and threat mitigation. Proven track record in optimizing Splunk SIEM for real-time detection, managing robust EDR platforms, and hardening endpoint security posture. Expert in executing deep-dive phishing email analysis and leading rapid incident response to neutralize active enterprise threats.

Skills & Expertise (38)

MS Defender 365 Advanced
8.1/10
4
Years Exp
Azure Sentinel Advanced
8.1/10
4
Years Exp
CrowdStrike Falcon Advanced
7.4/10
4
Years Exp
Vulnerability Assessments Advanced
7.4/10
4
Years Exp
AWS Cloud Security Advanced
7.2/10
4
Years Exp
Active Directory Advanced
7.0/10
4
Years Exp
Data loss prevention Advanced
7.0/10
4
Years Exp
Splunk ES Intermediate
6.5/10
3
Years Exp
CyberArk Intermediate
6.5/10
3
Years Exp
ISO 27001 Intermediate
6.5/10
3
Years Exp
Group Policy Objects Advanced threat analysis information protection PCI-DSS NIST AIR policies Microsoft Purview CVE Defender Atp MITRE ATT&CK Log Analytics workspaces Host isolation RBAC Roles PIM roles IAM roles Windows Server 2019 Windows Server 2016 R2 Symantec AV Microsoft Exchange Servers MS Intune Administrator Azure Security Recorded Future Jira ServiceNow Rapid 7 MCAS MS Purview Office 365

Work Experience

Security Engineer

Target corporate services pvt ltd

Oct 2022 - Present

Experience in handling and deploying the Defender agents onto servers to onboard them into Defender, and troubleshooting agent connectivity issues using the MDE Client Analyzer. Highly hands-on experience in Azure Security, including creating playbooks, runbooks, and automation rules, as well as implementing data connectors and onboarding agents. Configure and manage dashboards, notebooks, data connectors, and playbooks in Azure Sentinel. Hunt security threats using Azure Sentinel. Hands-on experience in the installation, configuration, and management of Microsoft Exchange Servers 2016 and above. Experienced in creating conditional access policies and fine-tuning the ASR rules in Defender 365 and Intune. Experienced in managing the Intune administrator console and creating group policies. Good hands-on experience in creating use cases and custom detection rules in Defender and Azure Sentinel by using the KQL language. Hands-on experience (L2 level) in support, implementation, configuration, and management of EDR/AV solutions (EDR/AV solutions such as CrowdStrike and Symantec AV). Implemented conditional access policies and integrated Intune with Azure Active Directory for enhanced security and user authentication. Experience in handling the threat adversaries reports and extracting the IOC's to block in endpoint level and from firewall. Good hands-on experience in onboarding Windows Server 2016 R2 and 2019 servers using Defender XDR and CyberArk. Good hands-on experience in creating virtual machines, deploying endpoint agents on them, and managing IAM roles in an AWS environment. Experienced in creating PIM roles and managing the RBAC roles using Sentinel. Knowledge of Group Policy Objects, Active Directory security and compliance configurations, and migrating to the Intune administrator console. Experience in initiating vulnerability scans on end devices and servers for automated reports using Rapid7. Experience in vulnerability assessments. Evaluate and prioritise identified vulnerabilities for remediation by collaborating directly with customers. Ensuring Data Loss Prevention (DLP), Information Barriers, Information Protection, and Insider Risk Management are effectively configured and monitored. Experienced in creating policies and deploying the agents using the rapid 7 insight VM and performing schedule and manual scans using vulnerability management tool. Monitored regulatory compliance across cloud workloads using built-in compliance standards such as ISO 27001, PCI-DSS, and NIST. Experience in AIR (Automated Investigations and Remediation) policies, and their implementation. Proven experience in designing and implementing data governance solutions using Microsoft Purview. Experienced in performing the manual scans and scheduled scans to find out the known CVE's and pushing the patches accordingly. Experience in creating and maintaining the daily, weekly, and monthly reports of device health status by using Defender ATP. Configured and optimised Microsoft Defender for Endpoint to enhance protection against malware, ransomware, and advanced threats. Taking the appropriate action based on advisories, IOCs, identifying threat actors using Mitre ATT&CK, and coordinating with the respective team to block the IOCs. Monitoring, analysing, and responding to infrastructure threats, vulnerabilities, and risks. Collecting the logs of all the Windows, Linux, and network devices, and analysing the logs to find suspicious activities. Experience in handling and deploying the Defender agents onto servers to onboard into Defender, and troubleshooting agent connectivity issues using the MDE Client Analyser. Experience in creating Log Analytics workspaces, creating conditional access policies, and creating detection rules using Defender 365 and Azure Sentinel. Experience in working on host isolation and advanced threat analysis using EDR, Microsoft Defender ATP.

Education

Bachelor of Computer Applications - Bapuji Institute of Hi-Tech Education

- 2022 ยท Afghanistan

Certifications

No certifications added yet

Interested in this developer?

Profile Score Breakdown

๐Ÿ“ท Photo 10/10
๐Ÿ“„ Resume 10/10
๐Ÿ’ผ Job Title 10/10
โœ๏ธ Bio 10/10
๐Ÿ› ๏ธ Skills 20/20
๐ŸŽ“ Education 10/10
โฑ๏ธ Experience 13/15
๐Ÿ’ฐ Rate 0/5
๐Ÿ† Certs 0/5
โœ… Verified 5/5
Total Score 88/100

Profile Overview

Member sinceJul 2026