Bhargav Uppalapati
Cyber Security Analyst
About
Experienced Cyber Security Analyst with hands-on experience in the transformation of high-volume logs to clear, actionable security alerts. Expertise includes Log analysis and Classification, SIEM (IBM QRadar) offense Triage, and retuning correlation rules so they would catch real attacks while reducing false positives. I hunt badness across Web, Endpoint, Firewall, EDR/XDR and Database logs; map findings to MITRE ATT&CK; document detections so that others can respond faster and more consistently.
Skills & Expertise (5)
Work Experience
Cyber Security Analyst
Cyber Lancers Pvt Ltd
07-2024 - Present
Investigate and classify security events by analysing raw logs + SIEM offenses, separating True Positive (TP) threats vs False Positives (FP) and escalating verified incidents with clear incident report on time. Tune and maintain correlation rules, building blocks, and reference sets to improve signal-to-noise, reducing false positives by 90% and improving alert quality for analysts. Conducted threat hunting using attacker TTPs(Tactics, Techniques, and Procedures), IOC(Indicator of Compromise) patterns, and anomaly-based techniques, identifying suspicious lateral movement and unauthorized access patterns. Reported various attack patterns including phishing, brute-force attempts, suspicious authentication spikes, malware beaconing indicators, and ransomware-like behavior (mass file changes / unusual lateral movement signals), improving early detection coverage by 18 new use-cases. Protected Education and Automobile client infrastructure by identifying a repeating attack pattern from SIEM logs, containing the incident within 1 hours and preventing potential loss of 25 Lakhs through rapid blocking and rule hardening. Performed VAPT support activities using nmap, Nikto, and related tools; documented findings and recommended remediation steps on log sources. Ensured compliance with organizational policies, validating access logs and anomaly reports. Creating and delivering security seminars/workshops for college students and clients to improve security awareness and adoption.
Cyber Security Analyst
Cyber Lancers Pvt Ltd
07-2024 - Present
Investigate and classify security events by analysing raw logs + SIEM offenses, separating True Positive (TP) threats vs False Positives (FP) and escalating verified incidents with clear incident report on time. Tune and maintain correlation rules, building blocks, and reference sets to improve signal-to-noise, reducing false positives by 90% and improving alert quality for analysts. Conducted threat hunting using attacker TTPs(Tactics, Techniques, and Procedures), IOC(Indicator of Compromise) patterns, and anomaly-based techniques, identifying suspicious lateral movement and unauthorized access patterns. Reported various attack patterns including phishing, brute-force attempts, suspicious authentication spikes, malware beaconing indicators, and ransomware-like behavior (mass file changes / unusual lateral movement signals), improving early detection coverage by 18 new use-cases Protected Education and Automobile client infrastructure by identifying a repeating attack pattern from SIEM logs, containing the incident within 1 hours and preventing potential loss of 25 Lakhs through rapid blocking and rule hardening. Performed VAPT support activities using nmap, Nikto, and related tools; documented findings and recommended remediation steps on log sources. Ensured compliance with organizational policies, validating access logs and anomaly reports. Creating and delivering security seminars/workshops for college students and clients to improve security awareness and adoption.
Cyber Security Intern
Andhra Pradesh Technology Services Limited
01-2024 - 07-2024
Performed log analysis using SQL to investigate DB anomalies. Built custom parsers for Apache HTTP Server (access error logs) and SQL database audit logs per client requirements, ensuring accurate field extraction, timestamping, and normalization. Enabled database auditing and generated representative test logs; ingested DB and web logs into QRadar and validated end-to-end data quality. Authored and tuned correlation rules, building blocks, and reference sets; mapped use-cases to the MITRE ATTCK framework; verified in lab and promoted to production. Documented the QRadar infrastructure and data flow (collectors, retention, source inventory) to support operations and scaling; created dashboards/searches to monitor Apache/DB anomalies and rule performance and security assessment on endpoints.
Cyber Security Intern
Andhra Pradesh Technology Services Limited
01-2024 - 07-2024
Performed log analysis using SQL to investigate DB anomalies. Built custom parsers for Apache HTTP Server (access error logs) and SQL database audit logs per client requirements, ensuring accurate field extraction, timestamping, and normalization. Enabled database auditing and generated representative test logs; ingested DB and web logs into QRadar and validated end-to-end data quality. Authored and tuned correlation rules, building blocks, and reference sets; mapped use-cases to the MITRE ATTCK framework; verified in lab and promoted to production. Documented the QRadar infrastructure and data flow (collectors, retention, source inventory) to support operations and scaling; created dashboards/searches to monitor Apache/DB anomalies and rule performance and security assessment on endpoints.
Education
Bachelor of Technology
2020 - 2024 · India
Bachelor of Technology
2020 - 2024 · India
Intermediate Education
2018 - 2020 · India
Intermediate Education
2018 - 2020 · India
Secondary Education
2017 - 2018 · India
Secondary Education
2017 - 2018 · India
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Current Company
Other
Visa Status
No Visa
Relocation
Open to Relocation
