kiran

Sr. Cyber Security Analyst

Hyderabad

Profile Score

About

Dynamic Sr. Cyber Security Analyst with 5+ years’ experience in SIEM management and incident response. Proven track record in threat detection and vulnerability management, enhancing security posture through analytical thinking and proactive measures. Adept at implementing cloud security best practices and fostering cross-functional collaboration to strengthen organizational resilience. Professional cybersecurity specialist skilled in threat analysis, network security, and incident response. Strong focus on team collaboration and achieving results, adapting to changing needs seamlessly. Known for robust problem-solving abilities, strategic thinking, and effective communication. Expertise includes risk management, vulnerability assessments, and regulatory compliance.

Skills & Expertise (84)

SOC Operations Expert

8.7/10

Years Exp

SIEM Management Advanced

8.6/10

Years Exp

Network Security Advanced

8.5/10

Years Exp

Incident Response Advanced

8.4/10

Years Exp

Threat Intelligence Advanced

8.3/10

Years Exp

Akamai SOAR Playbooks KQL Bash PowerShell Python Check Point Forcepoint DLP -Symantec Antivirus McAfee NIST WIRESHARK CISCO Palo Alto Microsoft Defender CrowdStrike LogRhythm QRadar Azure Sentinel Phishing & Spam Detection Service Now Zendesk BMC Helix Jira Google Cloud Security Command Center AWS ELK Palo Alto Prisma Cloud People management SOP & Playbook Development DevSecOps Splunk SPL Log Analysis GDPR HIPAA PCI DSS Cyber Kill Chain MITRE ATT&CK ISO 27001 Burp Suite API Security Database Security Disaster Recovery patch management Wireless Security Problem-solving Phishing detection Risk Assessment Public Key Infrastructure Incident response management Endpoint Protection Zero-day exploit prevention Access Control Cryptanalysis Intrusion test oversight DDoS prevention Analytical Thinking Security Operations Center Two-Factor Authentication Attention to Detail Social engineering prevention RBAC Recorded Future Nmap Qualys Nessus Penetration Testing Microsoft 365 security MFA SSO PIM Splunk Azure AD Google Chronicle AWS Security Hub Azure Security Center Malware Analysis endpoint detection and response Threat Hunting Firewall Configuration

Work Experience

Sr. Cyber Security Analyst

Uber

Sep 2024 - Present

Monitor, analyze, and respond to security incidents using Azure Sentinel and Splunk SIEM tools for real-time threat detection and mitigation. Perform security monitoring and incident response in AWS cloud environments, ensuring compliance with best security practices. Conduct threat detection, malware analysis, and forensic investigations to identify and mitigate cybersecurity threats. Implement and manage container security solutions to protect applications running in cloud and hybrid environments. Conduct vulnerability management, risk analysis, and penetration testing to assess security posture and mitigate potential threats. Develop and enforce data encryption strategies to protect sensitive information across cloud and on-premises environments. Apply NIST security standards, OWASP Top 10, and SANS Top 25 principles to improve security frameworks and risk management strategies. Lead SOC monitoring and threat intelligence operations, ensuring proactive detection and mitigation of cyber threats. Perform endpoint protection management, ensuring all assets are secured against advanced persistent threats and zero-day attacks. Develop and implement security plans, business continuity strategies, and incident response procedures to enhance organizational resilience. Identify security risks, assess vulnerabilities, and recommend remediation strategies to strengthen cybersecurity defenses. Ensure compliance with information security management policies and regulatory requirements across cloud and on-prem environments. Collaborate with cross-functional teams to improve security awareness, provide training, and enforce security best practices. Perform advanced security analysis using behavioral analytics, threat intelligence feeds, and security automation tools. Provide guidance on secure cloud architecture, IAM best practices, and risk mitigation strategies for AWS, Azure, and hybrid environments.

SOC Analyst

Informatica

Mar 2020 - Sep 2021

Monitor, analyze, and respond to security incidents using QRadar SIEM, ensuring timely threat detection and mitigation. Investigate security alerts by correlating logs, identifying patterns, and escalating potential threats. Apply the Cyber Kill Chain methodology to analyze attack stages and enhance incident response strategies. Utilize the MITRE ATT&CK framework to map adversary tactics, techniques, and procedures (TTPs) for proactive threat detection. Ensure compliance with PCI DSS security requirements, conducting log analysis and security assessments. Develop and fine-tune QRadar SIEM rules and use cases to enhance detection accuracy and reduce false positives. Perform threat intelligence analysis, correlating real-time threats with existing vulnerabilities. Conduct forensic investigations and log analysis to identify the root cause of security incidents. Collaborate with security teams to improve incident response procedures and threat mitigation strategies. Document security events, investigation findings, and mitigation actions for audit and compliance purposes. Participate in security awareness training and contribute to improving security posture across the organization.

CYBER Security Analyst

Eminds

Jan 2022 - Aug 2024

Monitor, analyze, and respond to security incidents using Azure Sentinel and Splunk SIEM tools to detect threats and mitigate risks. Investigate security alerts by correlating logs from multiple sources, identifying potential threats, and escalating as needed. Ensure compliance with healthcare security regulations, including HIPAA and GDPR, by monitoring and enforcing security controls. Perform Identity and Access Management (IAM) functions, ensuring proper role-based access control (RBAC) and privileged access management (PAM). Conduct security log analysis and event correlation to detect unauthorized access attempts, insider threats, and anomalous activities. Implement and manage cloud security best practices across Azure and hybrid environments to protect sensitive patient data. Conduct risk assessments, vulnerability management, and remediation planning to strengthen security posture. Develop and fine-tune Sentinel and Splunk use cases, detection rules, and dashboards for enhanced visibility and threat detection. Investigate potential data breaches, unauthorized data access, and security policy violations, ensuring compliance with regulatory requirements. Collaborate with compliance teams to maintain security documentation, audit logs, and incident reports for regulatory assessments. Work as an L2 security analyst, leading escalations, mentoring junior analysts, and supporting advanced threat-hunting activities. Assist in forensic investigations, root cause analysis, and implementing preventive measures to mitigate recurring security issues. Provide security recommendations for system hardening, endpoint protection, and secure configurations to reduce attack surfaces. Participate in security awareness training, improving employee understanding of cybersecurity best practices in healthcare environments.