A J

Security Engineer

Wipro Limited

Sep 2022 - May 2025

Security Engineer

Wibmo (Enstage Software Pvt Ltd)

Sep 2019 - Mar 2022

Performed real-time monitoring, investigation, and threat analysis of security incidents using SIEM tools (ArcSight & AlienVault) by analyzing raw logs from network devices, IDS/IPS, firewalls, proxy, system logs, applications, and databases. Conducted deep log analysis, alert handling, IP reputation checks (MXToolbox, IPVOID, URLVoid, AbuseIPDB), mapped events to Windows Event Codes, and provided trending analysis and reporting of security log data. Escalated critical security events (network/host intrusion, firewall, proxy) to Incident Response team, assisted in log source onboarding, and prepared daily shift schedules for SOC members. Collaborated with IR team on incident handling, maintained accurate documentation, reports, and records for audits and knowledge transfer.

IT Specialist

Tata Consultancy Services (TCS)

May 2022 - Jul 2022

Supported vulnerability assessments and security operations in project environment. Oversaw end-to-end Vulnerability Management processes across hybrid environments, driving effective identification and closure of critical security gaps, achieving 20% faster remediation. Prepared, maintained, and updated CMDB/inventory in ServiceNow; onboarded and decommissioned servers in Qualys, Rapid7, and Tenable. Deployed and managed Qualys Cloud Agents, Guard scanners, Policy Compliance (PC) modules, Nessus, and Tenable; performed authenticated OS, database, server, web, and API scans. Conducted Web Application Scanning (WAS), API security testing, and Dynamic Application Security Testing (DAST) on 200+ assets to identify vulnerabilities (XSS, SQL Injection, CSRF, SSRF, privilege escalation) and ensure compliance. Developed and managed Policy Compliance modules; implemented custom compliance rules, performed MFNA control checks (150+ controls), and ensured audit-readiness, resulting in zero major audit findings for two consecutive years. Scheduled and executed ad-hoc scans for zero-day vulnerabilities and outbreak scenarios; coordinated remediation with patching and platform teams; troubleshot authentication, firewall, host reachability, and scanner connectivity issues, coordinating with vendor/support teams for timely resolution. Conducted network discovery and host enumeration using Nmap and Wireshark; analyzed vulnerability results, prioritized remediation with technical teams, and prepared weekly/monthly reports, dashboards, and scorecards for stakeholders. Automated recurring security scans, reporting workflows, and VM/PC processes to improve operational efficiency by 15% and maintain 24-hour SLA for false positive resolution; acted as Subject Matter Expert (SME) for VM & PC tools, validating false positives, performing purging operations, and managing user access/roles. Maintained ServiceNow/BMC Remedy integration, incident trackers, SOPs, and operational documentation including HLD/LLD; coordinated with platform, patching, and server teams to track remediation progress and ensure timely closure of critical vulnerabilities; delivered comprehensive security assessment reports with risk analysis, impacts, and actionable recommendations, enhancing client security posture; provided knowledge transfer (KT) and training to new joiners and stakeholders, strengthening team capabilities and operational excellence.

IT Support Engineer

Windows IT Support Engineer

Jan 2017 - Jan 2019

Delivered Windows Server & desktop support, troubleshooting, and log analysis — built strong foundation for transition into Information Security operations.