Shubham shukla
Cybersecurity Support Engineer
About
As a passionate and dedicated cybersecurity professional with 4+ years of experience, I am eager to contribute my skills as a cybersecurity support engineer, cybersecurity engineer, or graduate engineer trainee. With a strong foundation in security protocols and a commitment to safeguarding digital assets, I am excited about the opportunity to join your team. I am driven to enhance security measures and collaborate with like-minded professionals to create a safer digital environment for all.
Skills & Expertise (25)
Work Experience
Cyber Security Support Engineer
GSPANN Technologies, Inc
Aug 2025 - Present
Strengthened email security by implementing encryption, DLP policies, and advanced content filtering in Mimecast, ensuring regulatory compliance and threat mitigation. Optimised SOC efficiency by automating alerts, reporting, and quarantine workflows while proactively analysing email threats (phishing, spoofing, and spam) via Mimecast insights. Administered and optimised Microsoft 365 Exchange Online environments, including mailbox provisioning, transport rules, security policies, and hybrid configurations, ensuring high availability and compliance. Troubleshot and resolved complex mail flow, migration, and connectivity issues using tools like PowerShell and EAC, improving system reliability and user experience. Implemented AI-based anomaly detection to identify abnormal patterns and enhance system security. Analysed large datasets to identify deviations from normal patterns using AI techniques. Implemented and managed Microsoft Defender for Office 365 and endpoint protection policies, including threat detection, anti-phishing, and automated investigation/response (AIR), significantly reducing security incidents and attack surface. Managed user identities and access in Microsoft Entra ID (formerly Azure AD), including user/group creation, password resets, monitoring sign-in activity, handling MFA issues and basic access troubleshooting, ensuring smooth day-to-day operations for end users. Performed vulnerability scanning and assessment using Qualys VMDR, identifying critical security gaps, prioritising risks based on severity, and supporting timely remediation to strengthen system security. Monitored and analysed scan reports, tracked remediation progress, and collaborated with IT teams to address vulnerabilities Assessments, reducing exposure and improving overall compliance posture. Monitored and investigated security alerts across identity, email, and endpoint layers using CrowdStrike Falcon, including Falcon Identity Protection and Falcon Insight, to detect suspicious behaviour and support rapid incident response. Analysed logs and correlated events within SIEM platforms, triaging incidents, escalating high-risk threats, and documenting findings to improve detection use cases and strengthen overall security monitoring.
Software Engineer/ Graduate Trainee Engineer
COFORGE LTD
Jan 2022 - Jul 2025
Experience in Mimecast working on spam filtering, email digest issues, and creating policies like impersonation, anti-spoofing, and blocking and whitelisting IPs, URLs, email domains, email addresses, etc. Attachment issue: create custom rules for spam, bypassing the domains and emails through different policies. Create an email rule. Create rules for SPF. Analyse the messages through smart search. Implemented and managed Microsoft Purview DLP policies across Exchange Online. Executed scheduled vulnerability scans using tools like Tenable Nessus and Qualys VMDR, performing initial triage, identifying false positives, and escalating critical findings to L2/L3 teams. Monitored vulnerability dashboards, validated risk ratings using CVSS, and collaborated with patch management teams to track remediation progress and maintain compliance. Maintained asset inventory for scan coverage, documented recurring vulnerabilities, created knowledge base articles and reports, and supported weekly/monthly security posture updates for management. Managed SSL/TLS certificate lifecycle for internal and external systems using DigiCert Central, including issuance, renewal, and revocation, ensuring secure communication and compliance. In Zscaler, perform live troubleshooting, URL filtering, content filtering, SSL inspection, authentication and PAC bypassing. Traffic forwarding and policy creation. Authentication SAML and Zscaler app configuration. Managing TRIPWIRE and GUARDIUM TOOL to perform a daily device health checkup and, if required, acting on them. And monitoring of the critical server. Working knowledge of SSCM (Microsoft System Centre Configuration Manager) and working on endpoint protection. Pushing the definition update on the server and workstation through SSCM. L1-level experience in firewalls to analyse log-checking alerts and create firewall rules and remove decommissioned IPs.
Education
Bachelor of Technology in Computer Science Engineering - Chandigarh University
2018 - 2022 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (25)
Click a skill to find developers with the same skill
