venkatearni
Cyber Security Analyst/ Manager/ Lead/ Consultant
About
Cyber Security professional with 9.5+ years of IT experience, including 6+ years in Information Security and Security Operations (SOC) environments. Extensive experience in security monitoring, incident response, threat detection, and vulnerability management using SIEM platforms such as Splunk, Microsoft Sentinel, and IBM QRadar. Strong expertise in security event analysis, log monitoring, and threat investigation, with hands-on experience in identifying and mitigating cyber threats across enterprise environments. Skilled in implementing and managing enterprise security controls, including firewalls, IDS/IPS, endpoint security, encryption mechanisms, and network security solutions. Experience working in 24x7 Security Operations Center (SOC) environments, monitoring global threat activity and responding to security incidents within defined SLAs. Solid understanding of industry security frameworks and standards, including NIST Cybersecurity Framework, CIS Controls, and ISO 27001. Experienced in vendor evaluation, RFP management, and cybersecurity solution implementation across network, endpoint, and cloud security platforms. Strong knowledge of network security technologies including LAN/WAN, TCP/IP, VPN, routing, switching, and enterprise infrastructure security. Proficient in incident management lifecycle, phishing analysis, malware investigation, and endpoint threat response using enterprise security tools. Effective communicator with strong problem-solving skills, cross-team collaboration experience, and ability to drive security initiatives across organizations.
Skills & Expertise (32)
Work Experience
Security Analyst
RRegulus Technologies
Jul 2021 - Jul 2023
Provided Security Operations Center (SOC) monitoring and incident response support using SIEM platforms including Splunk, IBM QRadar. Monitored and analyzed security alerts from IDS/IPS, firewalls, endpoint protection systems, network devices, and servers to detect potential cyber threats and security incidents. Conducted log analysis and threat investigation across network, system, and application logs to identify suspicious activities, anomalies, and potential security breaches. Performed phishing and spam email investigations using Microsoft Defender for Office 365, mitigating email-based security threats and improving user awareness. Investigated security alerts related to malware infections, unauthorized login attempts, suspicious database activities, and critical file modifications. Managed the incident response lifecycle, including incident identification, investigation, containment, root cause analysis, and remediation. Created and managed security incidents and service requests in ServiceNow, ensuring timely resolution in accordance with defined SLAs. Performed real-time network traffic monitoring and analysis using logs from firewalls, IDS, and SIEM platforms to detect and mitigate external threats. Developed SIEM dashboards, filters, and monitoring rules to improve threat visibility and streamline security investigations. Collaborated with network, infrastructure, and application teams to resolve security issues and improve overall security posture.
Tech Support Analyst
Miracle Software Systems Pvt. Ltd
Jul 2016 - Jun 2021
Technical support in handling the incidents raised from clients through Voice Interaction and through email, chat & remote support. Supervision of Event Management activity using Service Now. Preparing daily and weekly dashboard on the security threats and trends on the network Manage more than 5000 users, 3000 workstations using Active Directory. Manage MFA AD groups in Azure Active Directory Configuration of VPN Client in user’s machine Network drivers and network adapters management.
Cyber Security Consultant
Ernst & Young LLP
Aug 2023 - Nov 2025
Experienced in leading incident response and threat investigation activities within enterprise SOC environments. Strong expertise in SIEM operations, vulnerability management, and security monitoring. Proven ability to collaborate with cross-functional IT and business teams to implement security best practices. Skilled in vendor evaluation, security tool implementation, and security program improvement. Managed RFP evaluation and vendor onboarding for cybersecurity tools, ensuring optimal cost, functionality, and alignment with enterprise security strategy. Successfully supported 24x7 Security Operations Center (SOC) operations by monitoring and analyzing thousands of security events daily, ensuring compliance with incident response SLAs. Improved security incident detection efficiency by 30% by optimizing SIEM correlation rules and alert tuning across IBM QRadar platform. Reduced mean time to detect (MTTD) and respond (MTTR) to security incidents by 35% through proactive threat monitoring, automated alert prioritization, and improved incident response workflows. Conducted enterprise vulnerability assessments across 1000+ endpoints and servers, identifying critical vulnerabilities and reducing security risk exposure by 40% through remediation initiatives. Led incident response investigations for high-priority security events, including malware outbreaks and phishing attacks, preventing potential data loss and minimizing business impact. Strengthened endpoint security posture by implementing and monitoring CrowdStrike Falcon EDR, improving malware detection and response capabilities. Implemented enhanced monitoring dashboards and reporting capabilities in Splunk, improving security visibility for leadership and operational teams. Conducted security awareness training sessions that helped reduce phishing incident rates and improve employee cybersecurity awareness across the organization.
Education
M. Tech - Vitam Institute of Engineering and Technology
2014 - 2016 · Afghanistan
B. Tech - Avanthi Institute of Engineering and Technology
2007 - 2011 · Afghanistan
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Open to Relocation
