Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Rammohan Reddy Kunduru

SOC Analyst
Hyderabad

Summary

Dedicated SOC Analyst with 2.7 years of hands-on experience in SOC operations. Proficient in threat detection, incident response, and security analysis across diverse environments. Skilled in working on SIEM tools, Phishing Analysis, Endpoint security, Vulnerability Management and threat intelligence platforms to safeguard organizational assets. Strong analytical abilities coupled with a proactive approach to identifying and mitigating security risks. Committed to continuous learning and staying abreast of emerging threats and security best practices.

Overview

3
3
years of professional experience
4
4
Certifications
3
3
Languages

Work History

SOC Analyst

Stefanini Private Limited
Hyderabad, India
10.2023 - Current
  • Working in shifts to provide 24/7 Security Operations Support.
  • Responding to the detected Security Incidents by security monitoring, data/logs analysis and incidents analysis per SLA.
  • Conducted in-depth phishing analysis to identify, investigate, and mitigate phishing attempts targeting organizational personnel using Microsoft Defender and have the periodic review of existing policies and rules cleaning up unwanted rules and policies.
  • Operated and maintained SIEM platforms including Sentinel and Splunk to monitor, correlate, and analyze security events and alerts across the organization's network infrastructure.
  • Worked on MFA alerts and risky sign-ins,shared the information to the client with proper analysis along with the other user's list affected with the same scenario to take necessary actions.
  • Implemented and managed endpoint security solutions, specifically CrowdStrike, to safeguard endpoints from advanced threats, malware, and unauthorized access attempts.
  • Leveraged threat intelligence tools like U.S.T.A Prodaft to enhance threat detection capabilities and stay ahead of emerging threats.
  • Performing vulnerability scans using Nessus and Prioritizing the vulnerabilities [with respect to age, Realtime threat Indicators and attack surface] and informing Appropriate team for Resolution.
  • Managed incident tickets and workflow processes through ServiceNow, ensuring accurate documentation, timely escalation, and resolution of security incidents.
  • Sharing the Daily Cyber News to Client like latest attack trends, vulnerability exploits, use cases etc.,
  • Contributed to the development and refinement of SOC playbooks, standard operating procedures (SOPs), and incident response plans.
  • Engaged in daily stand up calls regarding process discussion or daily updates,challenges faced if any while investigating ,resolving an incident.
  • Determine the scope of the security incident and its potential impact to client network & recommend the steps to handle the security incident with all information and supporting evidence of security events.
  • Performing Real Time Monitoring and carrying out second level analysis over incidents in queue.
  • Collaborated with cross-functional teams to provide actionable insights and recommendations for improving security posture and mitigating risks.
  • Stayed current with industry trends, emerging threats, and best practices through continuous training, certifications, and participation in cybersecurity communities.

Security Engineer

Sutherland Global Services
Hyderabad
09.2021 - 10.2023
  • Monitoring, analysis, and response to security incidents and alerts within a 24/7 SOC environment.
  • Managed and maintained endpoint security solutions, specifically Trend Micro, ensuring the protection of endpoints from advanced threats, malware, and unauthorized access attempts.
  • Administered email security measures utilizing Microsoft Defender and Trend Micro Email Gateway to safeguard organizational communications against phishing attempts, malware, and other email-borne threats and have the periodic review of existing policies and rules and cleaning up unwanted rules and policies.
  • Performing vulnerability scans using Alien Vault and Prioritizing the vulnerabilities [with respect to age, Realtime threat Indicators and attack surface] and informing Appropriate team for Resolution.
  • Analyzed and responded to unfamiliar sign-in alerts within Defender for Cloud Apps and Azure Active Directory environments, investigating potential unauthorized access attempts and taking appropriate remedial actions.
  • Participated in security audits, assessments, and compliance reviews to evaluate and enhance the organization's security posture, ensuring adherence to regulatory requirements and industry standards.
  • Participated in incident response activities, including containment, eradication, and recovery efforts, ensuring the timely resolution of security incidents and minimizing potential impact.
  • Preparing the Weekly, Monthly and Quarterly reports of all the tools.
  • Determine the scope of the security incident and its potential impact to client network & recommend the steps to handle the security incident with all informational and supporting evidence of security events.
  • Performing daily analysis of alerts, connectivity, deployed modules and functionality of endpoint. Configuring deployment, prevention policies based on business risks and will have the periodic review of existing policies and rules and cleaning up unwanted rules and policies.
  • Stayed abreast of emerging threats, industry trends, and best practices through continuous learning, training, certifications, and active engagement in cybersecurity communities.
  • Worked on assigned ticket queue, understanding and exceeding expectations on all SLA Commitments.
  • Proficient in ticketing tool service desk plus as we used to create tickets, investigate, and resolve incidents with proper resolution and escalated to other teams when required.

Education

Bachelor of Technology - Electrical, Electronics And Communications Engineering

Sree Vidyanikethan Engineering College
Tirupati, India
04.2001 -

State Board of Technical Education And Training - Electrical, Electronics And Communications Engineering

Government Polytechnic College
Proddatur, India
04.2001 -

State Board of Secondary Education -

Sree Narayana Vidya Vihar High School
Atmakur
04.2001 -

Skills

    SOC Operations

Phishing Analysis - Microsoft Defender, Trend Micro Email Gateway

SIEM tools - Azure Sentinel, Splunk

Endpoint Security - Crowd Strike, Trend Micro

Vulnerability Management - Alien Vault, Nessus

Threat Intel - USTA Prodaft

Ticketing Tool - Service Now, Service Desk Plus

Defender for Cloud Apps

Incident Response

MITRE Attack, Cyber kill chain model

Malware Analysis

Certification

Configure SIEM Security Operations using Microsoft Sentinel

Timeline

SOC Analyst

Stefanini Private Limited
10.2023 - Current

Security Engineer

Sutherland Global Services
09.2021 - 10.2023

Bachelor of Technology - Electrical, Electronics And Communications Engineering

Sree Vidyanikethan Engineering College
04.2001 -

State Board of Technical Education And Training - Electrical, Electronics And Communications Engineering

Government Polytechnic College
04.2001 -

State Board of Secondary Education -

Sree Narayana Vidya Vihar High School
04.2001 -

Similar Profiles

CREATE PROFILE
Rammohan Reddy KunduruSOC Analyst