Deepankshi Kasliwal
George Town,Cayman Islands
Summary
Dedicated and experienced Security Detection Engineer with 8 years of expertise in designing, implementing, and optimizing security detection capabilities. Proficient in leveraging industry-leading tools and frameworks to proactively identify and respond to security threats. Seeking to contribute technical skills and knowledge to a dynamic cybersecurity team in a challenging security engineering role.
Overview
8
8
years of professional experience
Work History
Security Detection Engineer (InfoSec)
Maples Group
George Town, Cayman Islands
09.2022 - Current
- Developed and implemented countermeasures against unauthorized exploits using SIEM tool Splunk, by analyzing attacker tactics and techniques, and leveraging frameworks like MITRE ATT&CK.
- Analyzed threat intelligence feeds and security logs to identify patterns and IOCs.
- Implemented security detections rules for cloud identity threat protection to enhance the security of cloud based data.
- Evaluated and tuned detection rules to minimize false positives and noise. Served as a technical resource for SecOps teams in investigations and active response to security incidents.
- Participated as a member of the purple team during the Mandiant assessment, collaborated with both red and blue team members to simulate attacks, assess defensive measures and enhance overall security postures.
- Assisted in responding to IT audits, collaborating with internal auditors to address findings and implement remediation measures.
- Assisted in the development of security policies, procedures, and guidelines.
- Documented and maintained Detection and Incident Response procedures to address security process.
- Developed, managed, and measured KPIs, KRIs and additional metrics to understand the trends, quality, and insights from the detection results to facilitate business decisions.
- Led and managed a team of 4-security analysts in maintaining, operating, and supporting information security systems for the enterprise, leading to a 50% improvement in threat detection effectiveness.
Lead Solution Advisor
Deloitte
Bengaluru, Karnataka
10.2021 - 04.2022
- Worked with CISO, SecEngg and Operation team to create a yearly roadmap for SIEM health, project, upcoming work included with suggestions for areas of improvements.
- Conducted thorough log analysis to identify gaps and areas of improvement to enhance overall security posture.
- Created dashboards on Endpoint Device and User Investigation monitoring.
- Researched and Developed detection rules surrounding cloud-based platform such as
Azure, o365.
Infrastructure Engineer 1
American Express
Bengaluru, Karnataka
04.2020 - 10.2021
- Designed, deployed, and managed Splunk Infrastructure to support log aggregation, search, and analysis for security and operational use cases.
- Orchestrated Splunk automation via build and deployment tools. (Ansible)
- Optimized Splunk configurations and indexes to improved search performance and reduce storage requirements.
- Collaborated with cross-functional teams to onboard new data sources and develop custom dashboards and reports.
Security Operations Analyst
Wells Fargo
Bengaluru, Karnataka
12.2018 - 03.2020
- Monitored Security alerts and conducted investigations using SIEM tools to identify and respond to potential security incidents.
- Collaborated with teams to triage and prioritize security incidents based on severity and impact.
- Evaluated and created the Splunk alerts and reports to improve the response capabilities.
Application Development Analyst
Accenture
Bengaluru, Karnataka
01.2016 - 11.2018
- Development experience in customizing Splunk dashboards, visualizations, configuration, reports, and search capabilities using customized Splunk queries.
- Led the design and implementation of Splunk solutions tailored to meet specific business and security requirements.
- Developed and maintained Splunk configurations, indexes, and data inputs to optimize performance and usability.
Education
Bachelor of Technology - Computer Science
Jaipur Engineering College & Research Center
Jaipur06-2015
Skills
- SIEM tool (Splunk)
- Incident Response
- Threat Hunting Methodologies
- EDR - Red Canary, Defender ATP, Carbon Black
- Microsoft Azure
- Scripting and Automation (Python & Shell script)
- System Administration (Linux & Windows)
- Vulnerability Assessment (Burp Suite & Snyk)
- Security Frameworks (ISO 27001, NIST SP 800-53)
- Log Aggregation & Analysis
- Strong analytical and problem solving skills
- Excellent communication and collaboration abilities
Timeline
Security Detection Engineer (InfoSec)
Maples Group
09.2022 - Current
Lead Solution Advisor
Deloitte
10.2021 - 04.2022
Infrastructure Engineer 1
American Express
04.2020 - 10.2021
Security Operations Analyst
Wells Fargo
12.2018 - 03.2020
Application Development Analyst
Accenture
01.2016 - 11.2018
Bachelor of Technology - Computer Science
Jaipur Engineering College & Research Center