Srikar Guda

Spearheaded a 40% improvement in threat detection through advanced SIEM and SOAR configurations,

aligning with SOX compliance requirements.

• Identify Security Events and Incidents in real-time through centralized monitoring using SIEM tools

apply containment and Eradication strategies and follow up with recovery and tabletop exercises.

• Managed compliance checks of GDPR, SOX, HIPAA, ISO 27002and PCI-DSS using Microsoft

Defender,

demonstrating proficiency in compliance tools.

• Utilized Azure Sentinel and Microsoft XDR for End Point, O365, Email, and applications security.• Identified, prioritized, and implemented various cybersecurity initiatives with NIST CSF as a baseline,

contributing to the overall security posture of the organization.

• Monitored and analyzed threat intelligence sources (OSINT) to guide detection strategies, successfully

identifying and mitigating potential threats.

• Developed detection logic for attacker tactics, techniques, and procedures, enhancing system security and

response capabilities.

• Engaged in continuous learning and development, staying abreast of emerging trends and solutions in

cybersecurity.

• Utilized SQL Query tools for Data analysis and shared the results with respective teams for decision-

making.

• Leveraged Wireshark for deep packet analysis to monitor network traffic and identify suspicious

activities, and utilized Nmap for network inventory, managing service upgrade schedules, and monitoring

host or service uptime.

• Conducted Nessus scans, mitigating 15 high-risk vulnerabilities per scan, resulting in a 48% reduction in

threats.

• Managed detection and response processes using advanced technologies, ensuring compliance with SLAs

and security standards.

• Performed Data classification based on sensitivity and aligned security controls to protect integrity.

• Authored 100+ pages of Standard Operating Procedures (SOPs) for IT Risk Management, Incident

handling playbooks, procedures and policies.

Played a key role in mitigating risk and ensuring user access compliance with regulatory requirements,

such as SOX. Optimized controls and business processes, which led to a significant improvement in

overall governance by 64%.

• Successfully integrated Splunk SIEM tool with Onapsis for enhanced vulnerability analysis. Scheduled

jobs and alarms within this integrated system to proactively manage vulnerabilities.

• Provided expert guidance for SOD Resolutions and design of SAP security strategy according to

customer requirements and SAP best practices.

• Reviewed CVE and CVSS scores, developed disaster recovery plans, and gained knowledge in Incident

Management and Cybersecurity Frameworks.

• Built and maintained collaborative relationships with IT SOX Stakeholders and Internal Audit teams.

This involved fixing Authorization Vulnerabilities using Onapsis, resulting in a risk reduction of 43%.

• Documented and performed root cause analysis after addressing each vulnerability, ensuring lessons were

learned and best practices were developed for future reference.

• Created and presented comprehensive reports, documents, and presentations on vulnerabilities and auditfindings to stakeholders with strong analytical skills. This involved calculating and communicating key

metrics (KPIs) related to security and compliance.

• Ensured that all security changes were appropriately documented, tested, reviewed, and implemented

within agreed change control windows, maintaining the integrity of the system security.

• Stayed current on emerging threats and trends in cybersecurity, adapting testing methods as needed to address new risks.
• Collaborated with external vendors to perform penetration tests on network devices, operating systems and databases.
• Developed automated scripts and tools using Python and Bash to streamline recurring penetration testing tasks and reporting processes.
• Created comprehensive documentation outlining test processes, results, and recommended actions for client review.
• Conducted regular security assessments to ensure continued compliance with industry standards and regulations.
• Developed risk assessment reports to identify threats and vulnerabilities.
• Performed threat analysis and identified attacker tactics, techniques, and procedures (TTPs) using MITRE ATT&CK framework.