Summary
Overview
Work History
Education
Skills
Timeline
Generic

YATHEESH REDDY

Summary

Security Engineer with over four years of specialized experience in threat detection, incident response, SIEM engineering, vulnerability management, and security automation across cloud and enterprise environments. Demonstrated hands-on expertise in industry-leading tools such as Splunk, LogScale, QRadar, CrowdStrike, Microsoft Defender, AWS, Azure, GCP, and CI/CD security. Proven track record of enhancing detection coverage, minimizing triage time, reducing vulnerability exposure, and automating security operations to strengthen overall security posture. Committed to leveraging technical skills and strategic insights to drive continuous improvement in cybersecurity initiatives.

Overview

6
6
years of professional experience

Work History

Security Engineer

American Express
San Francisco, CA
06.2024 - Current
  • Built and optimized SIEM detections across endpoint, server, and network telemetry by onboarding and normalizing security logs into Splunk ES and LogScale, enabling faster investigations and stronger alert context.
  • Developed and tuned correlation rules, SPL searches, and dashboards that reduced false positives and improved alert triage time by approximately 25%.
  • Investigated and responded to security incidents using CrowdStrike Falcon, Carbon Black, and Microsoft Defender, driving containment, remediation, and post-incident root cause analysis.
  • Performed MITRE ATT&CK-aligned threat hunting across SIEM and EDR telemetry, improving detection coverage by approximately 20%.
  • Led vulnerability management activities using Qualys, Tenable, and Nessus, including triage, remediation tracking, and validation rescans, reducing vulnerability exposure by 35%.
  • Supported enterprise network security controls including Palo Alto firewall policy updates, VPN/IPsec workflows, IDS/IPS, WAF processes, and segmentation patterns for controlled access.
  • Strengthened identity and access security by supporting Active Directory and Azure AD reviews, MFA controls, and secure access patterns for enterprise environments.
  • Embedded security into cloud-hosted application delivery by enforcing SAST, DAST, SCA, and secrets scanning controls across Jenkins, Terraform, CloudFormation, Ansible, and AWS CodePipeline workflows.
  • Automated recurring security tasks and reporting with Python, Bash, and PowerShell, improving operational efficiency and reducing manual effort for evidence collection and KPI tracking.

Security Engineer

Cisco
Chennai, India
05.2020 - 08.2022
  • Supported enterprise security operations by monitoring system and network environments, managing ticket-driven security workflows, and communicating updates to stakeholders across teams.
  • Triaged incidents and service requests by assessing scope, impact, and urgency, improving time-to-ownership and supporting SLA-driven operations.
  • Administered Windows Server and Linux/Unix environments with focus on secure access controls, patching workflows, and baseline hardening validation.
  • Investigated security alerts using Splunk and QRadar by correlating logs, validating severity, and escalating confirmed threats with clear evidence and response context.
  • Identified and helped remediate more than 150 critical vulnerabilities, contributing to a 35% reduction in potential security incidents.
  • Improved incident response time by 40% through stronger triage practices, clearer documentation, and more effective remediation follow-through.
  • Partnered with infrastructure and network teams to maintain segmentation and secure connectivity using routing, switching, VLAN, and access control principles.
  • Supported virtualization and data center operations using VMware vSphere and Hyper-V to maintain stability and availability for enterprise systems.

Education

Master of Science - Information Assurance & Cybersecurity

Gannon University
Erie, PA
05-2024

Bachelor of Technology - Computer Science

Sreenidhi University
Hyderabad, India
06-2020

Skills

  • SIEM Engineering: Splunk ES, SPL, LogScale, QRadar, log normalization, dashboards, alert tuning
  • Threat Detection & Response: Incident response, threat hunting, MITRE ATT&CK, IOC validation, root cause analysis
  • Endpoint Security: CrowdStrike Falcon, Carbon Black, Microsoft Defender
  • Vulnerability Management: Qualys, Tenable, Nessus, remediation tracking, rescan validation, risk prioritization
  • Cloud & Infrastructure Security: AWS, Azure, GCP, Terraform, CloudFormation, VPC, NAT, security baselines
  • DevSecOps & Automation: Jenkins, AWS CodePipeline, Ansible, Python, Bash, PowerShell, CI/CD security gates
  • Network Security: Palo Alto firewalls, VPN, IPsec, IDS/IPS, WAF, traffic inspection, segmentation
  • Identity & Access Security: Active Directory, Azure AD, MFA, OAuth 20, access reviews, Group Policy
  • Systems & Platforms: Windows Server, Linux/Unix, macOS, VMware vSphere, Hyper-V, Docker, Kubernetes
  • Frameworks & Compliance: NIST, ISO 27001, PCI-DSS, SOX, CCPA, OWASP, security metrics, risk assessment

Timeline

Security Engineer

American Express
06.2024 - Current

Security Engineer

Cisco
05.2020 - 08.2022

Bachelor of Technology - Computer Science

Sreenidhi University

Master of Science - Information Assurance & Cybersecurity

Gannon University
YATHEESH REDDY