MAMATHA SAI YARABARLA
Senior Vulnerability Analyst & Cyber Validation Lead
Melbourne
Summary
Dynamic Senior Vulnerability Management Analyst with extensive experience in leading security assessments and collaborating with cross-functional teams to enhance vulnerability management processes. Proven expertise in utilizing advanced tools for EDR, Vulnerability assessment for on-prem & cloud based assets, Phishing analysis, Perimeter & Application Security, SIEM, and Power BI to deliver comprehensive security insights and automate critical processes. Demonstrated success in managing remediation efforts that significantly improve security posture and ensure compliance with industry standards. Committed to advancing the field of cybersecurity by leveraging technical skills and leadership capabilities to effectively safeguard organizational assets.
Overview
6
6
years of professional experience
6
6
Certifications
Work History
Senior Vulnerability Management Analyst
Wipro Technologies
02.2023 - Current
- Leading security assessments for multiple business units' infrastructure using Tenable.
- Assisting with web application scanning (SAST) using Invicti, and Tenable. Also, collaborate with different teams to get the DAST scans done based on stakeholder request.
- Creating insightful visualizations that provide details, outlining the current security posture of the business unit's vulnerability management.
- Collaborate with Infrastructure, Application teams, and Stakeholders to improve the existing Vulnerability Management Lifecycle, fulfilling stakeholder requirements.
- Being the main point of contact for several business units, stakeholders, and providing satisfactory services as a Cyber Validation Lead.
- Collaborating to create and manage the remediation process for major and minor vulnerabilities, therefore improving the security posture. Evaluated current processes to develop improvement plans reducing risk by at least 30%.
- Continuously supporting with Audits, POV's conducted, Transition Service Agreements and divesture for Business Units.
- Working with Splunk and Power BI integrations to provide KPIs, KRIs, and mean remediation details. Also, working with SOAR and Engineering Teams to automate existing processes.
- Collaborating with threat intel and CSIRT for any critical zero-day vulnerabilities, ensuring immediate remediation or mitigation tactics are applied.
CYBER SECURITY ANALYST
Bluecube Technology Solutions
07.2022 - 01.2023
- Using Sentinel One to monitor client's assets and provide deep analysis
- Utilizing Recorded Future for Threat Intelligence and to monitor brand, vulnerability and Identity intelligence
- Monitoring Intune for endpoint protection and 365 Defender, exchange admin center for monitoring, creating policies and investigate the client's accounts
- Have conducted Security auditing for clients 365 tenancy and improve the security measures
- Using N-able and Sophos as third party monitoring tools
- Helping the team with research to build Azure Sentinel for SIEM
- Have designed logic apps for alert triggering and also connected different third party tools to pull logs into Sentinel
- Performed regular reviews of user access rights, minimizing the risk posed by insider threats or compromised accounts.
CYBER SECURITY ANALYST
Tata Consultancy Services
07.2019 - 12.2020
- Performed regular maintenance and support during our-of-hours when required, for ongoing and attentive support
- Assist with triage, prioritization and response to cyber security events and incidents, consistently managed client needs practicing agile methodology, resulting in positive outcomes
- Also, Assisted in writing the security information and event management play book
- Managed web proxy policy configuration provided by third party and analyzed using sand-boxing
- Develop and implement effective cyber security plans to maintain the security of computer files against unauthorized modification, destruction, and disclosure
- Asset discovery, vulnerability assessment, behavioral monitoring, intrusion detection and SIEM (security information and event management)
- Maintain Up-to-date knowledge of cyber threats and drive continuous learning and knowledge sharing with in the team
Education
MSc - Data Science
University of Essex
Essex12.2021
Skills
- Incident response management using ServiceNow
- Malware threat analysis using T&T with MITRE Attack and other Framework
- Threat hunting & Risk assessment with expertise in Recorded Future and using NIST Framework
- SIEM & SOAR - IBM Q-Radar, Azure Sentinel, Splunk
- Proficient in Tenable Nessus for vulnerability and compliance evaluations for Assessment and management of vulnerabilities
- Supported with Application security, Pen-testing, Network & Perimeter Security and Email security
- Endpoint detection and Response expertise in Microsoft Defender for Endpoint, Sophos, SentinelOne and Crowdstrike Falcon
- Custom visual reporting based on customer specifications showcasing risk imposed - KPI's & KRI metrics created via Excel and Power BI
- Stakeholder Engagement & Management
- Cross-functional team collaboration
Certification
ISO 27001 Foundation - Information Security Certification
Timeline
CompTIA CySA+
09-2025
Microsoft Security Operations Analyst - SC 200
08-2025
CompTIA Security+
07-2025
Senior Vulnerability Management Analyst
Wipro Technologies
02.2023 - Current
Blue Team Level 1 Certification
11-2022
Microsoft Information Protection Administrator - SC400
09-2022
CYBER SECURITY ANALYST
Bluecube Technology Solutions
07.2022 - 01.2023
ISO 27001 Foundation - Information Security Certification
12-2019
CYBER SECURITY ANALYST
Tata Consultancy Services
07.2019 - 12.2020
MSc - Data Science
University of Essex