Vikhitha Muppala
SOC Senior Analyst
Bristol
Summary
Cybersecurity professional with thorough understanding of threat landscapes and defensive measures. Experienced with monitoring and analyzing security events to protect organizational assets. Highly collaborative, known for working effectively within teams and adapting to evolving security challenges, bringing strong analytical and problem-solving skills to table.
Overview
5
5
years of professional experience
4
4
years of post-secondary education
5
5
Certifications
Work History
SOC - Senior Analyst
Deloitte USI
Hyderabad - India
02.2023 - 01.2025
- Performed real-time monitoring, investigating, analyzing, remediation and escalation of incidents/alerts triggered on Splunk SIEM from CrowdStrike EDR, O365 Email Security, Cloud App Security, Azure Active Directory.
- Handling and investigating incidents in ServiceNow, proactively collaborating with senior team members for assistance and escalation when required.
- Working on malware alerts with the help of Crowd strike.
- Conducting a thorough analysis of malware behavior by leveraging a sandbox platform like Cisco ThreatGrid, for detailed examination of the malware’s actions.
- Detailed analysis of phishing and spam emails, along with comprehensive end-to-end containment, remediation and prevention.
- Analyzing suspicious Network traffic to/from of IP’s/Malicious IOC’s from Threat Intel.
- Strong knowledge of the Cyber Kill Chain, and OWASP Top 10 security practices.
- Core member of Content validation and testing group, worked on validating/testing Splunk alerts logic and engaging with respective teams.
- Coordinating with Content Management Group to work on reducing False positives.
- Assisted on developing/updating SOP’s (run books) accordingly with the process.
- Escalating issues to appropriate stake holders for different application issues wherever needed.
Technology Analyst
Infosys Ltd.
Hyderabad - India
01.2020 - 02.2023
- Monitoring the events triggered from various sources like IDS/IPS, EDR, Notables users/assets, addressing the Security Incidents via SIEM (Exabeam Analytics) console, Service Now and analyzing the incidents, coordinating with concerned teams regarding the remediation and closure.
- Creating/modifying correlation rules by use cases or by Logs as per need.
- Creating/modifying Dashboards in Exabeam.
- Handling phishing incidents with the help of Proofpoint protect, TAP and TRAP consoles .
- Whitelisting/Blacklisting external parties/domains based on user business requirements and Security Threat Intelligence on Proofpoint consoles.
- Conduct Mock Phishing Campaign on a regular basis to evaluate/test whether users identify or fall victim to a fake phishing email via Proofpoint/Mimecast console.
- Handling phishing incidents, analyzing user reported emails with the help of Mimecast/Proofpoint.
- Creating/reviewing of the SOPs for the use cases, tackling of alerts and incident triage.
- Presenting weekly/monthly insight reports on the Security posture/best practices to client.
- Review of CB Protect approval requests and Response EDR alerts and working with respective COE teams and end users till closure.
- Monitor all downloaded/executed applications on the digital assets to verify if site and downloaded application were genuine via CB protect/CrowdStrike.
- Resolving the incidents created in CrowdStrike EDR & Antivirus, taking appropriate actions like blocking or quarantining the files and creating awareness to the users.
- Handling Web Site Review requests and troubleshooting on McAfee web gateway Whitelisting and blacklisting of URLs/Domains/IP IOCs for Web Traffic based on Ad-hoc user requests and Security analysis/Threat Intelligence.
- Analysis of the Infosys and other Threat Intel Advisories, getting IOCs actioned on security tools as part of proactive prevention and detection controls.
- Managing and Issuing Internal SSL certificates through Microsoft PKI and external SSL Certificates through Sectigo.
- Helping for External Audit in SIEM logs/events Evidence gathering.
- Providing training and guidance to other team members on Security tool usage/best practices.
Education
Bachelor of Technology - Computer Science And Engineering
Sri Venkateswara Engineering College For Women
Tirupati - India 07.2015 - 04.2019
Skills
SIEM: Exabeam UEBA, Splunk
LogAnalysis: Exabeam Datalake
ThreatHunting: CrowdStrike, Exabeam
Email Security: Proofpoint, Mimecast, O365 Microsoft Defender, Cisco Ironport, Cofense Triage, Phishing analysis
MockPhishingCampaigns: Proofpoint Wombat, Mimecast Awareness Training
Endpoint Security: CrowdStrike EDR, Carbon Black
Antivirus: Windows Defender, CrowdStrike Prevent, Malware analysis
Ticketing Tool: Service-Now
Certificate Management: Sectigo, Microsoft PKI
WAF: McAfee Web Gateway
Network Tool: Thycotic Secret Server
Sandbox: Cisco ThreadGrid & Open Threat intelligence tools - Any run, Browserling, URLScanio
Cloud Platform: Microsoft Azure
Certification
Purdue University: Applied Cyber Security Essentials (ACE)
Timeline
SOC - Senior Analyst
Deloitte USI
02.2023 - 01.2025
Technology Analyst
Infosys Ltd.
01.2020 - 02.2023
Bachelor of Technology - Computer Science And Engineering
Sri Venkateswara Engineering College For Women
07.2015 - 04.2019
Similar Profiles
Arjun RavindranArjun Ravindran
Client Account Management Specialist at Deloitte USIClient Account Management Specialist at Deloitte USI
Chaitanya AroraChaitanya Arora
Quality Assurance at Deloitte USIQuality Assurance at Deloitte USI
ARUN DINESHARUN DINESH
Assistant Manager- Client Account Management at Deloitte USIAssistant Manager- Client Account Management at Deloitte USI