PUJITHA CHEKURI

Senior SOC Analyst || Cybersecurity || SIEM-Splunk || Microsoft Sentinel

Goal-oriented, driven, and resourceful IT professional with experience as a Security Analyst with 7+ years of experience in ensuring the integrity
and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of
vulnerability scanning devices. Security Analyst expert in assessing, identifying, and managing threats to the organizational network. This
includes providing recommendations to mitigate the risk posed by threats and vulnerabilities. Strong hands-on experience in security
management tools like Splunk Security Incident and Event Management (SIEM). Motivated achiever with demonstrated ability to recommend
security enhancements.

CAREER CONTOUR
pujitha.110@gmail.com
• Highly motivated and cybersecurity professional with 4.4+ years of experience in the
Information Security & Risk field and overall 7+ years experience in IT industry. Proven track
record of successfully identifying, analyzing and responding to security threats and
+91 9491218700 vulnerabilities in a timely manner. Possesses excellent problem-solving and investigative skills,
as well as strong communication and interpersonal skills.
AREAS OF
• Experienced in Monitoring & Analysis of Alerts in Splunk ES from the sources such as EDR,
EXCELLENCE Firewall & IPS/IDS, Email gateway, Cloud, DLP etc.

Information Security • Deliver an Enhanced Recovery Model for resolution of Major Incidents of complexity or long
(Security Operations duration Provide integrated management and coordination of Incident Management, Problem
Management, Change Management, and Availability Management processes
Risk Management
• 4.4+ years of experience in Information Security. Exposure to using frameworks like MITRE
ATT&CK.
Splunk Enterprise Security
• Good understanding of various SOC processes like monitoring, analysis, playbooks,
Threat Analysis SOC escalation, incident documentation, SLAs, client meetings, report walk throughs, bridge calls,
RFPs, etc.
Cloud Security • Potential to bring any possible security threats or violation of Security Policy to the notice of
the Information Security Manager.
Cyber Threat Intelligence
(CTI) • Good knowledge on cyberattacks and attack vectors. Working level knowledge on security
solutions like Antivirus, Firewall, IPS, Email Gateway, Proxy, IAM, TI, VA Scanners, WAF etc.
Amazon Web Services • Basic knowledge on skills like Malware Analysis, Threat Hunting, Dark Web Monitoring.
(AWS)

Problem management
WORK EXPERIENCE
Change management
Sr. Security Analyst
Remediation Assessment
Cognizant
07/2020 - Present,
Achievements/Tasks
Vulnerability Assessment
Skills: SIEM · DLP · Vulnerability Assessment · Threat Assessment · Cyber Threat Hunting (CTH) ·
Penetration Testing · Cloud Security · SOAR · Threat Analysis
Information Security
Perform network traffic analysis using raw packet data, network flow, Intrusion detection Systems
(IDS), and custom sensor output from communication networks. work with a soc-security analyst for
Splunk Enterprise MSKCC. Creating/modifying standard operational procedures & reviewing them.
Responsible for 1)Monitoring security alerts. 2) Conducting security investigations. 3)Incident response
Privilege management 4) Security operations. 5) Communication and reporting.
Performs security Incident Event Management (SIEM) console monitoring and correlation. Perform
Incident management web application, mobile application and network penetration tests.
Fixed detected vulnerabilities, in order to maintain high security standards. Train newly joined
Cybersecurity Incident engineers/associates about process and project activities. Engage in threat investigation, Email security
Response handling, and security events handling.
Tracks performance metrics and provides timely updates to CSOC management. Daily proactively
Security Information and monitoring and dealing with the security incidents using SIEM and ERD tools
Event Management (SIEM) Co-ordinating with other Geo location SOC team with threat alert investigation. Monitoring the events,
collecting logs, creating tickets and investigating unauthorized IP,URL
Service Level Agreements Reviewing & troubleshooting of silent log sources by finding out the root cause & resolving them.
or Operational Level Writing complex KQL queries to fetch data and to present the information to Client within the time
Agreements limit.

Page 1 of 2
TRAININGS & WORK EXPERIENCE
CERTIFICATIONS Service Delivery Specialist
• Trained on CompTIA Cyber IBM
Security Analyst (CySA+) 05/2015 - 10/2019,
Achievements/Tasks
• Az-900 certification Directed interaction with the Leadership and consultation for improvements and other requests.
Identify potential risks and prepare a Risk Mitigation Plan in concurrence with Business and clients.
• CEH v9 Work on exception management.
This role includes day-to-day operational management of end-to-end Service Delivery to ensure
• Trained on CEH achievement of Service Level Agreements, resolution of issues impacting individual and overall team
performance and customer satisfaction. Tasked with multiple projects to lead to improve the clients
environment.
• CISSP-short term goal
Vital person of the team in developing dashboards on Defects, Incidents, Project cost etc. Review &
Manage Risk which has the potential to impact the Service Availability & SLAs.
Requirement Gathering and Finalization for the incoming requests with various Business Leads. Manage
changes, review all the Change requests, coordinate with the business including the 24x7 teams and
IT SKILLS provide change windows for service line owners. Ensure to prevent any unexpected service outages
Troubleshooting and Issue Resolution for the service request and Incident tickets (S1 to S4) within the
ATP Defender predefined SLA.s
Began initiatives like Production Ticket Analysis and Production Defect Reduction and connect with
various Domain and Application Teams with root analysis of their teams and suggestions for
Symantec DLP improvement.
Adhered to Standard Operating Procedures and Work Instructions related to global security operations
KQL Queries and account management standards
Administrator Identity and security access globally for human and functional accounts across multiple
Microsoft Sentinel system and applications. This includes on boarding off boarding, Incident problem management,
Privilege access, risk management and compliance.

Proofpoint

SIEM TOOLS: QRadar, PROJECTS

Splunk, Microsoft Sentinel
Multiple shared services SOC (MSS SOC) for internal cognizant network along with Healthcare,
Finance and Airlines Clients.
Organization: Cognizant
SIEM TOOLS: QRadar,Splunk, Microsoft Sentinel
KEY Preparing Health-check of the critical servers in client-specific environment along with status codes to ensure all the
devices in the environment are up and running
ACCOMPLISHME
NTS Emblem Health
Organization: Cognizant
• Received Orion Award for Tools: Microsoft Sentinel, Proofpoint, Symantec DLP, ATP Defender
exemplary teamwork from Providing L1 support for incident and alert handling in Microsoft Sentinel by writing KQL Queries
client in IBM
IBM (BMO) Bank of Montreal
Organization: IBM
Supporting multiple applications such as RSA Authentication Manager, RSA Sec-Ops, RSA VIA Application On-
Boarding, Maintenance, including user access management, user account provisioning, privilege management,
Incident management, Problem management and Change management.
SOFT SKILLS
A Branded Super Market in USA
Organization: IBM
Communication Skills
Handle Incident Escalations of SOC L1 queue
Event analysis, attack identification, and initial investigation with Proactive monitoring for security threats
Team Management Launch and track investigations to resolution. Recognizes attacks based on their signatures. – Differentiates false
positives from true intrusion attempts.

Adaptability

Tech-Savyy
EDUCATION
Bachelor of Engineering
Analytical Skills Maharaj Vijayram Gajapathiraj College of Engineering and Technology (MVGR)
2010 - 2014,

Critical Thinking

Page 2 of 2