Security & Compliance Analyst – Senior Associative - PWC Acceleration India Pvt Ltd.
(2025-09 - 2025-12)
Technology Analyst - INFOSYS India Pvt Ltd.
(2024-08 - 2025-05)
- Architected and deployed Microsoft Purview Data Loss Prevention policies across Exchange Online, SharePoint, OneDrive, Teams, and Endpoint DLP protecting users with custom DLP rules
- Implemented Microsoft Purview Information Protection with sensitivity labels and auto-labeling policies achieving 88% automatic classification rate across documents
- Configured Microsoft Entra ID (Azure AD) Conditional Access policies implementing Zero Trust security model with risk-based authentication and Multi-Factor Authentication (MFA) for all users
- Good knowledge on One Trust platform for privacy and compliance management, including consent management, data governance, and regulatory frameworks (GDPR, CCPA, DPDP Act)
- Managed Microsoft Defender for Office 365 including Safe Links, Safe Attachments, and Anti-Phishing policies reducing email-based threats by 75% and achieving zero successful phishing attacks
- Deployed Microsoft Defender for Endpoint across devices implementing attack surface reduction rules, device control policies, and automated investigation & remediation workflows
- Established Microsoft Purview Insider Risk Management framework detecting 8 high-risk incidents including data exfiltration attempts and unauthorized access to sensitive information
- Configured Microsoft Purview Communication Compliance policies monitoring organizational communications for regulatory violations, offensive content, and sensitive information sharing
- Managed Microsoft Purview eDiscovery (Standard & Premium) conducting legal investigations, processing of data with advanced analytics and predictive coding
- Implemented Microsoft Purview retention policies and labels across Microsoft 365 workloads ensuring regulatory compliance for GDPR, HIPAA, and ISO 27001 requirements
- Integrated Microsoft Defender for Cloud Apps (MCAS) discovering shadow IT applications and implementing Cloud App Security policies with session controls and access restrictions
- Configured Microsoft Entra ID Identity Protection detecting risky sign-ins, compromised credentials, and impossible travel scenarios with automated risk remediation workflows
- Deployed Azure Information Protection (AIP) with document tracking, usage analytics, and revocation capabilities protecting intellectual property and confidential business documents
- Managed Microsoft Purview Audit (Premium) with intelligent insights, long-term audit log retention, and high-value event detection for forensic investigations
- Developed PowerShell automation scripts using Microsoft Graph API for compliance reporting, policy deployment, and bulk sensitivity label assignment reducing manual effort by 60%
- Created executive compliance dashboards using Power BI providing real-time visibility into DLP effectiveness, policy violations, and security posture metrics
- Conducted security awareness training for 500+ employees on data protection best practices, phishing prevention, and Microsoft Purview capabilities improving security culture
Consultant - Capgemini Technology Services India
(2019-03 - 2024-04)
- Configured Microsoft Purview Data Loss Prevention policies for Exchange Online, SharePoint, and OneDrive protecting sensitive data including PII, PHI, and financial information
- Implemented Microsoft Purview sensitivity labels with encryption, content marking, and access restrictions protecting confidential business documents and customer data
- Managed Microsoft Entra ID user provisioning, group management, Conditional Access policies, and Multi-Factor Authentication deployment for users
- Deployed Microsoft Defender for Office 365 Safe Links and Safe Attachments policies protecting against malicious URLs and zero-day malware attachments
- Configured Microsoft Purview retention policies across Microsoft 365 workloads implementing automated retention, deletion, and disposition workflows
- Monitored Microsoft 365 Security & Compliance Center analyzing daily alerts for policy violations, suspicious activities, and security incidents
- Performed Content Search and eDiscovery operations for internal investigations managing search queries, legal holds, and evidence exports
- Implemented Microsoft Defender for Endpoint policies including antivirus configurations, attack surface reduction rules, and device isolation procedures
- Managed Microsoft Purview Compliance Manager conducting compliance assessments for GDPR, ISO 27001, and SOC 2 frameworks
- Configured Microsoft Purview trainable classifiers using machine learning models for automatic identification of contracts, invoices, and sensitive business documents
- Assisted in Microsoft Defender for Cloud Apps (MCAS) configuration implementing cloud application discovery and OAuth app governance policies
- Developed compliance documentation including policy procedures, user guides, and incident response playbooks for security operations team
- Provided tier 1 and tier 2 support for security incidents conducting initial triage, log analysis, and escalation to senior security analysts
- Participated in Microsoft 365 security posture assessments using Microsoft Secure Score recommendations improving organizational security score by 25%
- Conducted end-user training sessions on data classification, sensitivity labeling, and secure collaboration practices across Microsoft Teams and SharePoint
SCCM - Capgemini Technology Services India
(2019-03 - 2021-08)
2+ Years of experience in System Center products like Microsoft SCCM. Hands on experience in Microsoft Products like Windows Active Directory, DNS, DHCP and SCCM. Experience of managing & supporting 24/7 support environments.
- Installing and Configuring the SCCM Primary/ Secondary Sites as per requirement
- Expertise in SCCM Configurations such as Boundary groups, Discovery methods, Custom Client Settings
- Good experience in Software Distribution such as Packages and Application Management and troubleshooting
- Good Experience on Management Point and Distribution Point troubleshooting
- Expertise in Client Push Installation, Client installation Failure Trouble shooting and Client remediation
- Validating packaged application for deployment readiness, Knowledge on fundamentals of SCCM, MSI Packaging, WSUS & SQL knowledge, AD, DNS, DHCP knowledge
- Deployment of Application and packages and Software Updates in SCCM
- Create modify and produce Custom Reports
- Installation & troubleshooting of SCCM client
- Troubleshooting of SCCM packages in client computers
- Setting up new packages along with creating Collections and Advertisements
- Creating simple query-based Collections
- Troubleshooting client connectivity and package installation issues by analysis of logs
- Working on tools for client remediation and machine remediation to achieve compliance for the deployment
- Patch management of Workstation along with troubleshooting
- Good Knowledge in Software Inventory and Hardware Inventory Process flow
- Software updates with SCCM (every 2nd week of the month patch releases, will perform Pilot testing and General Production environment followed by client required schedule)
- Good Experience in Patching and Patch failure trouble shooting and Custom reporting as per business requirement
- Creating Software Packages for distribution and deploying to the clients
- Understanding on reporting requirements and able to prepare and send reports on time
- Ability to create Custom query reporting as business requirements
