Venkat Ramireddy

Overall 6+ years of experience as Security Engineer and Vulnerability Management Engineer. And network and web pentest cybersecurity professional with a proven record in safeguarding enterprise environments through expertise in Endpoint Detection and Response (EDR), Security Information and Event Management (SIEM), Data Loss Prevention (DLP), and Vulnerability Assessment & Penetration Testing (VAPT). Adept at leveraging advanced tools, automation, and AI—including ShellGPT—to enhance threat detection, incident response, compliance, and operational efficiency.

EDR (Endpoint Detection and Response): Skilled in deploying and managing EDR solutions for continuous endpoint monitoring, real-time threat detection, automated containment, and forensic investigations, significantly reducing attack surfaces and response times. SIEM (Security Information and Event Management): Experienced in integrating and fine-tuning SIEM platforms for centralized log management, advanced threat detection with correlation rules, UEBA, compliance reporting, and orchestrated response, supporting robust Security Operations Center (SOC) workflows. DLP (Data Loss Prevention): Proficient in implementing and optimizing DLP controls to discover, classify, monitor, and protect sensitive data across endpoints, networks, and cloud environments.

Ensures regulatory compliance and rapid incident handling through effective policy enforcement and stakeholder training. VAPT (Vulnerability Assessment & Penetration Testing): Conducts comprehensive vulnerability assessments and hands-on penetration tests, utilizing industry-standard tools and manual techniques to identify, exploit, and report security weaknesses. Collaborates with IT and development teams to prioritize and remediate vulnerabilities, supporting continuous security improvement.

ShellGPT and Security Automation: Expert in harnessing ShellGPT for command-line automation, reconnaissance scripting, payload generation, code review, and log analysis, streamlining ethical hacking workflows and enhancing productivity for defensive and offensive security operations.

Security Analyst - Tech Beez Software Technologies Pvt Ltd

(2023-02 - 2026-05)

• Conduct Network/ System Vulnerability Assessments, Penetration Testing using tools to evaluate attack vectors, identify system vulnerabilities, and provide appropriate remediation plans for mitigation of the identified vulnerabilities.
• Conduct Application vulnerability assessments, Penetration Testing for web applications, identify and report vulnerabilities, provide recommendations, and track closure of identified vulnerabilities.
• Perform Configuration compliance assessments for Endpoints / Assets /network devices and help maintain the security settings at compliant level with Specific Security Standards.
• Perform regular monitoring of patch compliance of the assets in the network, Analyze Patch Advisories and provide remediation steps for the stakeholders.
• Performing comprehensive review and threat adversary modeling for web applications.
• Conduct Vulnerability Assessments, Penetration Testing, Device Hardening, Application Security Assessments, Log Review, Review of Documents, Network Monitoring and Reporting.
• Conduct and compile findings on new vulnerabilities, new tools for departmental use.
• Create project deliverables / reports and assist the client with remediations and discussions.
• Abide by the project timelines and maintain project discipline.
• Hands-on Experience in performing Network Security Assessment and vulnerability Assessment.
• Good understanding of OSI layers and fundamental Operating system concepts, security settings for various flavors of Windows and Linux platforms.
• Manual Penetration Testing skills and techniques are required besides automated tools and frameworks.
• Familiar working with Publicly available exploits codes.
• CyberArk Services: Regularly check the health of CyberArk components such as Vault, PVWA, CPM, and PSM. Manage Privileged Accounts: Onboard, update, and offboard privileged accounts following standard policies. Password Management: Monitor password rotation and ensure compliance with organizational policies. Access Requests: Process user access requests for privileged accounts using CyberArk workflows.
• Incident Management Log Monitoring: Review Vault and other CyberArk logs to identify potential issues or errors. First-Level Troubleshooting: Address basic issues like failed password rotations, PSM session connectivity problems, or user access issues.
• Provided comprehensive report on vulnerabilities and action plan to mitigate the identified vulnerabilities.
• Utilizing various logs, rules, and indicators of compromise to correlate events for the purposes of exploit prevention and incident response.
• Researching, identifying and implementing best security practices for all systems and service deployments.
• Monitoring common vulnerability exposure databases (CVE) and identifying vulnerabilities to prevent exposure to all known and potential threats.
• Using research and analysis of vulnerabilities to identify relevant threats and recommend corrective actions based on summarized reporting results.
• Developing methods for addressing vulnerabilities that include system patching.
• Managing the tracking and remediation of vulnerabilities by leveraging agreed-upon action plans and timelines with responsible technology teams.

Security Analyst - Deloitte Touche Tohmatsu India Private Ltd

(2022-06 - 2023-01)

• Managing all the alerts and providing the approvals to whitelist the URL/Domains at EDR and Firewall level.
• Monitoring all the Splunk/sentinel alerts and finetuning.
• Monitoring all the endpoint logs and creating the use cases if required.
• Experience in Implementation of Log sources integration Linux, windows, defender sources etc. and troubleshooting.
• Doing the Phishing Simulation Activities and Awareness training to all the users and creating the Payloads using Microsoft Defender.
• Monitoring endpoints by using Defender for Endpoint and escalating to users for suspicious activities.
• Conducting security Research and Intelligence gathering on Emerging Threats and Exploits.
• Investigating Incoming events using SOC tools.
• Analyzing Spam/URL phishing/Spoofed emails and providing the necessary action accordingly.
• Handle the complete incident management framework cycle right from incident identification, incident containment, performing root cause analysis, suggestion and implementation of preventive and corrective controls and perform network analysis as needed on a case-to-case basis.
• Working experience on Phishing email analysis and remediation using Microsoft 365 Email protection.
• Working experience on MS defender ATP alert triage and investigation.
• Worked on email analysis (Header, URL, and attachment analysis) for detecting threats such as phishing and other social engineering attacks.
• Provided comprehensive report on vulnerabilities and action plan to mitigate the identified vulnerabilities.
• Utilizing various logs, rules, and indicators of compromise to correlate events for the purposes of exploit prevention and incident response.
• Researching, identifying and implementing best security practices for all systems and service deployments.
• Monitoring common vulnerability exposure databases (CVE) and identifying vulnerabilities to prevent exposure to all known and potential threats.
• Using research and analysis of vulnerabilities to identify relevant threats and recommend corrective actions based on summarized reporting results.
• Developing methods for addressing vulnerabilities that include system patching.
• Managing the tracking and remediation of vulnerabilities by leveraging agreed-upon action plans and timelines with responsible technology teams.

Security Analyst - IBM India Private Limited

(2021-08 - 2021-12)

• Perform static malware analysis on isolated virtual servers.
• Recognize potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information.
• Ensure the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices.
• Research new and evolving threats and vulnerabilities with potential to impact the monitored environment.
• Conduct log analysis using ibm qradar.
• Identify suspicious/malicious activities or codes.
• Worked in a 24x7 Security Operations Center.
• Monitoring and analysis of security events to determine intrusion and malicious events.

Security Analyst - Fauxiq Technologies Pvt Ltd

(2019-05 - 2021-07)

M.Tech - JNTUH UNIVERSITY