Shruti Dudhat

Experience

• 

  Brainstorm Technolabs

  Mar 2020 - Feb 2022

  SOC Analyst

  • Conducted continuous monitoring of networks and systems utilizing SIEM tools like Splunk and QRadar, distinguishing genuine threats from false alarms, enhancing incident detection and response.• Managed the organization’s SIEM infrastructure, handling over 25 million daily security events, improving correlation precision through meticulous rule and alert optimization.• Investigated security notifications and examined log data to pinpoint potential threats and vulnerabilities, ensuring prompt escalation and thorough investigation of security incidents.• Ensured operational excellence of the SIEM platform, maintaining robust data capture and correlation capabilities to support effective security event analysis.• Executed comprehensive vulnerability assessments, evaluating risks and threat exposure to maintain system integrity, prioritized remediation activities in collaboration with IT departments for timely resolution of vulnerabilities.• Kept abreast of emerging security threats by integrating the latest threat intelligence into the organization’s security monitoring and response strategies. Show less

• 

  CIBC

  Aug 2023 - now

  Information Security Analyst

  • Conducted ethical hacking and penetration testing using tools like Nmap, Metasploit Framework, and Wireshark to identify vulnerabilities, enhance the security posture, and support proactive threat-hunting activities• Implemented and maintained security policies and procedures in accordance with the NIST Framework, ensuring compliance with industry standards and regulatory requirements• Managed Identity and Access Management (IAM) using tools like IDM and Okta to enforce security policies, monitor user access, and prevent unauthorized access to critical systems• Analyzed TCP/IP traffic using Wireshark and other network analysis tools to detect anomalies, identify potential threats, and ensure secure communication across networks.• Utilized forensic tools such as Magnet AXIOM, Autopsy, and OSForensic to conduct digital forensic investigations, evidence collection, and analysis, supporting incident response and litigation processes.• Monitored and analyzed security events using SIEM tools such as Splunk and IBM QRadar to detect potential threats, perform incident detection, and respond to security incidents• Configured and managed network security infrastructure, including firewalls (Cisco ASA), Web Application Firewalls (WAF), Intrusion Detection Systems (IDS), and Intrusion Prevention Systems (IPS) to protect against network intrusions and unauthorized access• Secured cloud environments by utilizing Amazon GuardDuty, Azure Security Center, and Azure WAF to monitor, detect, and mitigate cloud-based threats and enhance cloud security posture• Conducted regular security assessments, vulnerability scanning, and risk management activities to identify and address security gaps in networks, applications, and systems• Collaborated with cross-functional teams to implement OWASP guidelines for secure application development, including code reviews, vulnerability remediation, and penetration testing using tools like OWASP ZAP Show less