Skip to main content
pavan UserPU
Open to opportunities

pavan User

@pavanuser8

Security Analyst with 5+ years in threat detection, incident response, and SOAR automation.

India
Message

What I'm looking for

I’m looking for a role where I can own security operations end-to-end—threat detection, phishing investigations, SOAR automation, and incident response—using Splunk and Microsoft Sentinel to reduce risk quickly with clear playbooks and measurable outcomes.

I’m a Security Analyst with 5+ years of hands-on experience in Information Security. I focus on turning security telemetry into fast, repeatable actions—using SIEM/SOAR, endpoint security, and strong investigation workflows.

At Capgemini (Bangalore), I’ve been implementing and fine-tuning SOAR playbooks and automation rules in Microsoft Sentinel. I integrated Microsoft Sentinel with Microsoft Defender XDR, Defender for Endpoint, Office 365, Azure AD (Entra ID), and Azure Logic Apps, and I build custom detection use cases using SPL and KQL.

I also own key parts of the security stack: administering endpoint health checks and vulnerability reporting, supporting and troubleshooting Splunk SIEM correlation searches, and running vulnerability scanning to generate automated reports. I’ve managed Office 365 email security for both on-premises and cloud environments, including phishing and malware email analysis with indicator handling (allow list/block list) based on IOCs.

Previously at Quess Corp Limited (Client: Samsung), I managed endpoint agents across Windows and Linux, handled in-depth investigations in the Defender portal, and supported governance through Intune compliance policies and ASR rules. I also guided juniors through KT sessions and helped coordinate responses using threat actor identification with Mitre ATT&CK—while strengthening IAM using PIM/PAM, RBAC, and Entra ID.

Experience

Work history, roles, and key accomplishments

CA

Security Analyst

Capgemini

May 2024 - May 2026 (2 years)

Implemented Microsoft Sentinel SOAR automation using Logic Apps playbooks and rules, integrating Sentinel with Defender XDR, Defender for Endpoint, Office 365, Entra ID, and Azure services. Built and tuned Splunk and Defender detection use cases, initiated vulnerability scans, monitored cloud compliance, and led incident handling including phishing and malware email analysis.

Microsoft Sentinel SOARAzure Logic AppsSplunkKusto Query Language (KQL)Microsoft DefenderMicrosoft Defender For EndpointMicrosoft 365 DefenderVulnerability Management
QL

Security Analyst

Quess Corp Limited

Feb 2021 - May 2024 (3 years 3 months)

Managed endpoint agents across Windows and Linux, administered Intune compliance policies and ASR rules, and supported onboarding of servers to Defender XDR using Defender and CyberArk. Wrote and optimized KQL queries in Azure Sentinel, enforced conditional access with Entra ID, escalated incidents per SLA, and handled phishing/spam cases including SPF, DKIM, and DMARC configuration.

Microsoft IntuneAzure SentinelKusto Query Language (KQL)Entra IDActive DirectoryCyberArkConditional Access

Education

Degrees, certifications, and relevant coursework

VB

Vishnu Institute of Technology, Bhimavaram

Bachelor of Commerce, Computers

Completed a B.Com (Computers) program at Vishnu Institute of Technology in Bhimavaram, Andhra Pradesh (2021).

Tech stack

Software and tools used professionally

Splunk logo

Splunk

Gmail logo

Gmail

Jira logo

Jira

Linux logo

Linux

Windows logo

Windows

Windows Server logo

Windows Server

Azure Active Directory logo

Azure Active Directory

CrowdStrike logo

CrowdStrike

ServiceNow logo

ServiceNow

Score logo

Score

Azure Logic Apps

Bridge logo

Bridge

Safe logo

Safe

Check logo

Check

Falcon logo

Falcon

Availability

Open to opportunities

Location

India

Authorized to work in

India

Job categories

Security AnalystIncident ResponseThreat Detection AnalystIdentity & Access Management ManagerVulnerability ManagerIT Security AnalystCybersecurity AnalystInformation Security AnalystInfoSec Analyst

Skills

BridgesSplunkESSplunkAzure SentinelMicrosoft Sentinel SOARAzure Logic AppsKusto Query Language (KQL)Microsoft DefenderMicrosoft Defender For EndpointMicrosoft 365 DefenderEndpoint Detection And ResponseCrowdStrike Falcon Cloud SecurityMicrosoft IntuneEmail SecurityAWS CloudwatchServiceNowJiraServiceNow Incident Response ReportsPythonActive DirectoryAzure EntraConditional AccessPIMPAMRBACCyberArkEmail Phishing InvestigationAzure Active DirectoryCheckCrowdstrikeFalconGmailLinuxSAFeScoreWindowsWindows Server

Interested in hiring pavan?

You can contact pavan and 90k+ other talented remote workers on Himalayas.

Message pavan

People also viewed

View all talent

Find your dream job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan