Incident Response Machine Learning

SRAVANI REDDY K

Phone: +1-713-***-**** Email: ***************@*****.*** LinkedIn: sravanireddy OBJECTIVE

Cybersecurity professional with 4+ years of experience specializing in protecting enterprise systems against emerging threats. Proven expertise in SIEM, incident response, forensic analysis, and mitigating advanced cyber threats like APTs and zero-day vulnerabilities. Skilled at balancing robust security measures with business needs, ensuring compliance with industry regulations, and implementing adaptive defense strategies. Passionate about leveraging AI and machine learning to enhance cybersecurity capabilities. Demonstrated ability to optimize threat detection and incident response processes, achieving measurable improvements in security operations. CERTIFICATIONS

• CompTIA CySA+ – Cybersecurity Analyst

• Microsoft Certified - Azure Security Engineer Associate (AZ-500)

• Ethical Hacker – Cisco

• Google AI Essentials – Grow with Google (Coursera)

• Google Cybersecurity Specialization – Grow with Google (Coursera)

• Penetration Testing, Incident Response and Forensics – IBM

• Cyber Threat Management – Cisco

TECHNICAL SKILLS

• Cybersecurity Tools: SIEM (Splunk, QRadar), EDR, IDS/IPS, Firewalls, VPNs, Nessus, OpenVAS, Kali Linux, Burp Suite, Metasploit, Wireshark, Nmap, Snort

• Cloud Security: Microsoft Azure Security Center, Microsoft Sentinel, Azure AD

• Incident Response: Forensic Analysis, Incident Handling, Breach Mitigation

• Compliance & Risk Management: NIST CSF, GDPR, HIPAA, PCI DSS, SOC 2

• Network Security: Multi-Factor Authentication (MFA), Role-Based Access Control (RBAC), Encryption, Data Loss Prevention (DLP), Single Sign-On (SSO)

• Programming/Scripting: Python, Linux Shell Scripting, SQL, SQL, PowerShell

• Operating Systems: Windows, Linux, macOS

• AI Integration: Threat Detection, Security Automation with Python PROFESSIONAL EXPERIENCE

Risk Management and Compliance Specialist (HIPAA Focus) FelixSolutions.AI, Irving, TX

March 2024 – Present

• Conducted risk assessments and implemented strategies to safeguard patient data in compliance with NIST Cybersecurity Framework (CSF) and HIPAA regulations.

• Secured Electronic Health Records (EHR) using advanced encryption, access controls, and data loss prevention (DLP) tools.

• Deployed and managed Azure Security Center, configured Microsoft Sentinel and integrated Single Sign-On

(SSO) to enhance cloud security posture, monitor threats, and ensure regulatory compliance.

• Implemented Azure Active Directory (Azure AD) with Conditional Access policies and Role-Based Access Control (RBAC) to secure sensitive healthcare data.

• Led forensic investigations post-breach, providing actionable insights to mitigate future risks and improve incident response protocols.

• Managed internal and external audits, ensuring compliance with GDPR, HIPAA, and other healthcare data security standards, reducing security vulnerabilities.

• Configured firewalls, IDS/IPS systems, and VPNs to secure healthcare networks, achieving a 30% reduction in vulnerabilities.

Cybersecurity Engineer (SIEM & Incident Response Specialist) Oak9, Chicago, IL

July 2023 – December 2023

• Configured and maintained SIEM platforms (Splunk, IBM QRadar) to monitor network activity, identify, and analyze potential threats in real-time.

• Led incident response efforts, focusing on malware infections, insider threats, and data breaches, following established incident response playbooks.

• Conducted forensic analysis to trace the origin of security incidents and provided recommendations for improved security measures.

• Developed risk management strategies in line with NIST SP 800-30, assessing vulnerabilities and providing recommendations for system hardening.

• Performed penetration testing and vulnerability scans using Nessus and OpenVAS to identify and address system weaknesses.

• Implemented Role-Based Access Control (RBAC), Multi-Factor Authentication (MFA), and encryption solutions to enhance system security.

• Oversaw compliance efforts with PCI DSS and FFIEC regulations to ensure organizational adherence to industry security standards.

AI & Cybersecurity Analyst

Ramana Soft, Hyderabad, India

January 2019 – March 2022

• Developed AI-powered solutions to enhance threat detection and incident response within EDR and SIEM systems, improving detection accuracy.

• Automated security processes using Python scripts for vulnerability scanning, patch management, and log analysis, reducing manual intervention.

• Integrated NIST SP 800-171 into AI-powered cybersecurity solutions to protect Controlled Unclassified Information (CUI) in compliance with federal standards.

• Conducted penetration testing, analyzed system vulnerabilities, and maintained datasets for AI model training to improve threat detection capabilities.

• Integrated AI-driven risk management frameworks, prioritizing risks based on predictive analytics and threat intelligence.

• Ensured compliance with NIST, GDPR, and other security standards for AI-based cybersecurity systems. EDUCATION

LEWIS UNIVERSITY – Romeoville, Illinois

Master of Science in Cybersecurity

May 2022 – Dec 2023

Contact this candidate