Incident Response Vulnerability Management

Devkumar Modi

551-***-**** • ***********@*****.*** • LinkedIn

SUMMARY

Over 4 years of experience in threat hunting, vulnerability analysis, and incident response to secure critical systems and data while leveraging risk assessment, vulnerability management, and Assessment and Authorization (A&A) to establish a comprehensive security posture. Skilled in industry-leading SIEM solutions (IBM QRadar, Splunk) for security information and event management, enabling threat detection and incident response. Expertise in aligning organizational security practices with industry standards like NIST and ISO 27001 to enhance overall security posture. Proficient in leveraging advanced security tools such as Metasploit, Intrusion Detection Systems

(IDS), and Security Information and Event Management (SIEM) platforms to proactively identify, analyze, and mitigate potential threats. Collaborated with cross-functional teams to implement timely protective measures, enhancing security posture and reducing incident response time. Experience in malware analysis and reverse engineering, providing insights into malicious code behavior and enabling faster containment of malware outbreaks. EDUCATION

Bachelor of Science in Information Systems Dec 2024 The University of Texas at Arlington, TX

TECHNICAL SKILLS

Penetration Testing: Metasploit, Burp Suite, OWASP Zap Security Tools: Nmap, Snort, Nessus, OpenVAS, Splunk, Palo Alto Firewalls, Network load balancing, Nexus Security Technologies: SIEM, HIDS/HIPS, Vulnerability Management, Taegis Network Forensics: Wireshark, TCPdump, Zeek, Network Miner, Netwrix auditor Threat Intelligence: OSINT, YARA, OpenCTI, MISP

Threat Frameworks: ISO 27001, STRIDE, NIST

Security Skills: Vulnerability Management, Information Security Management, Ethical Hacking, Malware Analysis, Penetration Testing, Security Compliance, Data encryption, Incident reporting, Log Analysis, Forensic Analysis Operating Systems: Kali Linux, Windows, MacOS, Ubuntu Programming and Scripting Languages: Python, Shell Scripting PROFESSIONAL EXPERIENCE

AT&T, USA Jun 2024 – Present

Cyber Security Analyst

● Conducted comprehensive penetration testing and vulnerability assessments on web applications, networks, and endpoints using Metasploit, Burp Suite, and OWASP ZAP, identifying and documenting critical vulnerabilities with actionable remediation plans.

● Performed network reconnaissance and security posture analysis utilizing tools such as Nmap, Nessus, OpenVAS, and Snort IDS/IPS, enhancing proactive threat detection and reducing attack surface across enterprise environments.

● Led security incident investigations and forensics analysis leveraging Wireshark, Zeek, TCPdump, Network Miner, and Netwrix Auditor, accurately reconstructing attack vectors and providing detailed incident reports to stakeholders.

● Implemented and fine-tuned SIEM (Splunk, Taegis) and HIDS/HIPS solutions to monitor real-time security events, correlate logs, and escalate anomalies, significantly improving mean time to detect (MTTD) and mean time to respond (MTTR).

● Developed and operationalized a vulnerability management program, incorporating continuous scanning, patch management coordination, and risk prioritization aligned with ISO 27001 and NIST Cybersecurity Framework standards.

● Executed malware and exploit analysis in controlled environments, providing insights on indicators of compromise (IOCs) and mitigation strategies to strengthen endpoint and perimeter defenses.

● Authored and maintained detailed documentation, including incident response playbooks, forensic findings, and compliance reports to support audits, risk assessments, and continuous improvement initiatives.

● Collaborated with cross-functional IT and compliance teams to ensure adherence to data encryption standards, security policies, and regulatory requirements, bolstering the organization’s overall security posture.

University of Texas at Arlington, United States Jan 2022 – May 2024 IT Analyst

● Delivered comprehensive support for staff hardware, software, and cloud-based technology needs, driving a measurable 55% improvement in client satisfaction through prompt and effective solutions.

● Implemented robust data protection measures for university-owned assets by enabling BitLocker encryption, enforcing OS updates via Forescout NAC and Endpoint Management tools, and ensuring compliance with institutional security protocols.

● Led a team of 4 technicians to complete an enterprise-level operating system migration for 200+ campus devices within 3 months; provided hands-on training in Azure AD, Intune, and Active Directory for Enrollment Management operations.

● Trained and mentored new IT hires on secure Windows OS and macOS imaging procedures, ensuring consistent adherence to university policies across all departments.

● Delivered exceptional IT support for high-priority and sensitive cases, balancing technical expertise with strong leadership and effective issue prioritization.

● Automated repetitive administrative tasks and routine system checks using Python and PowerShell scripts, significantly streamlining inventory audits and software compliance reporting processes.

● Collaborated with cross-functional academic and administrative departments to assess technology requirements, recommend cost-effective IT solutions, and support the deployment of new applications and services across campus. University of Texas at Arlington, United States Aug 2021 – Dec 2021 IT Helpdesk Analyst

● Monitored and resolved service requests via ticketing systems (ServiceNow), achieving an average first-call resolution rate of 85% and consistently meeting SLA targets for response and resolution times.

● Provided first-line support to over 500 University of Texas at Arlington community members, assisting with account credential management, password resets, and basic network connectivity issues to ensure seamless access to university IT services.

● Delivered high-quality customer service by addressing client inquiries through multiple channels — including online ticketing system, web chat, front desk interactions, email, and phone, maintaining professionalism and clear communication to resolve issues efficiently and enhance user satisfaction.

● Provided hands-on support for campus-wide IT deployments, including installation, configuration, and maintenance of desktops, laptops, printers, VoIP phones, and audiovisual equipment across classrooms and offices. Sankh Infotech, India May 2021 – Aug 2021

IT Intern

● Leveraged Shell scripting to optimize vulnerability scanning workflows, significantly improving overall security posture.

● Delivered prompt and effective support by troubleshooting and resolving IT service desk tickets, improving end-user satisfaction and reducing average resolution time.

● Assisted in strengthening organizational security by implementing antivirus solutions, configuring malware protection, and ensuring compliance with security policies.

● Installed, configured, and tested hardware, software, and peripheral devices to enhance system reliability and optimize workstation performance.

● Maintained and updated IT asset inventory records, ensuring accurate tracking and accountability of organizational devices and peripherals.

● Supported Active Directory administration by creating user accounts, assigning permissions, and enforcing access control policies to improve system security. CERTIFICATIONS

Google Cybersecurity Certificate – Coursera

Dell Client Foundations Certifications Course

Contact this candidate