Security Analyst Information

HARSHITA DUVVURI

Phone: +1-469-***-**** Email: *****************@*****.***

https://www.linkedin.com/in/harshita-duvvuri/

PROFESSIONAL SUMMARY

Information Security Analyst with 4+ years of experience in threat detection, compliance, and cloud security across healthcare and financial sectors. Proficient in QRadar, Splunk, Azure Sentinel, and scripting with Python and PowerShell for automation. Adept at aligning controls with HIPAA, NIST CSF, and ISO 27001 frameworks to support audits and reduce risk. Known for enhancing SIEM effectiveness using MITRE ATT&CK and reducing noise through smart tuning. Passionate about building resilient, audit-ready security environments in dynamic enterprise landscapes. TECHNICAL SKILLS

• Security Tools & Vulnerability Management: IBM QRadar, Splunk, Nessus, Burp Suite, Fortify, CrowdStrike Falcon.

• SIEM & Monitoring: Splunk, QRadar, Azure Monitor, Azure Sentinel, MITRE ATT&CK, Log Analysis

(Regex).

• Cloud Security & IAM: Azure Security Center, Azure AD, AWS IAM, SSO, MFA, RBAC.

• Compliance & Risk Frameworks: HIPAA, NIST CSF, ISO 27001.

• Scripting & Automation: Python, PowerShell, Shell Script.

• Operating Systems: Windows Server, Red Hat Linux. PROFESSIONAL EXPERIENCE

JP Morgan & Chase

Information Security Analyst — Plano, TX

Aug 2024 – Present

• Deployed and customized IBM QRadar to improve log correlation and incident triage across high-priority business units.

• Worked with the vulnerability management team to integrate Nessus scans into SIEM, enabling early detection of misconfigurations and high-risk CVEs.

• Created correlation rules in QRadar to detect brute-force attempts, unauthorized admin access, and suspicious outbound connections.

• Used MITRE ATT&CK mapping to enrich detection rules and classify alerts based on adversary tactics.

• Partnered with the SOC to analyze incident trends and reduce false positives through better rule tuning and log normalization.

• Conducted log analysis using Regex patterns to parse custom application logs during high-priority incidents.

• Participated in internal audit reviews to ensure log monitoring processes aligned with NIST CSF detection and response guidelines.

• Integrated CrowdStrike Falcon with QRadar for real-time endpoint detection and response (EDR), enhancing visibility into lateral movement and zero-day exploits.

• Performed log ingestion and agent configuration on Windows Server and Red Hat Linux hosts, ensuring consistent telemetry for SIEM and EDR platforms. Deloitte

Information Security Analyst — Dallas, TX

Dec 2023 – Jul 2024

• Conducted HIPAA security risk assessments across UHG’s cloud-hosted infrastructure, identifying gaps in technical safeguards and supporting remediation planning.

• Mapped and reviewed existing controls against the NIST Cybersecurity Framework (NIST CSF) to assess maturity and compliance readiness.

• Validated and refined Azure AD policies for critical healthcare applications, ensuring enforcement of MFA, RBAC, and role-based provisioning.

• Created internal reports on access control findings and provided recommendations to support HIPAA technical compliance objectives.

• Automated reporting for quarterly access reviews and incident response metrics using PowerShell scripts, reducing manual audit prep time by 40%.

• Configured Azure Sentinel for incident detection and connected it with Azure Monitor to centralize alerting and dashboarding of key security metrics across healthcare workloads. Accenture

Information Security Analyst — Hyderabad, India

Aug 2022 – Jun 2023

• Executed static and dynamic analysis on internal enterprise applications using Fortify and Burp Suite, reporting critical and high vulnerabilities for remediation.

• Coordinated with development teams to validate and re-test security fixes before deployment to production.

• Wrote PowerShell scripts to automate validation of security headers, certificate configurations, and port exposure across application servers.

• Assisted the InfoSec compliance team in aligning implemented controls with ISO 27001 Annex A for internal audit readiness.

• Contributed to security documentation and technical evidence for audit submissions and control assessments.

• Participated in internal knowledge sharing on secure deployment practices and control traceability.

• Conducted IAM policy reviews in AWS environments, aligning user roles and S3 access controls with ISO 27001 A.9 requirements for least privilege.

• Used Shell scripting to automate server hardening checks, validate firewall configurations, and monitor open ports as part of vulnerability remediation efforts. Apex Systems

Security Operations Center Analyst — Hyderabad, India Jul 2020 – Jul 2022

• Conducted daily log monitoring and threat detection using Splunk and QRadar, creating alerts for brute-force attempts, unusual login times, and privilege escalations.

• Developed PowerShell scripts to automate Active Directory audits, track inactive accounts, and generate weekly reports for the IAM team.

• Coordinated with InfoSec to support access reviews and align user lifecycle processes with ISO/IEC 27001 access control requirements (A.9).

• Participated in incident response activities and maintained documentation aligned with ISO 27001 Annex A.16, including RCA reports and escalation workflows.

• Supported internal audit readiness by helping gather evidence for log retention policies, incident logs, and access provisioning records.

• Contributed to tuning alert thresholds and rule logic based on lessons learned from past incidents to reduce false positives.

• Developed Python scripts to parse log files and extract IOC patterns, improving detection accuracy and enabling custom alerting in Splunk

EDUCATION

• Aditya Engineering College Apr 2021

Bachelor of Engineering

• Trine University May2025

Master of Science, Information Science

CERTIFICATIONS

• CompTIA Security+

• CISM (Certified Information Security Manager)

• CISSP (Certified Information Systems Security Professional)

Contact this candidate