Incident Response Penetration Testing

Bharath Baddi

Location: Oklahoma City,OK Email: ***************@*****.*** Phone: 405-***-****

SUMMARY

Cybersecurity professional with 3 years’ experience securing networks, applications, and data across enterprise, cloud, and OT environments. Skilled in vulnerability assessment, penetration testing, incident response, and implementing security controls using tools like Wireshark, Kali Linux, Burp Suite, and Metasploit. Experienced in authentication/authorization (MFA, SSO, OAuth), SIEM monitoring, and compliance with NIST, ISO 27001, and OWASP. Proficient in securing AWS/Azure, firewalls, IDS/IPS, and endpoint protection. Strong collaborator in SOC and Agile environments, committed to continuous learning and emerging threat mitigation. SKILLS

• Security Tools & Frameworks: Wireshark, Kali Linux, Burp Suite, Metasploit, Nmap, OWASP ZAP, Nessus, Snort, Suricata

• Threat Detection & Response: SIEM (Splunk, ELK), Log Analysis, Intrusion Detection/Prevention (IDS/IPS), Endpoint Security

• Vulnerability Management: Vulnerability Scanning, Penetration Testing, Risk Assessment, Patch Management

• Authentication & Access Control: MFA, SSO, OAuth 2.0, JWT, Role-Based Access Control (RBAC), Identity & Access Management (IAM)

• Cloud & Network Security: AWS Security (IAM, S3 Policies, Security Groups), Azure Security, Network Segmentation, Firewall Configuration, VPNs

• Security Frameworks & Compliance: NIST, ISO 27001, OWASP Top 10, CIS Controls, GDPR

• Programming & Scripting: Python, Bash, Java, SQL for Security Automation & Analysis

• Incident Response: Forensics, Threat Hunting, Malware Analysis, Incident Reporting, Root Cause Analysis

• Monitoring & Analysis: Packet Capture & Analysis, Threat Intelligence, Anomaly Detection, Security Alerts Triage

• Collaboration & Project Management: SOC Operations, Agile, Scrum, JIRA, Confluence, Notion WORK EXPERIENCE

Security Analyst – Quest Global August 2021 – July 2023

• Monitored and analyzed network traffic using Wireshark, Splunk, and other SIEM platforms to detect, investigate, and respond to potential threats.

• Performed vulnerability assessments and penetration testing with tools such as Nmap, Burp Suite, Metasploit, and Nessus to identify and mitigate security risks.

• Implemented and maintained firewall policies, IDS/IPS configurations, and endpoint protection solutions to safeguard enterprise assets.

• Led incident response activities including containment, root cause analysis, eradication, and post-incident reporting.

• Secured cloud environments (AWS, Azure) by configuring IAM roles, encryption policies, and network segmentation in alignment with NIST and OWASP best practices.

• Developed and maintained security documentation, including SOPs, playbooks, and compliance audit reports.

• Conducted security awareness training for staff, improving phishing detection rates and reducing human- factor vulnerabilities.

• Collaborated with SOC teams in a 24/7 operational environment to ensure rapid escalation and resolution of threats.

Security Analyst Intern – Quest Global August 2020 – July 2021

• Completed structured training in network security, incident response, and cybersecurity frameworks such as NIST and ISO 27001.

• Assisted in log monitoring and analysis to identify suspicious patterns using SIEM dashboards.

• Participated in threat hunting exercises and conducted basic vulnerability scanning under the guidance of senior analysts.

• Helped document and update incident response playbooks and security policies.

• Performed firewall rule reviews, endpoint patch updates, and antivirus checks to maintain security hygiene.

• Took part in phishing simulation campaigns and tabletop exercises to enhance preparedness for real-world attacks.

PROJECTS

Password less Authentication Using Magic link

• Technologies: Python, Flask, Google Mail API, MySQL

• Built a secure, Passwordless login system using magic links And Also I Have Integrated Email API for sending one- time login links.

• Designed MySQL schema for user identity and token management.Enhanced security and eliminated password- related risks. Reduced time to render user buddy lists by 75% by implementing a prediction algorithm AI-Based Educational Chat-bot for Query Processing

• Technologies: Python (NLTK), Windows 10

• Developed a natural language chatbot to automate responses to student inquiries about courses, fees, and faculty details.

• Using Python’s Natural Language Toolkit (NLTK) for intent recognition and response generation.

• Improved accessibility, response time, and user engagement within the university information system. EDUCATION

• Master’s in Cybersecurity August 2023 -May 2025

Oklahoma City University CGPA: 3.4

Contact this candidate