R AJU K UMAR G IRI

M +91 84203 64962 • [email protected] • Raju Giri | LinkedIn

Hong Kong Employment Visa Holder

SECURITY ARCHITECT |SOC| IR| CLOUD SECURITY | DATA SECURITY |

CRYPTO BLOCKCHAIN SECURITY | AI SECURITY |QUANTUM CRYPTOGRAPHY|
OT SECURITY
Practiced in handling cyber security incidents end to end and increasing overall security posture of organization & successfully
designed and guided the implementation of security solutions
I am an expert Cyber Security Consultant, Security Architect and Technical Lead. Having great exposure to
multiple security verticals. Accomplished Cyber Security Consultant Architect with extensive expertise of 8+
Yrs in security operations, automation, and incident response & digital forensic, successfully designed and
guided the implementation of security solutions for client cloud Security infrastructures. underpinned by a deep
knowledge of threat intelligence and analysis, SIEM, DLP, EDR, NDR and SOAR. I specialized in SOC and
Incident Response leadership, AI Security, ICS/OT Security, DevSecOps, CI/CD SAST&DAST, Container-
Kubernetes Security, Cloud Security Posture Mgmt. with a proven track record in threat management and risk
mitigation. Demonstrates a comprehensive understanding of end-to-end cyber incident analysis and
management, adept at handling complex security situations both internal and external to organizations. I am
highly skilled in managing cyber crisis scenarios, particularly adept at addressing ransomware breach scenarios.
Demonstrates a strategic approach to managing third-party compromise cases, with a keen eye for reviewing
and enhancing security clauses in vendor and third-party contracts.

Areas of Expertise:
Technologies: SIEM | EDR | NDR | SOAR | TIP | DLP | IDPS | Python
Scripting | Linux | Cloud Security | MSS | AI Security | OT Security | Network Security | Threat Hunting
| Threat Intelligence | Quantum
Cryptography | Threat Management | Cyber Control and Risk Mitigation | Cyber Security Consulting |
Third Party Cyber Risk Management| Digital Forensic | Email Security| CSPM| Crypto Blockchain
Security.

Tools: Microsoft Defender for Endpoint Copilot | Sentinel |CrowdStrike | ArcSight |Qradar |Azure
Security tools| AWS security tools | RSA Netwitness | FortiSOAR | PaloAlto xSOAR | Varonis |Symantec
DLP| Vectra AI | Eclectic IQ | Digital Shadow | Mimecast| Wireshark | Meraki IDS| Sysdig| Google
Cloud Security.

PROFESSIONAL EXPERIENCE

LTIMindtree Limited 02/2024 – Now (~ 1 Yr)

Specialist Information Security - India
Shared Security Services Technical Lead focused on SOC, Incident Response and Cloud Security Services.
 NextGen SOC & IR:
Utilizing AI/ML and SOAR for advancement of SOC and IR capabilities and building Next Gen SOC
and improved Incident Response with overall security posture. I am SOC Service Leader for Cyber
Défense Response Centre.
 Cloud Security Architect:
Led the design and implementation of security solutions following Zero Trust principles for identity,
devices, data, and more for clients.
Collaborated with teams to enhance security operations, identity, and compliance capabilities.
Successfully designed and guided the implementation of Microsoft security solutions for client cloud
infrastructure.
Technical Lead for the Cloud Security projects on Azure/AWS/Google Cloud, CSPM and CNNAP.

Société Générale 06/2021 – 02/2024 (~ 3 Yrs)

Associate Cyber Security & Incident Response Lead- Hong Kong & India
Spearheaded end-to-end analysis and management of internal and external cyber incidents, significantly
reducing organizational risk exposure. Effectively managed Level 3 Data Leakage Escalated Incidents,
safeguarding critical client and internal data from breaches. Proactively managed and resolved cyber fraud
incidents related to company policy breaches.
RAJU GIRI PAGE |2

 Security Control Optimization: Authenticated existing security measures, focusing on proxy changes,
shared folder access, and internet usage of technical accounts. Provided support in high-severity incidents
within the Security Operations Center.
 Crisis Management: Handled cyber crises including third-party compromises, business email intrusions,
and ransomware breaches. Acted decisively on CERT-identified vulnerabilities, fortifying security across
related infrastructure.
 Regulatory Compliance: Implemented necessary actions based on security threat advisories from regional
regulatory bodies and CERT. Successfully remediated identified security gaps in audits, bolstering overall
security posture.
 Incident Documentation: Diligently documented all identified threats and security incidents, creating a
comprehensive reference for future mitigation strategies. Delivered impactful training and awareness
programs on cybersecurity topics.
 Post-Incident Analysis: Conducted detailed postmortems of security incidents/breaches, extracting key
learnings to prevent future occurrences. Executed simulations of use cases in security tools by employing
MITRE framework analysis.
 Strategic Reporting: Presented insightful monthly, quarterly, and weekly reports on Incident Response
activities to the Executive Committee. Validated and provided expert assistance for escalated L3 security
alerts.
 Team Leadership: Served as the Cyber Security Lead Analyst for India, and led the SOC team in
enhancing security detection, response capabilities, and tool optimization. Collaborated on security
innovation projects, including Active Directory Attacks, Threat Hunting, and Quantum Cryptography,
advancing the organization's security forefront.
 Incident Investigation Excellence: Conducted expert investigations into SOC incidents and alerts,
significantly improving incident response and detection capabilities. Pioneered the automation of security
analysis activities using SOAR.
 Vulnerability Management: Conducted vulnerability scanning/remediation to reduce potential attack
surfaces. Partnered with Microsoft and admin teams for MDE implementation, enabling critical features
to enhance security measures.

Microland Limited 01/2020 – 06/2021 (1.5 Yrs)

Sr. Administrator – Security - Dubai, United Arab Emirates
Developed and implemented dynamic security use cases to improve threat detection and response capabilities
within the SOC. Collaborated with a government client in Dubai, managing comprehensive SOC operations
including SIEM, security analysis, and threat intelligence.
 Strategic Reporting: Compiled detailed reports using SIEM, SOAR, and TIP data for executive decision-
making and strategic planning. Configured threat intelligence platform by generating targeted reports to
address client-specific interests.
 Threat Intelligence Mastery: Excelled in threat intelligence analysis, proactively identifying and
mitigating potential cyber threats through advanced monitoring and reporting. Created effective playbooks
in SOAR for established security use cases.
 Dark Web Vigilance: Conducted dark web monitoring by employing digital risk and fraud analysis tools
to act on identified alerts and protect against emerging threats.
 CERT Advisory Response: Responded to CERT advisories/alarms, safeguarding organizational and
national cybersecurity interests. Simulated existing SIEM use cases, innovatively introducing new scenarios
based on requirements.
 Log Management Efficiency: Optimized log collection in SIEM, ensuring inclusive data analysis and
security monitoring. Integrated SOAR with ticketing tools, enhancing incident tracking and resolution
through effective system interconnectivity.
 Advanced Threat Analysis: Conducted in-depth analysis of network, authentication, and endpoint
threats.

Accenture 06/2019 – 12/2019 (0.5 Yrs)

Technology Security Analyst - India
Expertly built and modified security use cases using KQL in Azure Log Analytics, enhancing them through
simulation and kill chain methodology. Gained valuable exposure to a variety of security tools and services
across Sentinel, AWS, and Azure, broadening cybersecurity capabilities.
 Global Cloud Security Expertise: Served as a key member of the Global Cloud Security team, specializing
in Cloud SIEM, Cloud Security, and SOC operations for international clients. Excelled in Level 2
monitoring of security alerts across multiple clients' infrastructures within an MSSP environment.
 Client-Centric Approach: Acted as the Single Point of Contact (SPOC) for a dedicated client, managing
all aspects of their specific security needs, including new use case implementation and comprehensive
report generation.
 Threat Analysis: Demonstrated exceptional skill in analysing deep-level network, authentication, and
endpoint threats.
RAJU GIRI PAGE |3

Tata Communications 12/2018 – 06/2019(0.5 Yrs)

Technical Associate B2 at Cyber Security Response Center - India
Conducted thorough reviews of true positive and false positive detections, refining processes to enhance
accuracy and reduce false positive rates. Skillfully performed log reconciliation to pinpoint and address gaps in
log collection, ensuring comprehensive data capture and analysis.
 Global Security Analysis: Operated as a Security Analyst within the CSRC project, contributing
significantly to the Global MSS team through expert SIEM and SOC operations.
 Alert Monitoring Specialization: Excelled in Level 2 monitoring of security alerts, addressing the diverse
needs of multiple clients within an MSSP environment.
 Dedicated Client Management: Served as the Single Point of Contact (SPOC) for a specific client,
managing all aspects from new use case implementation to complex log collection and reporting.
 Advanced Threat Investigation: Demonstrated deep analytical capabilities in examining network,
authentication, and endpoint threat events, fortifying client defences against sophisticated cyber threats.

Wipro Limited 03/2017 – 12/2018 (~ 2 Yrs)

Information Security Analyst at Security Intelligence Center- India
Served as a Security Analyst in the Cyber Intelligence Center and MSS project, adeptly managed SIEM and
security operations for a global client base. Specialized in Level 1 monitoring security alerts across various
infrastructures while providing insightful log analysis and recommendations to address identified gaps.
 Collaborative Problem-Solving: Worked closely with administrative and content teams to resolve issues
identified in use cases and log collection. Engaged in log hunting based on hypothetical scenarios,
identifying potential threats.
 Forensic and Incident Response Analysis: Demonstrated a passion for analysing event and system logs,
performing forensic investigations, malware analysis, and incident response activities.
 System and Application Log Analysis: Conducted basic analyses of system and application logs, such as
web or mail server logs, to investigate security and operational challenges.

EDUCATION & CERTIFICATIONS

B Tech Engineer’s Degree, A+ Computer Science, West Bengal University of Technology, Kolkata-
India – 2016

CEH: Certified Ethical Hacker: EC Council

CISM: Certified Information Security Manager: ISACA
Gen AI in Cyber Security: Coursera
Qradar SIEM Associate: IBM
ICS/OT Security Expert: OPSWAT
Netskope Cloud Security Specialist: Netskope
Quantum Cryptography: EITCA Academy
SC 200: Microsoft Security Operation.
Digital Forensic for Pentesters: Packt.
SC 100: Microsoft Certified: Cybersecurity Architect Expert.
Microsoft GPS Certified: Implementing Copilot Security.
Cortex XSOAR SOAR Engineer: Palo Alto Networks.
Certified AI Security Specialist: Ampcus Cyber.