Indu Lohith Narisetty
Product Security Engineer • San Francisco, CA, USA • i******************@gmail.com • +15******748 • drivetube.ai/•••••
Professional Summary
Product Security Engineer with 4 years of experience spanning security engineering, application security, cloud security, and vulnerability remediation in enterprise environments. Hands-on with Python automation, Splunk/ELK SIEM workflows, AWS/GCP exposure, and Terraform-aligned infrastructure work. Experienced in penetration testing, incident response, remediation tracking, and improving detection and response efficiency through automation and cross-functional execution.
Technical Skills
Programming Languages: Python,Bash,PowerShell
Cloud and DevOps: AWS,Google Cloud Platform GCP,Microsoft Azure,Cloud Security Monitoring,Terraform
Testing: Static Application Security Testing SAST,Dynamic Application Security Testing DAST,OWASP Top 10,Penetration Testing,Vulnerability Assessment
Tools and Methodologies: Nessus,Qualys,Metasploit,OWASP ZAP
Security Operations & Monitoring: Splunk,ELK Stack,QRadar,SIEM,EDR
Network, Forensics & Traffic Analysis: Wireshark,Nmap,Netcat,IDS,IPS,Traffic Analysis
Identity & Access Management: Active Directory,Multi-Factor Authentication,Access Auditing
Work Experience
ShineTeck Inc
College Park, MD
Security Analyst
May 2023 – Present
Provided security operations, application/cloud monitoring, incident response and vulnerability remediation support across enterprise infrastructure at ShineTeck Inc.
Tech Stack: Splunk, ELK Stack, EDR, Python, OWASP ZAP, Metasploit, AWS, GCP
- Built Python-based automation and assistive workflows integrated with Splunk and ELK to improve detection, log correlation and reporting, reducing manual analyst effort and increasing operational efficiency by 22%.
- Monitored SIEM (Splunk/ELK) and EDR alerts to triage security findings, refine detection rules and escalate incidents, improving mean time to detect and respond by 30%.
- Conducted penetration testing and DAST on web applications and internal systems using OWASP ZAP and Metasploit; documented vulnerabilities, prioritized risk, and tracked remediation with stakeholders to reduce attack surface and security risk.
- Analyzed technical evidence from incidents and penetration tests, coordinated remediation with IT, network and endpoint teams, and validated mitigations to close high-risk findings.
- Implemented cloud security monitoring and automation-assisted analysis across AWS/GCP environments to surface misconfigurations and anomalous activity, strengthening day-to-day security practices.
- Collaborated on responses to external assessments and security testing, prioritized fixes, validated mitigations and contributed to a 30% reduction in incident resolution time through improved triage and workflows.
Intellect Design Arena Ltd
India
Cybersecurity Analyst
Jun 2021 – Aug 2022
Supported enterprise security operations, log monitoring, access audits and remediation tracking across financial/fintech systems at Intellect Design Arena Ltd.
Tech Stack: SIEM, Firewalls, Security Log Monitoring, Ticketing Systems, Nessus, Qualys
- Monitored SIEM alerts and security logs across enterprise systems to identify suspicious activity and potential vulnerabilities, reducing investigation time by 25%.
- Performed access audits, log reviews and security event analysis across firewalls, servers and applications to strengthen controls and reduce security gaps by 25%.
- Tracked remediation items through ticketing workflows, maintained clear documentation of findings and improved incident closure rates by 30%.
- Partnered with IT operations, network and infrastructure teams across four business units to remediate findings, reduce exposure and enhance overall security posture in a fintech environment.
- Standardized incident templates and response procedures to improve reporting consistency and shorten security documentation turnaround by 20%.
- Translated alerts and analyst findings into actionable remediation tasks for engineering teams, improving remediation throughput and control improvements across monitored assets.
Education
University of Maryland
College Park, Maryland • Aug 2022 – May 2024
Certifications
Certified Information Systems Security Professional (CISSP) — ISC2
CompTIA Cybersecurity Analyst (CySA+) — CompTIA
Cisco Certified Network Associate (CCNA) — Cisco
AWS Certified Solutions Architect - Associate (SAA-C03) — Amazon Web Services (AWS)
Microsoft Certified: Azure Security Engineer Associate (AZ-500) — Microsoft
CompTIA Security+ (SY0-601) — CompTIA
Powered by Drivetube · Create your own profile at drivetube.ai