Akhil Varghese
Melbourne,Australia
Summary
Cybersecurity professional with over three years of experience in threat detection, analysis, and incident response. Proficient in phishing investigation, malware analysis, and threat intelligence, with hands-on experience in SOC operations and SIEM platforms. Recognized for delivering actionable insights in high-pressure situations and enhancing security posture through effective communication and teamwork. Specializes in threat assessment, risk management, and incident response strategies, demonstrating exceptional productivity and efficiency.
Overview
4
4
years of professional experience
1
1
Certification
Work History
Senior Threat Analyst | Full-time
Cofense
Melbourne
01.2024 - Current
- Led and supported complex threat investigations, mentoring junior analysts on phishing analysis workflows, escalation criteria, and IOC enrichment techniques
- Performed in-depth phishing and malware analysis using threat intelligence platforms and internal sandboxing tools to extract IOCs and identify TTPs
- Develop YARA and regex rules to improve detection automation
- Proactively identified workflow inefficiencies and implemented solutions using automation, reducing manual effort and false positives.
- Collaborate on security research and intelligence sharing across teams
- Handle high-priority incidents with timely analysis and clear documentation
- Participated in client briefings, offering insights on emerging phishing threats, malware delivery trends, and actionable recommendations tailored to customer environments
Threat Analyst | Full-Time
Cofense
Melbourne
06.2022 - 12.2023
- Investigated phishing emails and malware payloads using sandboxes and threat intelligence platforms within a Managed Phishing Defense Center (MPDR) environment.
- Maintained high accuracy in identifying and escalating critical threats, consistently meeting or exceeding SLA targets for response and resolution times.
- Managed end-to-end case workflows including ticketing systems, customer communication, and comprehensive documentation aligned with MPDR protocols.
- Authored in-depth threat reports on phishing campaigns, leveraging the MITRE ATT&CK framework to classify adversary TTPs and provide actionable context to stakeholders.
- Automated email pattern handling, enabling scalable processing of 40K+ emails annually
Technician and Security Analyst | Full-time
Uptake Digital
Bendigo
03.2021 - 06.2022
- Enhanced Microsoft Secure Score by implementing security best practices across Microsoft 365 and Azure AD, including disabling legacy auth, enforcing MFA, configuring RBAC, and evaluating Data Loss Prevention (DLP) policies to strengthen data protection
- Configured Microsoft Intune policies for conditional access, device compliance, and app protection policies, with foundational exposure to Cloud Access Security Broker (CASB) capabilities for securing cloud app usage; onboarded endpoints into Microsoft Defender for Endpoint
- Executed phishing simulation campaigns using Microsoft Defender for Office 365 Attack Simulation Training and supported company-wide security awareness initiatives, aligning with broader data protection and loss prevention goals
- Troubleshoot and resolve endpoint security issues, including malware infections, policy conflicts, and device onboarding errors, while providing Tier 2 technical support
- Documented secure configurations and hardening guidelines for Windows 10/11 endpoints, M365 security settings, and Azure AD policies, delivering tailored recommendations for SMB clients
Education
Master of Science - Network Systems
Swinburne University of Technology
Hawthorn12.2019
Bachelor of Technology - Electronics and Communications
Mahatma Gandhi University
India05.2017
Skills
- Cloud services: Office 365, Intune, MCAS, Sentinel, Defender ATP, Azure AD
- Programming languages: Python, C, HTML, SQL, PowerShell
- Operating systems: Windows, macOS, Linux
- Security software: Wireshark, Metasploit, Burp Suite, Nmap, VirtualBox, VMware
- SIEM tools: Splunk, ELK, MS Sentinel
- Email security strategies
- Malware and phishing analysis
- Incident response management
Certification
- TryHackMe Certified : Security Analyst Level 1 (SAL1)
- CompTIA CySA+, ID: COMPT00120180786, 2023-06-26 - 2026-06-26
- CompTIA Security+, 2022-05-15 - 2026-06-26
- Cisco Certified Network Associate (Code: 200-301) Cisco ID: CSCO13707855
- Microsoft Certified: Azure Fundamentals
- MS-100: Microsoft 365 Identity and Services
- MS-101: Microsoft 365 Mobility and Security
- SC-900: Microsoft Certified: Security, Compliance, and Identity Fundamentals
Hobbies and Interests
Demonstrate strong passion for cybersecurity by actively upskilling through hands-on platforms like TryHackMe and Hack The Box, continually building practical skills and deepening understanding of real-world attack and defense scenarios, Maintain a personal malware analysis lab for controlled testing and reverse engineering of malware samples, experimenting with dynamic and static analysis tools, Strong collaborator in team environments, contributing to collective problem-solving through peer mentoring, knowledge sharing, and joint investigations
Timeline
Senior Threat Analyst | Full-time
Cofense
01.2024 - Current
Threat Analyst | Full-Time
Cofense
06.2022 - 12.2023
Technician and Security Analyst | Full-time
Uptake Digital
03.2021 - 06.2022
Master of Science - Network Systems
Swinburne University of Technology
Bachelor of Technology - Electronics and Communications
Mahatma Gandhi University
Similar Profiles
Ashleigh KoAshleigh Ko
AR Accountant at CofenseAR Accountant at Cofense
Robert McMahonRobert McMahon
Sr. Intelligence Operations Engineer at Cofense IntelligenceSr. Intelligence Operations Engineer at Cofense Intelligence
Agam JohalAgam Johal
Optical Assistant at Specsavers, CroydonOptical Assistant at Specsavers, Croydon
Gary LimGary Lim
Professional Stock Trader at Self Employed ServicesProfessional Stock Trader at Self Employed Services
VALENTIN REYVALENTIN REY
Senior Section Waiter at Maison BatardSenior Section Waiter at Maison Batard