Mukesh Singh
Principal Threat Detection And Response Engineer
Parramatta,NSW
Summary
Driven by a deep passion for cybersecurity and a keen eye for identifying threats, I am committed to advancing in the field of Detection Engineering. My enthusiasm for this work fuels my relentless pursuit of innovative solutions to safeguard digital cloud and hybrid environments. With a strong foundation in threat detection and response engineering, I am eager to contribute my skills to protecting systems and data from evolving cyber threats.
Experienced in cloud infrastructure, data and network security. Specializes in solving security challenges in agile environment, engaging with multiple stake holders and leadership team. Liaising with vendors to incorporate latest security solutions in the arsenal of organization.
Overview
11
11
years of professional experience
5
5
Certifications
Work History
Principal Threat Detection and Response Engineer
Atlassian Pty Ltd
01.2022 - Current
- Drive threat detection strategy and develop strong detection rules to increase the bar of detection across Atlassian.
- Have improved operational operating metrics by 20 % of Threat Detection and Incident Response by improving MTTD, MTTR and MTTT
- Lead and deliver threat detection controls to meet compliance requirements like FedRAMP
- Drive engineering focused solution to improve Detection Assurance capability and design systems at scale
- Introduce purple teaming and onboard entire team on a new standardised process to increase the quality of detection
- Increase detection coverage across multiple Tech Stack using MITRE ATT&CK framework Introduce container detection by adopting custom Threat Matrix for containers as well as CI CD
- As a capability owner of multiple initiatives delivering Detection Program OKR's for the company.
- Provide thought leadership to various Cyber security programs in organisations like Application Security, Platform Security, AI security and provide technical guidance.
Threat Detection and Incident Response
Salesforce, Inc
1 2020 - 01.2022
- Research attackers TTP, develop logic and innovative detection technique against APT’s TTP
- Develop automation scripts and respond to large scale security incident’s
- Publishing internal automation tools and mentor juniors
- Developed an internal python based application to simulate TTP’s and validate detection logic. This gives confidence in deploying detection and know its efficacy
- Utilise SOAR systems and enrich data there by producing actionable alerts and reduce alert fatigue for tier 1 analyst
- Effectively work with multiple teams across time-zones, liaising handover closing incidents spanning months if not weeks
- Collaborate with red teams to identify missing gaps in detection of significant infrastructure and application
- Develop detection lab using terraform and AWS which is an automated solution to quickly spin up detection playground and save researcher’s time
- Lead application detection logic by closely working with application and infrastructure team
Senior Cyber Security Engineer
Domain Holdings Australia Limited
04.2019 - 01.2020
- Advanced through several promotions, culminating in senior cyber security engineer role overseeing firm’s entire cloud security and corporate email security operations and response
- Providing cradle-to-grave oversight of IT infrastructure, leading the research, design, development, documentation, testing and rollout of enterprise security solutions
- Responding to all cyber threats
- Accomplishments: Proactively developed automated security operations tasks, replacing manual job
- Introduced / implemented SSO for 18 different applications, largely reducing login related attack surface
- Manage corporate as well as cloud services IAM
- Automated incident detection and response for services in cloud using serverless and ChatOps
- Designed security controls /guard rails, to prevent the abuse of AWS resources, along with curbing high cost
- Designed and implemented data security controls in AWS cloud for P2 data, by engaging with multiple stake holders
- Implemented Bot management solutions at CDN for more than 40 services at edge, and automated the process of tuning
- Mitigated multiple DDoS attacks, and recovered services with minimal disruption
- Handled wired and wireless network security, involves threat assessment / modelling and implementation of security controls
- Drive security incidents, not limited to reporting, mitigating and engaging with third party (vendor) security operations team
- Constantly align Domain web services security posture against OWASP listed vulnerabilities.
Associate Software Engineer
Accenture Services Private Limited
11.2013 - 01.2015
- Analyse client’s security requirement, troubleshoot network environment, maintain design document revision control, setup meeting with onsite team for daily status and hand of dossier
- Conduct knowledge transition sessions to onboard team members
- Manage and configure RSA secuirty tokens across the team
- Maintain security policies of server throughout the lifecycle of staging, development and testing
Education
Masters in Information Technology - Internetworking and Cyber security
Macquarie University
North Ryde, NSWSkills
Threat Detection
Incident Response Management
Cloud Security (AWS, SecOps)
Web Security / WAF
Network Security
Identity and Access Management
Cryptography
Endpoint Detection and Response
Technical Leader
Technical Mentor
Detection Assurance and Automation
Network Telemetry
Docker
Python
Splunk
Yara rules
Container Security
GuardDuty
AWS WAF
Malware Analysis
Threat Modelling
AI / ML Security
Certification
GIAC Certified Incident Handler (GCIH)
Timeline
Principal Threat Detection and Response Engineer
Atlassian Pty Ltd
01.2022 - Current
Senior Cyber Security Engineer
Domain Holdings Australia Limited
04.2019 - 01.2020
Associate Software Engineer
Accenture Services Private Limited
11.2013 - 01.2015
Threat Detection and Incident Response
Salesforce, Inc
1 2020 - 01.2022
Masters in Information Technology - Internetworking and Cyber security
Macquarie University
Similar Profiles
Che GaberoChe Gabero
Credit Management – Lead at Atlassian Pty LtdCredit Management – Lead at Atlassian Pty Ltd
Jeffrey KeimJeffrey Keim
Global Head of Account Management at AtlassianGlobal Head of Account Management at Atlassian
ABHISHEK PANDEYABHISHEK PANDEY
Senior Technical Support Engineer at AtlassianSenior Technical Support Engineer at Atlassian
Shubham AnandShubham Anand
Technical Assistant Grade 2 at Ryde HospitalTechnical Assistant Grade 2 at Ryde Hospital
Ariana BartramAriana Bartram
Assistant at Cerebral Palsy AllianceAssistant at Cerebral Palsy Alliance