Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Mukesh Singh

Principal Threat Detection And Response Engineer
Parramatta,NSW

Summary

Driven by a deep passion for cybersecurity and a keen eye for identifying threats, I am committed to advancing in the field of Detection Engineering. My enthusiasm for this work fuels my relentless pursuit of innovative solutions to safeguard digital cloud and hybrid environments. With a strong foundation in threat detection and response engineering, I am eager to contribute my skills to protecting systems and data from evolving cyber threats.

Experienced in cloud infrastructure, data and network security. Specializes in solving security challenges in agile environment, engaging with multiple stake holders and leadership team. Liaising with vendors to incorporate latest security solutions in the arsenal of organization.

Overview

11
11
years of professional experience
5
5
Certifications

Work History

Principal Threat Detection and Response Engineer

Atlassian Pty Ltd
01.2022 - Current
  • Drive threat detection strategy and develop strong detection rules to increase the bar of detection across Atlassian.
  • Have improved operational operating metrics by 20 % of Threat Detection and Incident Response by improving MTTD, MTTR and MTTT
  • Lead and deliver threat detection controls to meet compliance requirements like FedRAMP
  • Drive engineering focused solution to improve Detection Assurance capability and design systems at scale
  • Introduce purple teaming and onboard entire team on a new standardised process to increase the quality of detection
  • Increase detection coverage across multiple Tech Stack using MITRE ATT&CK framework Introduce container detection by adopting custom Threat Matrix for containers as well as CI CD
  • As a capability owner of multiple initiatives delivering Detection Program OKR's for the company.
  • Provide thought leadership to various Cyber security programs in organisations like Application Security, Platform Security, AI security and provide technical guidance.

Threat Detection and Incident Response

Salesforce, Inc
1 2020 - 01.2022
  • Research attackers TTP, develop logic and innovative detection technique against APT’s TTP
  • Develop automation scripts and respond to large scale security incident’s
  • Publishing internal automation tools and mentor juniors
  • Developed an internal python based application to simulate TTP’s and validate detection logic. This gives confidence in deploying detection and know its efficacy
  • Utilise SOAR systems and enrich data there by producing actionable alerts and reduce alert fatigue for tier 1 analyst
  • Effectively work with multiple teams across time-zones, liaising handover closing incidents spanning months if not weeks
  • Collaborate with red teams to identify missing gaps in detection of significant infrastructure and application
  • Develop detection lab using terraform and AWS which is an automated solution to quickly spin up detection playground and save researcher’s time
  • Lead application detection logic by closely working with application and infrastructure team

Senior Cyber Security Engineer

Domain Holdings Australia Limited
04.2019 - 01.2020
  • Advanced through several promotions, culminating in senior cyber security engineer role overseeing firm’s entire cloud security and corporate email security operations and response
  • Providing cradle-to-grave oversight of IT infrastructure, leading the research, design, development, documentation, testing and rollout of enterprise security solutions
  • Responding to all cyber threats
  • Accomplishments: Proactively developed automated security operations tasks, replacing manual job
  • Introduced / implemented SSO for 18 different applications, largely reducing login related attack surface
  • Manage corporate as well as cloud services IAM
  • Automated incident detection and response for services in cloud using serverless and ChatOps
  • Designed security controls /guard rails, to prevent the abuse of AWS resources, along with curbing high cost
  • Designed and implemented data security controls in AWS cloud for P2 data, by engaging with multiple stake holders
  • Implemented Bot management solutions at CDN for more than 40 services at edge, and automated the process of tuning
  • Mitigated multiple DDoS attacks, and recovered services with minimal disruption
  • Handled wired and wireless network security, involves threat assessment / modelling and implementation of security controls
  • Drive security incidents, not limited to reporting, mitigating and engaging with third party (vendor) security operations team
  • Constantly align Domain web services security posture against OWASP listed vulnerabilities.

Associate Software Engineer

Accenture Services Private Limited
11.2013 - 01.2015
  • Analyse client’s security requirement, troubleshoot network environment, maintain design document revision control, setup meeting with onsite team for daily status and hand of dossier
  • Conduct knowledge transition sessions to onboard team members
  • Manage and configure RSA secuirty tokens across the team
  • Maintain security policies of server throughout the lifecycle of staging, development and testing

Education

Masters in Information Technology - Internetworking and Cyber security

Macquarie University
North Ryde, NSW

Skills

Threat Detection

Incident Response Management

Cloud Security (AWS, SecOps)

Web Security / WAF

Network Security

Identity and Access Management

Cryptography

Endpoint Detection and Response

Technical Leader

Technical Mentor

Detection Assurance and Automation

Network Telemetry

Docker

Python

Splunk

Yara rules

Container Security

GuardDuty

AWS WAF

Malware Analysis

Threat Modelling

AI / ML Security

Certification

GIAC Certified Incident Handler (GCIH)

Timeline

Principal Threat Detection and Response Engineer

Atlassian Pty Ltd
01.2022 - Current

Senior Cyber Security Engineer

Domain Holdings Australia Limited
04.2019 - 01.2020

Associate Software Engineer

Accenture Services Private Limited
11.2013 - 01.2015

Threat Detection and Incident Response

Salesforce, Inc
1 2020 - 01.2022

Masters in Information Technology - Internetworking and Cyber security

Macquarie University
Mukesh SinghPrincipal Threat Detection And Response Engineer