Bhushan Patil

Monitor, analyze, and respond to complex security events across enterprise and cloud environments. Administer and optimize SIEM platforms (Splunk ES, Next-Gen SIEM), including log source integration, forwarder deployment, rule creation, and dashboard development. Manage EDR/XDR platforms (CrowdStrike, Microsoft Defender) for endpoint protection and threat detection. Lead end-to-end incident response, root cause analysis, and documentation of security incidents. Perform continuous SOC monitoring and threat investigation in 247 environments. Conduct vulnerability assessments using Rapid7, Qualys, and Nessus across cloud and on-prem infrastructures. Enforce IAM policies and integrate DevSecOps practices to strengthen access controls and security posture. Utilize CSPM tools (Wiz) to identify misconfigurations, reduce flagged resources, and improve cloud compliance. Collaborate with IT and security teams to develop SOPs and enhance detection and response workflows. Ensure alignment with cybersecurity frameworks and standards (CIS, NIST, ISO 27001).

Served as a shared security resource across multiple domains: SOC, IAM, Endpoint Security. Assisted SOC operations, monitoring alerts, investigating incidents, and escalating critical threats. Supported IAM functions, including user access reviews, RBAC/ABAC enforcement, MFA implementation, and SSO configuration. Managed Endpoint Security tools (Microsoft Defender, CrowdStrike) for malware detection, patching, and threat remediation. Collaborated with cross-functional teams to maintain compliance with CIS, NIST, and ISO 27001 standards. Provided subject-matter expertise to multiple projects simultaneously, ensuring security best practices across all engagements.

Assisted in monitoring and analyzing security events. Supported the team in vulnerability assessment and basic security tasks. Learned and applied fundamental cybersecurity practices.