l
lichumon_s

Lichumon S

@lichumon_s

Security Analyst

Indien
Englisch, Tamil
Einige Informationen werden in englischer Sprache angezeigt.
Über mich
I am a Security Analyst and Threat Intelligence professional with experience as a SOC Analyst and Information Security Consultant. My expertise includes penetration testing, security audits, and GRC. I am currently pursuing a Master's degree in Cybersecurity and Cyber Forensics to further my skills in compliance and network security auditing.... Mehr lesen

Kompetenzen

l
lichumon_s
Lichumon S
offline • 
Durchschnittliche Antwortzeit: 1 Stunde

Meine Dienstleistungen

Poster- & Plakat Design
I will design professional cybersecurity awareness posters
Ab10 $ / ProjektWeitere Details
IT- und Cybersicherheit-Zertifizierung
I will prepare iso 27001 compliance documents and audit plans
Ab15 $ / ProjektWeitere Details

Arbeitserfahrung

TikDown

Security Analyst

TikDown • Vollzeit

Aug 2022 - Aug 20242 yrs

Information Security Lead Analyst (GRC) | Tikaj Security • Led ISO 27001 compliance initiatives for client engagements, including documentation of ISMS policies, processes, and procedures, and tracked corrective actions to ensure audit readiness. • Managed the full vulnerability lifecycle using Qualys VMDR and Nessus; prioritized remediation based on CVSS scores, business impact, and exploitability, and maintained risk registers with mitigation tracking. • Conducted third-party vendor risk assessments and due diligence reviews, evaluating security controls, contract compliance, and ongoing performance monitoring for cloud and AI service providers. • Directed strategic incident analysis and root cause analysis (RCA) across a diverse client portfolio, documenting findings for compliance and legal teams and identifying systemic misconfigurations. • Spearheaded transition from manual to automated threat intelligence reporting using Python, delivering real-time ransomware and IOC insights to leadership, reducing reporting time by 60%. • Collaborated cross-functionally with Engineering and IT teams to refine tooling accuracy, streamline remediation workflows, and align technical output with GRC goals. • Delivered executive-level risk analytics reports summarizing vulnerability exploitation likelihood and recommended mitigation strategies to senior stakeholders.