DIPANSHU GHANGUS
Summary
Focused on crafting and implementing tailored DLP solutions to ensure robust security aligned with business needs. Proficient in Data Privacy and Protection principles, seamlessly navigating Jira and Confluence for smooth DLP updates. Collaborated with OEM to showcase dedication to optimal performance and expertise in various Data Protection technologies, seamlessly integrating them with security and business intelligence for effective solutions. Passionate about evaluating and implementing new technologies. Successfully set up secure email communication using PGP encryption for File transfer, key-pair management, rotation, Cloud Storage, and Data Backups. Leveraged CrowdStrike Falcon EDR Solution for proactive threat detection and response, providing real-time protection to systems. Implemented Nessus Vulnerability Management for comprehensive vulnerability assessments and prioritized remediation efforts. Utilized CloudFlare WAF to fortify network security and proficiently redirected traffic from AWS websites to WAF. Experienced in PaaS and SaaS technologies, internet-facing technologies, cloud services, and hybrid cloud integration. Integrated SumoLogic SIEM Solution into infrastructure for centralized log management, proactive threat detection, and Encryption. Hands-on approach and collaborative nature make me an ideal team player to work with security, infrastructure, and development teams to elevate security standards. Managed KnowBe4 Training and Awareness Tool to enhance cybersecurity awareness of teams.
Overview
3
3
years of professional experience
1
1
Certification
Work History
Cybersecurity Analyst
GeneDx
01.2024 - 01.2025
- Strengthened Azure AD and MS Security, including Azure portal access and deployment of security suite components which involves implementation of SSO (Single Sign-On) and unique portal access
- Established and enforced Role Based Access Control (RBAC) policies for secure Access Management, configured Azure API for app registration and Identity Management
- Implemented M365 Security Suite including Defender, MCAS, CASB etc
- Demonstrated crisp communication and confidence in conveying technical details and security recommendations
- Conducted comprehensive vulnerability assessments using industry-leading tools and frameworks
- Analyzed vulnerability scan results, identified security risks, and provided actionable recommendations for remediation
- Collaborated with cross-functional teams to prioritize and track vulnerability remediation efforts, ensuring timely resolution of identified vulnerabilities on Critical Assets
- Successfully enrolled the Logs from various Applications to SumoLogic SIEM Solution, configured alerts, and responded to incidents based on alerts/investigation metrics from the SIEM Solution
- Manage and administer the KnowBe4 platform, including campaign setup, content customization, and user management
- Successfully Set-up Phish Button in M365 Environment, Enabled SSO in the Azure Environment
- Document NIST Controls by locating companywide Identify, Protect, Detect, Respond, recover Functions
- Successfully Altered, Tested and Rolled-out the Firewall Rules in CloudFlare WAF to ensure Network Security
- Onboarded numerous Applications in Symantec for Data Loss Prevention - DLP
- Wrote, tested, and implemented the Policies in Netskope and Symantec to implement HIPAA and NIST Controls for advanced detection and alerting related to Data Loss Prevention
- Integrated ADP and ETrade Applications by successfully implementing PGP (Pretty Good Privacy) Encryption for ensuring Public/Private Key Pair Communication between the two Applications as well as Outlook Email system
- Underlying Environment: Azure AD, M365, Netskope DLP, Symantec, ServiceNow, PGP Encryption, M365, SFTP, NIST, Intune, SCCM, JAMF, KnowBe4, CloudFlare WAF, SumoLogic, Incident Response, KnowBe4, Nessus and Qualys Vulnerability Management
Security Engineer
Insights DataScience
02.2022 - 01.2024
- Led on various Azure Cloud Security projects, showcasing the ability to lead and guide the team
- Created detailed project documentation, including SOPs, integration procedures, and contingency plans
- Designed a PoC for implementing Endpoint Detection and Response (EDR) solution, after successful review of multiple EDR systems procured and scripted deployment of CrowdStrike Falcon EDR on Windows and Mac endpoints using Intune through Azure AD
- Successfully implemented the EDR solution on 60,000 company owned Windows and Mac devices
- Managed the nextgen EDR CrowdStrike Falcon Solution companywide, configured the CrowdStrike policies from scratch (n-1) solution followed by efficient monitoring and reporting
- Responded to Incidents detected via CrowdStrike Falcon sensor, for example ransomware, phish attacks
- Created Standard Operating Procedures (SOP) for documenting the incident response plan in case of emergency
- Created and monitored alerts to flag malicious API calls on the Endpoint Secrets and Password Manager to audit the compliance against MFA, secrets rotation, Password Duration, and complexity
- Established and Conducted Companywide Cybersecurity Change Management Board (CAB) for implementing Changes in Company Assets and Infrastructure
- Collaborated with departmental leaders to establish organizational goals, strategic plans, and objectives
- Documented computer security and emergency measures policies, procedures, and tests
- Configured and monitored Litigation hold over the user activities over Emails and File sharing’s
- Underlying Environment: CrowdStrike Falcon EDR, Intune, M365 Litigation Hold Management, Prometheus, Grafana, Keeper Password Manager, Change Management (CAB), ServiceNow, Asset Management, Risk Management
Network Analyst
Vale
05.2022 - 12.2023
- Coordinated with vendors for hardware maintenance and upgrades, negotiating favorable terms to meet budgetary constraints while maintaining system reliability.
- Resolved connectivity issues for end-users through troubleshooting and implementing solutions.
- Managed development, deployment and training of RTS system and internal systems suite.
- Wrote ad hoc tools and patches to resolve recurring production problems.
Education
Bachelor of Science - Information And Computer Systems
Cambrian College of Applied Arts And Technology
Greater Sudbury, None04-2022
Certification
- Comptia A+
- Comptia Security+
- CISA
Technicalskills
- Security Frameworks: NIST, HIPAA, PCI
- Monitoring & SIEM: Qualys, CrowdStrike, Sumologic, KnowBe4, AWS CloudTrail, Prometheus, Grafana
- Data Loss Prevention: Netscape, Symantec, McAFee, PGP Encryption, SFTP Enforcement
- Password Management: Keeper, 1Password
- Awareness and Training: KnowBe4
- Vulnerability Management: Qualys VM/VMDR, Nessus Scanning, Risk Assessment
- Microsoft Office 365: Security Administration, Compliance Administrator (Entra)
- Ticketing Systems/Incident Response Platforms: ServiceNow, JIRA, Qualys Ticketing System
- Compliance: Vendor Risk Management, Risk Registration, Policy Creation/Enablement/Enforcement
- Platforms and Repositories: Azure, AWS, M365, Linux, Windows, Mac
Timeline
Cybersecurity Analyst
GeneDx
01.2024 - 01.2025
Network Analyst
Vale
05.2022 - 12.2023
Security Engineer
Insights DataScience
02.2022 - 01.2024
Bachelor of Science - Information And Computer Systems
Cambrian College of Applied Arts And Technology
Similar Profiles
ALEJANDRO RIVEROALEJANDRO RIVERO
International Sales Director at GeneDXInternational Sales Director at GeneDX
Aiko N. BautistaAiko N. Bautista
Technologist III – DNA Extraction Department at GeneDxTechnologist III – DNA Extraction Department at GeneDx
Karla ApgarKarla Apgar
Cytogenetics Technologist II at GeneDxCytogenetics Technologist II at GeneDx
ANISHA GHODADRAANISHA GHODADRA
Senior Talent Acquisition Specialist(P&T) at GeneDXSenior Talent Acquisition Specialist(P&T) at GeneDX
James BlueJames Blue
Cybersecurity Analyst (SOC I) Apprentice, Cybersecurity Analyst (SOC I), SOC at Talent Solutions, IncCybersecurity Analyst (SOC I) Apprentice, Cybersecurity Analyst (SOC I), SOC at Talent Solutions, Inc