Kokila A S Vrudhi

SOC Analyst | Cyber Security | Microsoft Sentinel & CrowdStrike | SC-200 Certified | OT Security (Claroty) | EmailSecurity(Xsoar)Immediate Joiner | 2+ Years MSSP Experience

India

About

Graduated with a Bachelor's degree in Electrical, Electronics, and Communications Engineering from Sapthagiri College of Engineering in 2023. Recently completed a tenure as a Security Delivery Associate at Accenture, where contributions focused on managing identity and access-related incidents, monitoring Azure Active Directory, and utilizing tools like Microsoft Sentinel and KQL for log investigation and operational reliability. Developed strong analytical and communication skills while driving process improvements in security operations. At Accenture, worked alongside a dedicated team to enhance identity security protocols and streamline incident triage processes. Leveraged Microsoft Defender and CrowdStrike Falcon to support comprehensive security monitoring. Motivated by a passion for operational excellence and collaboration, aims to contribute diverse technical expertise and innovative approaches to strengthen organizational cybersecurity frameworks.

Experience

  • Security Delivery Analyst at Accenture in India
    Feb 2024 - Mar 2026 · 2 yrs 2 mos

    • Managed security monitoring and incident triage for Microsoft Entra ID and Azure Active Directory alerts. • Responded to identity-related incidents, including MFA failures and suspicious sign-in events. • Utilized Microsoft Sentinel and KQL for log investigation and service health monitoring. • Developed strong analytical and communication skills while focusing on operational reliability and process improvement.

  • Security Analyst at Accenture (MSSP)
    Feb 2024 - Mar 2026 · 2 yrs 2 mos

    Monitored and triaged security alerts across SIEM, EDR, email security, and network security platforms in a 24x7 SOC environment. Investigated incidents involving phishing, malware, suspicious authentication attempts, endpoint anomalies, and policy violations. Utilized Microsoft Sentinel and KQL queries to analyze authentication events, endpoint telemetry, and suspicious user activities. Performed IOC analysis and threat enrichment using endpoint, network, and log-based indicators during incident investigations. Analyzed Microsoft Defender for Endpoint alerts involving malicious scripts, suspicious processes, persistence mechanisms, and credential-related threats. Conducted phishing investigations by reviewing email headers, sender reputation, attachments, embedded URLs, and spoofing indicators. Escalated high-severity incidents to L2 teams with detailed investigation findings, impact assessment, and supporting evidence. Assisted in reducing false positives through alert validation and investigation feedback to detection teams. Worked with ServiceNow for incident tracking, documentation, SLA management, and operational reporting. Mapped observed attacker behaviors to MITRE ATT&CK techniques to support threat analysis and incident context. Collaborated with cross-functional security teams during incident response and containment activities. Maintained 98% SLA compliance while handling high-volume security alerts in a global SOC environment.