Abishkar Bharat Singh

Incident Response

SOC Analysts

ServiceNow Tester

Asset Management

Citrix Administrator

Abishkar Bharat Singh

Incident Response

SOC Analysts

ServiceNow Tester

Asset Management

Citrix Administrator

Download CV Contact Me
Who Am I ?

Cybersecurity SOC Analysts and Incident Response Based in Mumbai, India.

I specialize in strengthening security systems, identifying vulnerabilities, and analyzing potential cyber threats using advanced tools and industry best practices. My work focuses on protecting critical assets, improving security posture, and ensuring that organizations stay resilient against modern cyber risks. I combine technical expertise with a proactive mindset to build safer, more secure digital environments.

5

Worked in
Projects

10+

Awards
Won

4+

Years
of Experience

Security Solutions

What Solutions I Provide ?

SIEM Solutions
SIEM Solutions

I work on implementing, tuning Security Information and Event Management systems to improve visibility, detect threats faster, and strengthen security monitoring.

Network Security
Network Security

Proactively monitor Cisco Meraki IDS/IPS alerts, analyze suspicious activity, and take preventive actions to block malicious traffic and secure network infrastructure.

Endpoint Detection & Response
Endpoint Detection & Response

Experience with Cybereason, CrowdStrike, Trellix, and Microsoft Defender to perform threat hunting, analyze alerts, and respond to endpoint and server-based incidents.

Extended Detection & Response
Extended Detection & Response

Hands-on experience with  Taegis, Microsoft Defender for threat hunting and incident response on endpoints and servers

Microsoft Azure Cloud Security
Microsoft Azure Cloud Security

Monitor Azure identities, data, and infrastructure for threats while ensuring secure access, strong configurations, and effective cloud security practices.

Google Workspace Security
Google Workspace Security

Investigate unusual account behavior, analyze suspicious login activity, and safeguard Google Workspace identities to protect users data.

ServiceNow Tester & Admin Cum Developer
ServiceNow Tester & Admin Cum Developer

ServiceNow Admin cum Developer with hands-on experience in SAM Pro, application and catalog development, scripting and automation, security controls, testing, and end-to-end management of ITSM modules including Incident, Problem, Change, SLA, and Knowledge Management.

Asset Management
Asset Management

Experienced in managing Assets and accessory operations across 85+ countries using Barscan and HPAM, covering asset lifecycle management, migrations, bulk operations, reporting, purchasing, backups, and operational issue resolution, while ensuring data accuracy, compliance, and seamless coordination with IT teams.

Citrix Administrator
Citrix Administrator

Experienced in Citrix Workspace administration, including user access provisioning for applications and servers, troubleshooting workspace issues, and supporting migration of dedicated VDIs to the cloud.

Web & App Developer
Web & App Developer

Web and application development, including designing, developing, testing, and maintaining scalable, user-friendly web applications and mobile apps using modern frameworks and best development practices.

Worked with
UNHCR
Metro
TC Energy
ABB
Testimonials
His thoroughness in investigations and his willingness to go the extra mile have been very valuable. His positive attitude has made a noticeable difference to our team, and the insights and recommendations he provided have enhanced our cyber security operations..Thank you for your hard work
Simon Ignacio
UNHCR, SecOps SDM
His analytical depth and structured approach to phishing email investigations were highly effective. He demonstrated strong analysis in malware cases and clear thinking even in high-pressure scenarios. His ability to correlate indicators and drive decisive containment actions added real value to the team. A reliable security thinking with a sharp mindset and a strong commitment to cyber defense was really appreciable.
Venu Sudani
SOC & EDR, Project Lead
My name is Edwin Anthony I worked with Abishkar for one of SAM project and here are my recommendations Abishkar play a key role across ServiceNow testing activities, focusing on quality, traceability, and release readiness:He demonstrated exceptional expertise as a tester for the ServiceNow module. His attention to details, through validation, and proactive approach ensured high-quality deliverables through the project. He consistently up help service excellence standards, contributing significantly. His commitment and Professionalism was truly commendable.
Edwin Anthony Paul
SAM PRO, Project Manager
He consistently demonstrated strong presence of mind and approached each case with a fresh perspective. He gained solid expertise in Barscan and HPAM in a short time and delivered five automations that significantly reduced report generation effort. His troubleshooting approach was practical and effective, especially during vendor discussions where his counter-questions helped improve tool stability and updates. He actively supported other teams and received positive feedback from multiple team leads for his technical depth. Based on his performance, he was promoted to Tools Team Lead and successfully strengthened SOPs and operational processes.
Shamseer PA
Tools, Technical Manager
He quickly developed a strong understanding of the full asset lifecycle. He played a key role in migrating assets and accessories and consistently generated accurate log reports that enabled timely corrective actions. Beyond core responsibilities, he actively supported stock management, demand planning, purchasing, and catalog operations. His grasp of end-to-end asset processes and willingness to take on additional work stood out. Based on his performance and work ethic, he was promoted to the Tools Team Lead.
Dharma Kumar
Asset Management, Delivery Manager
Fun Facts
Won the “Best Team Award”
Clash of Clans enthusiast
Built 5 PowerShell automation scripts
Certified ServiceNow Administrator
HARD SKILLS

Technology Stack

Cybersecurity Analysts
Cybersecurity Analysts
85%
ServiceNow Admin Cum Developer
ServiceNow Admin Cum Developer
75%
Asset Management
Asset Management
90%
Citrix Administrator
Citrix Administrator
40%
Web Development
Web Development
60%
App Development
App Development
60%
Tool Stack
CYBERSECURITY TOOLS
  • IBM Qradar
    10%
  • SentinalOne
    10%
  • Trellix
    50%
  • F5
    50%
  • Zscaler
    10%
  • Taegis
    75%
  • MS Defender EDR & XDR
    90%
  • Cybereason
    70%
  • CrowdStrike
    65%
  • Defender for Cloud
    80%
  • Google Workspace
    60%
  • Azure
    80%
  • Intune
    85%
  • Meraki
    75%
  • Canary
    75%
  • AWS
    70%
  • ANY RUN
    85%
  • Record Future
    85%
  • Workday
    90%
  • Entra ID
    60%
Resume

Work Experience & Education

Experience
Cybersecurity Incident Response Analyst - IndusInd Bank
Jan 2026 - Present
Cybersecurity Incident Response Analyst - IndusInd Bank
Navi-Mumbai / Vashi · Client location

Key Responsibilities & Actions:

  • Threat Intelligence & IOC/IOA Management: I ingest and operationalize alerts from regulatory bodies (CERT-In, NCIIPC, FSISAC) and third-party subscriptions (RSA, VISA, Wipro). I translate raw IOCs (IPs, Hashes, Domains) into actionable blocks across Firewalls, EDR, Zscaler (Proxy), and IPS.

  • Brand Impersonation & Takedown (Cloud SEK, iZoologic): I hunt for and respond to digital brand abuse, including fake Facebook/Instagram profiles, phishing URLs, fraudulent mobile apps (APKs), and rogue websites. I coordinate with Marketing for validation and with Threat Intel partners for global takedown.

  • Data Leak Response (Scribd, GitHub, Dark Web): When PII, financial statements, or internal documents are exposed on public platforms (like Scribd) or code repositories (GitHub), I lead the containment effort, engage legal/GBO teams, and manage takedown requests to prevent financial fraud.

  • Credential Breach & Malware Stealer Response: I analyze stealer logs and combo lists from Telegram/Dark Web forums. I identify impacted users (employees & customers), force password resets, terminate active sessions, initiate AV scans, and coordinate with the CFMU (Fraud) team to check for unauthorized transactions.

  • Vulnerability & Botnet Management: I assess high-risk advisories (e.g., NetScaler ADC, FortiClient EMS) and botnet/malware infections on internal assets. I work with VAPT and system owners to validate exposure and remediate misconfigurations (e.g., exposed SSH ports).

  • Email & Phishing Defense: I analyze ESA anti-spam reports and phishing campaigns, extracting malicious URLs, hashes, and sender domains to block on Email Gateways and Web Proxies.

  • Cross-Functional Orchestration: I act as the bridge between the SOC (for historical footprinting), Network Team (Firewall blocks), Proxy Team (URL filtering), AV Team (Hash blocking), and Application Owners (password resets).

Impact:
Reduced threat actor dwell time by operationalizing intel within hours, prevented financial fraud by takedown of malicious APKs/phishing sites, and ensured regulatory compliance by responding to CERT-In/NCIIPC directives.

 

Cybersecurity Analyst - UNHCR
Mar 2025 - Jan 2026
Cybersecurity Analyst - UNHCR
Pune/Pimpri-Chinchwad Area · Hybrid

Phishing & Email Security Operations

  • Investigated reported phishing emails through sender ID & Domain validation, content analysis, artifact inspection (URLs, attachments, QR codes, unwanted file download automatically), and email header analysis.

  • Identified spoofing, social engineering tactics, and malicious infrastructure through Sandbox analysis.

  • Executed containment actions including sender/domain blocking, URL blocking, mailbox remediation, and escalation to Microsoft for review.

  • Applied user protection measures such as forced password resets & sign-out from everywhere and MFA validation.

  • Additional, Cloned or impersonating website mimicking the organization's website & domain is detected follow the above same investigative and mitigation workflows.

User Remediation & Incident Containment

  • Provided remediation guidance to impacted users, including full scans, browser cleanup, MFA review, extension validation, Inspected pop-up setting and password hygiene.

  • Reduced risk of persistence and repeat compromise through structured user recovery steps.

Post-Incident Identity & Mailbox Auditing

  • Reviewed Azure AD sign-in logs and audit logs to identify suspicious IP activity and abnormal authentication behavior.

  • Investigated mailbox and account changes including inbox rules, folder permissions, and user/application management actions.

  • Monitored SharePoint, OneDrive, and Microsoft Teams for unauthorized access or data manipulation.

  • Detected suspicious outbound email activity, including bulk or anomalous message sending.

Cloud Infrastructure Alerts

  • AWS: Analyzed GuardDuty and CloudTrail logs to validate security events and determine the nature of triggered alerts and validate user authorization.

  • Azure AD: Investigated sign-in anomalies, device code abuse, MFA alerts, and audit log irregularities.

  • Microsoft Defender for Cloud: Reviewed & investigate alerts related to:

    • Role assignment changes.
    • VM, server and database creation/deletion.
    • Network & virtual security rules creation.
    • Network and firewall rule creation/deletion.
    • Load balancer, storage account creation.
    • SQL Injection attempts and other defender for cloud alerts ...

Network Security (Meraki)

  • Monitored inbound and outbound traffic from corporate devices.

  • Blocked unauthorized devices and investigated traffic anomalies indicating potential compromise or data exfiltration.

Threat Detection Analysis (Taegis)

  • Conducted end-to-end alert analysis using both normalized and raw log data.

  • Used advanced queries to correlate events and support deeper threat investigations.

  • Investigated and analyzed threats using process trees & timelines to identify root causes.
  • Took appropriate action on corporate endpoints or provided clear, step-by-step guidance to users to identify, contain, and remediate malware present on affected machines.

Endpoint Security & Device Management (Intune)

  • Validated device ownership and enrollment status.

  • Assessed endpoint security posture including malware status, BitLocker encryption, Secure Boot, and code integrity.

  • Took corrective actions on lost, stolen, or compromised devices.

Takedown & Fraud Response

  • Coordinated takedown efforts for phishing emails & domains, fraudulent websites, social media impersonation, and recruitment fraud.

  • Collaborated with Digital Security, Social Media, and HR teams for timely incident resolution.

Credential Theft Response

  • Responded to credential exposure incidents by notifying users and application, enforcing password resets, and providing account-security guidance.

  • Supported users in securing corporate accounts and monitoring for misuse.

Thread Hunt

  • Understand the Report like (SHA value, File Name, Malicious Browser extension, Link, IOCs, IP address, Domains & Application), Validate Each Finding, Investigation Context, Containment & Response and Report & Improve

Skills: Cybersecurity, Vulnerabilities, Threat intelligence, Incidence response

Cyber Security Analyst - Metro
Dec 2022 - Mar 2025
Cyber Security Analyst - Metro
Navi-Mumbai / Airoli · Hybrid
  • Monitored security alerts across endpoints, cloud, network, and email systems using tools like CrowdStrike, Microsoft Defender, Cybereason, and Trellix.
  • Investigated and analyzed threats using process trees, timelines, threat graphs, and attack stories to identify root causes.
  • Performed threat hunting and collaborated with SOC teams to improve detection capabilities and reduce false positives.
  • Configured and managed EDR/XDR policies, firewall rules, and allow/deny lists to strengthen endpoint and network security.
  • Blocked malicious indicators (IPs & URLs), contained compromised accounts, and implemented DLP controls to prevent data leakage and unauthorized access.
  • Conducted in-depth security investigations using advanced querying tools like KQL for efficient correlation of multiple alerts.
  • Managed whitelisting/blacklisting of applications and implemented firewall policies to enhance endpoint and network security.

Skills: Cybersecurity, SOC Operations, Threat Hunting, Incident Analysis

ServiceNow Tester & Admin/Developer - TC Energy
Sep 2022 - Dec 2022
ServiceNow Tester & Admin/Developer - TC Energy
Navi-Mumbai / Airoli · Hybrid

  • Created and maintained test documentation, including test plans and test cases for SAM Pro modules.

  • Identified, reported, and tracked defects and issues while collaborating with development teams to resolve them.

  • Tested Service Catalog forms, workflows, and multiple products to ensure smooth functionality and performance.

  • Worked with core ServiceNow components such as Applications, Modules, Service Catalog items, Update Sets, Custom Tables, and Import Sets.

  • Developed and configured platform features including UI Policies, Data Policies, UI Actions, ACLs, Workflows, Business Rules, Script Includes, Client Scripts, and Notifications.

  • SERVICENOW ADMIN CUM DEVELOPER
  1. Having Good Knowledge and Understanding on creating of Application, Model, Service Catalog, Update set, Custom Tables, Import set, UI Policies, Data Policies & UI Action.
  2. Knowledge and understanding on ACL, Workflow, Business Rule, Script Include, Client Script & Notification.

Skills: ServiceNow SAM Pro, Testing, Workflows, Scripting

learn more
Asset Management Tool Specialist - ABB
Dec 2021 - Sep 2022
Asset Management Tool Specialist - ABB
Pune/Pimpri-Chinchwad Area · Hybrid

Hardware & Software Asset Management

  • Used Barscan and HPAM tools to manage assets & accessories across 85+ countries (APAC, USA, Europe).

  • User, Catalog, and Asset Administration: Created, maintained, and decommissioned user IDs, asset records, accessories, locations, and hardware models in both asset management tools to ensure accurate and up-to-date inventory.

  • Device Lifecycle Management: Updated device status throughout the asset lifecycle, including allocation, in-use, repair, and retirement, using both manual updates and bulk processing as required by operational demand.

  • Asset and Accessory Migration: Performed controlled migration of assets and accessories between tools, validating data integrity and ensuring continuity of asset history and ownership.
  • Data Export and Backup Management: Generated daily manual exports and backup files to support auditing, reporting, and recovery requirements.
  • Operational Reporting and Logs: Produced manual export logs for assets, catalogs, locations, and users to support tracking, reconciliation, and compliance reviews.
  • Warranty and Retirement Management (HPAM): Executed bulk updates for warranty start and end dates and scheduled asset retirement dates within HPAM to maintain accurate lifecycle and support planning.
  • Asset Purchasing Operations:  Managed asset purchasing activities in both tools, ensuring proper recording from procurement through inventory onboarding.

  • Troubleshot issues raised by OSS or FSM across tools.

  • I also now collaborate with Demand Management, Catalog Management, Stock Management Team.

ITSM Modules Worked On:

  • Incident Management

  • Problem Management

  • Change Management

  • SLA Management

  • Knowledge Management

Achievements:

  • Awarded Best Team Award (Oct 2022).

  • Created 5 automation scripts to increase project productivity.

Skills: Asset Management, HPAM, Barscan, ITSM, Automation, Team Leadership

Citrix Administrator - ABB
Oct 2021 - Dec 2021
Citrix Administrator - ABB
Pune/Pimpri-Chinchwad Area · Hybrid

  • Managed and supported Citrix Workspace access for users.

  • Provided permissions and access to applications and servers through the Citrix environment.

  • Troubleshot issues related to Citrix Workspace, user access, and VDI performance.

  • Assisted in the migration of dedicated VDIs to cloud infrastructure.

Skills: Citrix Workspace, Troubleshooting, VDI Management, Teamwork

Education
Birla Institute of Technology and Science, Pilani
Jun 2022 - Nov 2025
Birla Institute of Technology and Science, Pilani
Master of Technology - MTech, Computer System & Infrastructure

Lead the team and delivered presentations for two major projects, receiving formal appreciation from professors for the depth of technical detail, clarity of explanation, and structured presentation approach.

 

Grade: 8.0

 

Pursuing M.Tech in Computer Systems and Infrastructure at BITS Pilani, with a focus on advanced computing, infrastructure design, and system-level technologies.

 

University of Mumbai
Jul 2018 - May 2021
University of Mumbai
Bachelor of Science - Information Technology, Information

Graduated from St. John College of Humanities and Sciences with a Cumulative Grade Performance Index of 8.70.

 

Awards & Achievements

Awarded a Gold Certificate for achieving 100% attendance, demonstrating consistent commitment, discipline, and reliability.

 

Activities & Societies:
– Helped organize college events
– Participated in college cricket and football

– Presentation the topic provide my the faculty's 

 

During the COVID-19 period, completed advanced online training in MS Word, Excel, and PowerPoint, and secured an “A” Grade by winning a competitive evaluation based on practical and presentation skills.

 

Additionally, gained hands-on experience in IoT by designing and developing a real-time Smart Hand Sanitizer system as a final project; detailed documentation is available in the Projects section.

 

View Degree
Maharashtra State Board of Secondary and Higher Secondary Education
2016 - 2018
Maharashtra State Board of Secondary and Higher Secondary Education
R.P Wagh High School & Junior College

Completed Higher Secondary Education with a cumulative score of 85%.

 

During this period, maintained a strong academic focus while actively engaging in collaborative learning, peer discussions, and self-development, contributing to a well-rounded college experience.

 

Central Board of Secondary Education (CBSE)
2002 - 2016
Central Board of Secondary Education (CBSE)
Teens World Corporate School

Done by Secondary School Certificate with a Cumulative Grade as 8.2

 

Awards & Achievements

  • Actively participated in annual Handwriting and Painting competitions at KALA Children Academy, consistently achieving “A” Grades.

  • Secured First Place in Group Patriotic Song competition.

  • Achieved Second Place in Cooking Without Flame competition.

  • Won Second Place in Football.

  • Earned Second Place in Relay Race.

  • Achieved Second Place in Toran Making competition.

  • Secured First Place in Volleyball.

  • Won First Place in Flower Arrangement competition.

  • Achieved First Place in Shot Put.

  • Secured First Place in Running event.

  • Won First Place in Sack Race.

 

Activities & Achievements:

Cleared the Government of Maharashtra Drawing Grade Examinations


  • 2011 – Elementary Grade Drawing Examination — Grade “C”
  • 2012 – Intermediate Grade Drawing Examination — Grade “B”

Certificates
All my Achievement in certificate
Certified System Administrator
Jan 13, 2024
Certified System Administrator
ServiceNow

Gained foundational skills in configuring, managing, and maintaining ServiceNow applications.

Key Learnings:

  • Learned platform configuration and user administration.

  • Understood data management, workflows, and automation.

  • Developed strong knowledge of core system operations.

View Certificate
Junior Cybersecurity Analyst Career Path
Jun 25, 2024
Junior Cybersecurity Analyst Career Path
Cisco Networking Academy

Developed essential cybersecurity fundamentals including threat analysis, defensive security, and SOC basics.

Key Learnings:

  • Understood core threat analysis and cybersecurity concepts.

  • Learned network security, defensive techniques, and incident handling.

  • Strengthened analytical and problem-solving skills through practical modules.

View Certificate
Technical Specialist Certification
Jun 28, 2025
Technical Specialist Certification
Cybereason

Gained hands-on expertise in detecting, analyzing, and responding to simulated cybersecurity attacks.

Key Learnings :

  • Experienced real-time threat detection in a simulated attack environment.

  • Practiced advanced security assessment and incident response techniques.

  • Strengthened practical skills in endpoint protection and cyber defense.

View Certificate
Security, Compliance, and Identity Fundamentals (SC-900)
Mar 1, 2026
Security, Compliance, and Identity Fundamentals (SC-900)
Covering cloud security, compliance, and identity concepts

This certification validates foundational knowledge of security, compliance, and identity concepts within the Microsoft cloud ecosystem. It covers how organizations protect identities, manage access, secure data, and maintain compliance using Microsoft security solutions.

Key Learnings:

  • Security Fundamentals: Understanding core cybersecurity concepts such as Zero Trust, defense-in-depth, and the shared responsibility model.

  • Identity & Access Management: Basics of authentication, authorization, and identity protection using Microsoft identity solutions.

  • Compliance & Data Protection: Understanding governance, risk management, and information protection within Microsoft security and compliance tools.

View certificate
Microsoft Certified: Identity and Access Administrator Associate (SC-300)
17 April, 2026
Microsoft Certified: Identity and Access Administrator Associate (SC-300)
Focused on managing secure identity and access solutions using Microsoft Entra ID

Microsoft Certified: Identity and Access Administrator Associate (SC-300)Microsoft Certified: Identity and Access Administrator Associate by Microsoft

This certification validates expertise in implementing and managing identity and access solutions using Microsoft Entra ID, focusing on securing identities, controlling access, and protecting organizational resources.

Key Learnings:

  • Identity Management: Managing users, groups, and roles in Microsoft Entra ID.
  • Authentication & Security: Implementing MFA, Conditional Access, and identity protection.
  • Access Governance: Handling access reviews, entitlement management, and privileged access.
  • Application Access: Configuring Single Sign-On (SSO) and secure app integrations.
  • Hybrid Identity: Managing and securing identities across on-premises and cloud environments.
VIEW Certificate

Technology Stack

Productivity & Platform Tools
  • ServiceNow
    90%
  • Jira
    70%
  • BMC Helix
    60%
  • Citrix
    40%
  • Azure VDI
    80%
  • BarScan
    95%
  • HPAM
    95%
  • PowerShell
    70%
  • AWS Workspace
    95%
  • Office 365
    90%
  • AI Tools
    70%
  • Avaya
    75%
To protect client from Cyber attack

Advisory

Threat Intelligence Partner
  • BitSight
    10%
  • VISA
    40%
  • Cloud SEK
    50%
  • FSISAC
    10%
  • iZoologic
    50%
  • RSA
    50%
  • Swift ISAC
    10%
  • Wipro
    50%
  • NCIIPC
    40%
  • CERT-In
    40%
  • NetWork Intelligence
    10%
  • RBI
    30%
  • Maharashtra Cyber Security
    10%
  • Tata
    10%
  • Airtel
    30%
  • Arcos
    10%
  • Cisco IronPort
    10%
  • NCTAV
    10%
  • CSITE
    10%
  • ICCCC
    10%
  • Swift
    10%
  • CDSL
    10%
  • NSDL
    10%
  • Okta
    99%
Analyzing Tool

Open Source

Tools

General Skills

Communication
  • Leadership
    90%
  • Critical Thinking
    75%
  • Quick Learning
    85%
  • Problem Solving
    90%
  • Malware Analysis
    90%
  • Phishing Email Analysis
    90%
  • Deep & Dark Web Analysts
    70%
  • Digital Risk Management
    60%
Languages
  • English
    90%
  • Hindi
    90%
  • Marathi
    60%
  • Bhojpuri
    95%
Soft Skills
  • Creativity and passion for games
  • Strong problem-solving skills
  • Excellent teamwork and collaboration
  • Good communication skills
  • Attention to detail
  • Critical thinking and analytical skills
  • Using AI to analysis phishing email
  • Continuous Learning

Clients Logo

ABB
TC Energy
METRO
UNHCR
Projects
kb img
Core Procedures in IT Asset Lifecycle Management
Corporate project
automation img
PowerShell Framework for Enterprise Asset Management
Corporate project
mess minder img
Mess Minder
Masters project
midware img
Modernizing ABC Inc. Payroll System
Masters project
human detection
Human Detection Robot
Bachelor project
Sanitizer to fight against COVID 19
Sanitize to Fight Against COVID-19
Bachelor project
CONTACT

Let’s Connect

Phone
+91 8600658527
Email
contact@abishkarbharatsingh.com
Address
Mumbai, Maharashtra, India.

Get in Touch

    Copyright © 2026. All Right Reserved | Designed & Developed By Abishkar Bharat Singh