Teja Parwatha

Security Analyst

Download Resume Get In Touch

About Me

Security Analyst with 5+ years of experience across SOC operations, cloud security engineering, detection engineering, vulnerability management, and compliance in government, healthcare, and enterprise environments. Deep expertise in Microsoft Sentinel SIEM, Azure (Commercial & Government), Microsoft Defender for Cloud, and KQL-based detection engineering.

Builder of KESTREL — an open-source AI-assisted SOC triage and detection engineering platform with MITRE ATT&CK mapping and LLM-powered alert analysis. Recognized Contributor to the Government of India Responsible Disclosure Program and certified in CompTIA Security+ and Microsoft SC-200.

5+

Years of Security Experience

12

MITRE ATT&CK Tactics Covered

3

Regulated Sectors

Skills & Technologies

Core focus: Microsoft Sentinel · Log Analytics & KQL · Azure (commercial & government) · Microsoft Defender · Entra ID / IAM · Threat hunting & detection engineering · HIPAA / NIST / SOC 2–aligned security

🛡️ SIEM & Detection

Sentinel KQL Detection Eng. Alert Tuning Threat Hunting Incident Response Splunk Snort Suricata

☁️ Cloud & Endpoint

Azure AWS Defender Intune AD / Entra ID IAM & DLP Azure Policy App Gateway

🔬 Vulnerability & Compliance

Nessus Qualys Burp Suite OWASP ZAP Wireshark NIST 800-53 SOC 2 HIPAA PCI DSS

⚡ Languages & Scripting

Python Bash PowerShell PySpark JavaScript HTML5 CSS3 SQL

💻 OS & Infrastructure

Linux Windows Windows Server Docker Kubernetes

🛠️ Tools & Platforms

Git GitHub VS Code Jira Slack Teams Vanta AI/ML

Professional Journey

Current

Security Analyst

Vanvi Technologies LLC (UnitedHealth Group)

Nov 2025 - Present

  • Designed and implemented HIPAA-aligned security controls for Azure-hosted healthcare platforms handling PHI
  • Monitored and investigated Microsoft Sentinel alerts including identity anomalies and suspicious authentication activity
  • Performed threat hunting using KQL across Azure logs, Defender telemetry, and identity data
  • Tuned analytics rules and thresholds to reduce false positives and improve SOC signal quality
  • Built Python and KQL automation to streamline alert enrichment and accelerate triage workflows
Microsoft Sentinel Azure KQL HIPAA
Government

Associate Security Analyst

RiceFW Technologies Inc. (State of Michigan)

Jun 2024 - Oct 2025

  • Designed and maintained Microsoft Sentinel SIEM environments with log ingestion pipelines and KQL analytics rules
  • Engineered KQL detections for lateral movement, privilege escalation, and anomalous authentication; tuned rules to reduce false positives
  • Implemented and hardened Microsoft Intune endpoint security & compliance policies across government-managed devices
  • Supported IAM controls through Microsoft Entra ID, enforcing least privilege and monitoring privileged activity
  • Conducted vulnerability scanning and testing using Tenable/Nessus, Burp Suite, and OWASP ZAP; tracked remediation to closure
Sentinel Intune Entra ID Tenable/Nessus
Intern

Security Analyst Intern

Genzeon Technologies

Jun 2022 - Nov 2022

  • Performed penetration testing and vulnerability assessments for healthcare and dental applications handling regulated data
  • Conducted credentialed scans using Qualys and Nessus across Windows, Linux, and database systems
  • Validated remediation effectiveness through repeat testing and exploit validation; produced executive-ready security reports
  • Automated security validation and re-testing workflows using Python and Bash
Qualys Nessus Burp Suite OWASP ZAP
Support

Support Analyst

Amazon Development Center

Apr 2021 - Jun 2022

  • Investigated seller account security incidents involving authentication abuse, phishing, and credential stuffing
  • Analyzed login activity patterns to identify unauthorized access and fraud risk
  • Collaborated with risk, fraud, and engineering teams to strengthen authentication controls and account protection workflows
  • Authored security-focused process documentation to improve incident handling consistency
Incident Response Fraud Analysis Security AWS

Featured Projects

KESTREL — AI-Assisted SOC Triage Platform

Designed and built KESTREL, an open-source AI-assisted SOC platform that ingests alerts from multiple telemetry sources into a normalized alert pipeline. Includes multi-factor risk scoring, MITRE ATT&CK mapping, alert correlation into incident threads, and LLM-powered triage (with graceful rule-based fallback).

FastAPI React Python Docker AI/ML MITRE ATT&CK
View Project

Vulnerability Management Program

Implemented enterprise vulnerability management using Tenable, Nessus, and Qualys with credentialed scans across Windows, Linux, and database systems. Automated security validation and re-testing using Python and Bash to ensure measurable risk reduction and compliance alignment.

Tenable Nessus Python Bash
Discuss impact

Azure Security & Compliance Platform

Reviewed and secured Azure Government and Commercial environments enforcing IAM, logging, encryption, and policy compliance. Built enterprise risk registers aligned with NIST 800-53. Implemented secure architecture practices for cloud-native services including logging, telemetry ingestion, and role-based access controls.

Azure NIST 800-53 IAM Compliance
Discuss impact

Certifications & Credentials

Completed

CompTIA Security+

Industry-recognized certification validating cybersecurity foundations and practical skills

Validated Skills Official CompTIA program ↗
Completed

Microsoft Certified: Security Operations Analyst Associate (SC-200)

Certification validating SOC operations, Microsoft Sentinel, and threat detection/response skills

SOC Operations Microsoft Learn (SC-200) ↗
Active

Government of India Responsible Disclosure Program

Recognized Contributor participating in coordinated vulnerability disclosure

Active Contributor Credentials on LinkedIn ↗

Education

M.S. in Information Systems

Cybersecurity Concentration

Central Michigan University

2024

Bachelor of Engineering

Engineering

Kakatiya Institute of Technology and Science

2020

Let's Connect

I'm always open to security opportunities, threat research discussions, and collaboration on innovative security initiatives.

Email

tejaparwatha@gmail.com

Response within 24 hours

Phone

+1 (989) 824-6552

Available for calls & messages

Send Me a Message

I'd love to hear from you. Let's discuss opportunities or ideas.