Chaitanya Alve
Boston
Summary
Experienced cybersecurity professional skilled in cloud and endpoint security, incident response, and regulatory compliance. Proven track record in reducing security incidents, automating security operations, and strengthening threat detection using tools like Azure Sentinel, SentinelOne, and SIEM platforms. Adept at managing identity and access controls, vulnerability assessments, and collaborative audit processes to enhance organizational security posture.
Overview
6
6
years of professional experience
Work History
Systems and Security Engineer
JPMerc and Co.
04.2024 - 08.2025
- Administer Active Directory, Entra ID, and GPOs to ensure secure, compliant access management.
- Designed, implemented, and scaled Azure security controls and policies, reducing cloud security incidents by 30% across enterprise workloads.
- Developed and enforced Azure Identity and Access Management (IAM) policies using Microsoft Entra ID RBAC, and cloud native security controls increasing least-privilege compliance by 40%.
- Managed security operations in an MSP demonstrating adaptability by maintaining compliance with HIPAA, GDPR, and FERPA for clients in diverse industries.
- Strengthened endpoint security on 600+ devices with SentinelOne EDR, Microsoft Defender, and MDM, boosting compliance by 50% and reinforcing access control mechanisms and separation of duties (SoD).
- Implemented Azure Sentinel SIEM monitoring with logs from M365, firewalls, and Vade, enabling real-time detection and response, reducing incident response times by 25%.
- Researched and incorporated emerging cloud security technologies and Zero Trust principles, enhancing threat prevention capabilities and reducing high-risk security gaps.
- Automated reporting and security tasks with PowerShell, while aligning processes with ISMS execution principles for repeatable, auditable operations.
- Detected and reported excessive permissions and orphaned accounts, reducing instances by 30% through enforcement of deprovisioning protocols.
- Managed WAF and perimeter security incidents, cutting average incident response time by 22%, and maintaining 99.9% system uptime during cyberattack events.
Security Architect
Goliath Aerospace Technology
09.2023 - 01.2024
- Conducted threat modeling to identify potential infrastructure vulnerabilities and implemented a NIST-compliant AWS security architecture using Guard Duty, WAF, VPCs, RDS, and CloudWatch, reducing incidents by 25%.
- Performed data analytics to identify policy violations, decreasing access-related security incidents by 23%.
- Directed a cyber defense team to conduct advanced penetration testing and red team exercises, uncovering and remediating 15+ vulnerabilities, strengthening the company's defense posture against targeted attacks.
- Produced threat reports correlating test findings with likely adversary objectives, ensuring actionable risk intelligence.
- Improved user provisioning/deprovisioning processes, reducing average time to remove access for terminated users to under 2 hours.
Security Engineer
Akoya LLC
01.2023 - 09.2023
- Spearheaded SOC II audit by TruSight, ensuring 100% compliance through effective communication with stakeholders and robust security controls.
- Collaborated with cross-functional teams for cloud security enablement, ensuring secure rollout of new SaaS, PaaS, and IaaS services supporting 15+ business units.
- Integrated Azure Key Vault management in cloud solutions, ensuring centralized encryption key control and minimizing unauthorized data access incidents.
- Performed user access reviews and remediation to maintain compliance with IAM and PAM policies.
- Enhanced endpoint security using EDR, MDM, and advanced firewall configurations, automating incident response workflows to improve response times by 30%.
- Developed and implemented custom bot management and API security rules, resulting in a 40% decrease in automated attack traffic and a 25% reduction in API abuse incidents.
Vulnerability Analyst
Reliance Jio
10.2020 - 12.2021
- Monitored security logs and analyzed web app vulnerabilities in hybrid environment, enabling timely incident response and targeted mitigation, lowering the threat score by 22% within 2 months.
- Automated and documented periodic access reviews, reducing manual review time by 20% using PowerShell and Python scripting.
- Co-ordinated security awareness and vendor risk programs, reducing phishing success by 20% and improving third-party security by 25%.
- Performed extensive malicious prompt injection tests on deployed AI chatbots, identifying and documenting application vulnerabilities in model interpretation across production and development environments.
- Implemented secure context boundary checks, ensuring clear separation of system and user instructions to prevent context leakage and unauthorized command execution.
- Performed application security testing on 12 live iOS Apps using SAST & DAST tools leading to 70% less security risks.
- Headed a team of 4 performing secure code reviews and regression stress tests on Yaatra.
System Administrator
Intersil Metallic Products
06.2019 - 09.2020
- Administered and maintained Windows Server and Active Directory environments, including user provisioning, group policy management, and secure role-based access control.
- Performed system and application patch management, OS updates, and software deployments to ensure systems met security and compliance requirements.
- Monitored system performance, network connectivity, and application availability, implementing proactive measures to prevent outages.
- Managed backup and restore operations, ensuring data integrity and disaster recovery readiness.
- Configured and maintained email systems, file shares, and print services, ensuring security and availability.
- Provided Tier 2/3 support, troubleshooting escalated technical issues related to hardware, operating systems, and enterprise applications.
Education
Master of Science - Cyber Security
Northeastern University
Boston, MA12.2023
Bachelor of Science - Computer Sciences
S.I.E.S GST
Mumbai03.2020
Skills
- Cybersecurity Frameworks: ISO 27001, SOC 2, NIST 800-53, NIST CSF, MITRE ATT&CK, OWASP Top 10, HIPAA, PCI-DSS, SOX
- Tools: Wireshark, Metasploit, CrowdStrike, Malwarebytes, Defender, Datadog, Zscaler, Veracode, Sentinel One, Sentinel
- Programming Languages: PowerShell, Python, SQL, HTML, CSS, Java Script, Bash, Shell Scripting
- Work Environment: JIRA, Docker, Linux, Windows, MySQL, AWS, Azure, GCP
- Core Competencies: Privileged Access Management, Regulatory Compliance & Governance, Audit & Reporting, Collaboration & Communication, Incident Response, Networking Equipment Set-up
- Certifications: CompTIA Security , IBM Certified Cyber Security Analyst Specialization, C-CA
COMMUNITY INVOLVEMENT
Computer Society of India (CSI), Joint-Secretary, 2019-07, 2020-07
- Organized and taught beginner workshops for students and people interested in technology to learn python, Mobile app development, Linux, and Hacking
CDIC, Threat Intelligence Analyst, 2024-02, 2024-12
- Participated in a special task force alongside US law enforcement and pro-bono legal teams to investigate the dark web for evidence in terrorism, child exploitation, and fraud cases, Performed targeted intelligence gathering, analysis, and reporting that supported legal investigations and intervention efforts
Timeline
Systems and Security Engineer
JPMerc and Co.
04.2024 - 08.2025
Security Architect
Goliath Aerospace Technology
09.2023 - 01.2024
Security Engineer
Akoya LLC
01.2023 - 09.2023
Vulnerability Analyst
Reliance Jio
10.2020 - 12.2021
System Administrator
Intersil Metallic Products
06.2019 - 09.2020
Master of Science - Cyber Security
Northeastern University
Bachelor of Science - Computer Sciences
S.I.E.S GST