Mohit D. - Senior Security Technologist

Go to Website

Hyderabad, India

Experience

Apr 2023 - Present

2 years 8 months

Hyderabad, India

Senior Security Technologist

Uber Technologies

Built custom detection rules for LLM-specific threats including prompt injection defense
Conducted AI threat modeling by integrating LLM observability and injection protection
Automated incident investigations using MITRE ATLAS and data science techniques
Integrated OpenAI APIs and LangChain for efficient mass production of security automation
Performed big data analytics exercises to identify weaknesses and loopholes
Developed malware analysis and detection rules within Uber’s security platform
Guided SOC teams in exploit analysis and incident response
Utilized Microsoft KQL, Elasticsearch, AWS, GCP and OSQuery for threat hunting

Oct 2021 - Apr 2023

1 year 7 months

Hyderabad, India

Security Engineer II (DSR Hunt Team)

Microsoft

Detected, inspected and hunted threats in Microsoft environment
Developed F.R.I.D.A.Y Jupyter Notebooks to automate daily SOC incidents
Reverse engineered procedures to correlate data streams and identify threats
Conducted source code and vulnerability analysis to strengthen detection
Created YARA and SIGMA rules to emulate threats and detect credential misuse
Performed malware reverse engineering and red team emulation
Developed REST API framework and detection rules for macOS threats
Worked on Sentinel and Microsoft Defender for Endpoint to automate threat detection
Guided SOC teams in web and mobile application security investigations

Jun 2019 - Oct 2021

2 years 5 months

Gurugram, India

Threat Detection Engineering Security Engineer II

Expedia Inc

Managed end-to-end SOC incident response, root cause analysis, containment and remediation
Built applications, data logs and visualization modules for SOC investigations
Wrote tools, programs and scripts for malware log analysis and threat automation
Created "Malwinx", a web application for Win32 API indexing and malware analysis
Developed "Gladiator", a tool for email investigation and structured email data analysis
Wrote resilient automation scripts and detection rules for Microsoft Defender EDR
Conducted malware analysis on Windows, Linux and macOS
Authoried YARA and Sigma rules for active threat hunting
Wrote signatures and rules to detect web application anomalies

Sep 2017 - Jun 2019

1 year 10 months

Gurugram, India

Security Engineer

Expedia Inc

Performed source code analysis using Fortify and manual debugging
Conducted penetration testing on mobile and web platforms to identify vulnerabilities

Jun 2016 - Sep 2017

1 year 4 months

Gurugram, India

Information Security Consultant

Growell HR Solution

Investigated exploits and software bugs in Linux and Windows applications
Wrote debugger and fuzzing automation programs
Performed vulnerability assessments and penetration testing on Linux and Windows networks
Analyzed malware and created effective detection rules
Researched and analyzed AV/EDR evasion techniques used in APT campaigns

Dec 2015 - Jun 2016

7 months

Gurugram, India

Senior Analyst

PricewaterhouseCoopers

Built social media intelligence gathering modules for profiling individuals
Performed pentesting to secure client Active Directory infrastructure

Mar 2015 - Dec 2015

10 months

Gurugram, India

Malware Analyst

Online Guard

Analyzed and reverse engineered Android and Windows malware
Wrote YARA rules and scripts to track C2 server communication
Developed detection and remediation programs for malware

Jul 2014 - Sep 2014

3 months

Gurugram, India

Software Engineer

Algolabs

Developed REST API services for iOS and Android applications
Performed vulnerability assessments and penetration testing on mobile and web applications
Created infrastructure for mobile and web applications on AWS and GCP

Summary

Has an experience of 11 years in different domains of Cybersecurity with a philosophy that anything can be scripted, automated, and debugged. Implemented security and codes in an efficient and proficient manner for different organizations.