Jyoti Bilgoji

Senior Security Lead Consultant @Ericsson

Security AnalystConsultingEngineerIT

Jyoti Bilgoji is a seasoned Senior Security Lead Consultant at Ericsson, where she spearheads innovative cybersecurity strategies to protect critical telecommunications infrastructure. With over a decade of experience in the industry, Jyoti has a proven track record of implementing robust security frameworks that enhance resilience against emerging threats. Her leadership in cross-functional teams has driven significant improvements in risk management and compliance, earning her recognition as a thought leader in cybersecurity. Jyoti is passionate about mentoring the next generation of security professionals and is an active advocate for diversity and inclusion in the tech industry.

People also viewed

Dominique Brees

Lecturer @Ugent

Marketing Analytics ManagerCMOC-level Executive+7 tags

CIO and CTO @Assurelytics.tech

ITData EntryData Entry Specialist+14 tags

PR and resourcing senior @Refah Çocuk Derneği NGO

Partnerships ManagerGovernment & Public ServicesBusiness Development Manager+2 tags

General Practitioner

Data EntryCall CenterFinance+6 tags

People Specialist

Presentation DesignerHR GeneralistUX/UI Designer+14 tags

Associate @Wal-Mart

CEO @Teleperformance German Speaking Markets

Stephanie Kolding

Business Development Representative @Zebra Technologies

TranslatorCustomer ServiceConsulting+8 tags

Feedback from Jyoti’s ex-colleagues

user-post-1

user-post-2

user-post-3

Keep in touch with meI'm using Intch to connect with new people. Use this link to open chat with me via Intch app

Work Background

Senior Security Lead Consultant

NuSummitSenior Security Lead Consultant

Jul. 2023Bengaluru, Karnataka, India•Conducting Vulnerability Assessment & Penetration Testing of Web Applications, networking devices, thick client, Mobile Android & API using manual techniques and automated tools. •Providing recommendations for mitigating found vulnerabilities, perform different types of security testing, and creating testing methodologies and questionnaire documents before Penetration Testing. •Leading a 10-member VAPT Security Team, develop Black Box Security test environments, and exploit vulnerabilities while performing secondary exploitation. •Preparing and submitting comprehensive reports, engage Nessus and retina scans, and eliminate critical and high vulnerabilities. •Conducting Application walkthroughs, analyzing reports scanned by web application scanning tools, and perform Web Application Penetration Testing following OWASP guidelines. •Discovering Live IPs, demonstrating extensive knowledge of HTTP Methods and status codes, and utilize Kali Linux for security assessments. •Analyzing automated scanner reports, create POC exploits, and handle vulnerability reported by external security researchers. •Front facing to handle vulnerability reported by external security researcher from end-to-end life cycle, and utilize various automated tools like Netsparker Enterprise & Standard, Burp Suite Professional, Tenable Nessus Security Center & WAS, and IBM Appscan Standard. •Perform Vulnerability Scan and Web Application Scan using Tenable Nessus Security Center, deploy tenable virtual scanners in cloud and on premises, and configure the scanners for accurate scans. •Check if any Zero-day exploit test exists or reported during the client engagements. •Utilize various active directory penetration testing tools and actively participate in the Technical Interview Panel. •Allocate appropriate work & resource allocation to team members as per the skill & availability. •Technical lead for thick client penetration testing practice.

Specialist Security Analyst

EricssonSpecialist Security Analyst

Feb. 2020 - Jul. 2023Bengaluru, Karnataka•Perform Network Infra, Web Application Penetration testing, thick client and cloud assessments Security tests using various automatic tools. •Web Application Penetration Testing of different type of Clients by following OWASP guidelines and expertise in different type of web application security auditing tools like Burp Suite. •Thick client, cloud & network VAPT. •Discover Live IPs within the organization & perform vulnerability assessment •Having good knowledge in HTTP Methods and HTTP status code. •Extensive use of Kali Linux to assess the security of developed applications. •Analyzing the automated scanner’s report to avoid “False Positive” Vulnerabilities. •Creating POC exploit for observed vulnerability. • Follow up with stakeholders on remediation plan •Handling Source Code Review security assessments using Microfocus Fortify. •Front facing to handle vulnerability reported by external security researcher from end to end life cycle. •Well worse using various automated tools like Netsparker Enterprise & Standard, Burp Suite Professional, Tenable Nessus Security Center & WAS, IBM Appscan Standard etc. • Perform Vulnerability Scan and Web Application Scan using Tenable Nessus Security Center (SC) • Deploying the Tenable Nessus virtual scanners in cloud and on premises • Configuring the scanners and ensure they communicate with Tenable cloud • Setting up service accounts to perform authenticated scans. • Work on Microsoft Defender for Endpoint for identifying advanced threats if any in the enterprise network in coordination with relevant teams. • Testing the service account to ensure the scans are accurate • Perform Static Application Security Testing using various tools.

Senior Engineer

Happiest Minds TechnologiesSenior Engineer

Jul. 2015 - Feb. 2020Bangalore• Discover Live IPs within the organization • Perform Network Infra, and Web Application Penetration and Security tests using various automatic tools. • Web Application Penetration Testing of different type of Clients by following OWASP guidelines and expertise in different type of web application security auditing tools like Burp Suite. • Having good knowledge in HTTP Methods and HTTP status code. • Preparing report for the application security testing. • Extensive use of Kali Linux to assess the security of developed applications. • Analyzing the automated scanner’s report to avoid “False Positive” Vulnerabilities. • Creating POC exploit for observed vulnerability. • Well demonstrated knowledge of implementation of in premises of endpoint security tool Carbon Black(Bit9). • Create rules, dashboard, policies and all other informational content based on use cases in Carbon Black(Bit9) servers. • Perform performance maintenance and troubleshooting of Carbon Black(Bit9) endpoint server. • Perform all administration, management, configuration, testing, and integration tasks related to the Client Novell Sentinel (SIEM) & McAfee Nitro system focusing primarily on content development, reporting, and metrics. • Monitor Client events for malicious traffic and monitor alerts which are triggered for the client • Follow-up with the SOC Analyst for open tickets and follow-up with vendors for open issues. • Monitor dashboards of SIEM as well Security Devices to keep track of security incidents. • Ensuring health of SIEM ESM, Collectors and Connectors. • Integration of new event sources, collector managers with SIEM Solution • Create rules, filters, dashboard, queries, trends and all other informational content based on use cases • Develop, implement, maintain and execute standard content development practices for the Client Novell Sentinel system infrastructure. • Fine tune Novell Sentinel(SIEM) Solution to reduce false alerts, improve the performance.

Team Lead- Information Security

TESCO HSCTeam Lead- Information Security

Apr. 2014 - Jun. 2015Bengaluru Area, India•Conduct the information security risk assessment program. •Coordinate with technical teams on the information security incidents. •Provide periodic reporting on information security issues. •Computer Forensic Investigation and other technical system related investigation. •And provide a consistent, standardized and repeatable method for the response to security alerts generated by DLP (Websense) solution. •Coordinate with the colleagues when alert is of HIGH Severity and understand the intension behind the act and recover the data. Steps mentioned below if alerted. •Extract alerts on weekly basis from Websense DLP tool. •Analyze alerts generated by the Websense DLP program. •Review BU SPOC response on the severity of the alert generated. •Fine tuning the Websense DLP Rules if the alert is false positive. •Notify Information Security Team for investigation. •Receive investigation results from Information Security Team. •Knowledge of Arc Sight ESM, logger, connector appliances. •Follow detailed operational process and procedures to appropriately analyze, escalate, and assist in remediation of critical information security incidents. •Experience with developing use cases, analyzing security event data, creating filters, event correlation and tuning Arc Sight SIEM. •Identify vulnerabilities, recommend corrective measures and ensure the adequacy of existing information security controls.

IT Security Analyst

IBMIT Security Analyst

May. 2010 - Apr. 2014Bengaluru EGLWorking on differents platforms like Windows, Linux health checking and vulnerability management. Issue management.

Requests

Touchpoint image

6Applied by 1

Looking for a Job

Senior Security Lead Consultant

Intch is a Professional Networking App for the Future of Work

300k+ people

130+ countries

AI matching

Get Intch if you'd like to

Get Recommended to New Customers

Connect with Like-Minded People

Find a side project

Reach Top Niche Experts

Find Jobs on a Hidden Market

Find a Perfect Co-Founder

Find a Trusted Mentor

Hire Top Global Professionals

See more people like Jyoti on Intch

IT

1023999 people

15

Business process lead @ Tata consultancy Services

212

AI Marketing Automation and Digital Strategist @ GV Shri

22

Founder @ Accession

ITSecurity Analyst

56345 people

18

Lead Security Engineer @ Delta Airlines

16

Penetration tester @ Red Piranha Pvt Ltd

15

Sr Technical Specialist @ Colgate Global Business Solutions