Vignesh R•••

About

On the record

Security Engineer with professional experience securing modern enterprise environments using the Palo Alto Networks suite, specializing in threat detection, automation, and network security across endpoints, networks, and cloud. I work across all layers of security operations, actively managing and delivering: Cortex XSIAM for centralized SecOps — building playbooks, writing XQL queries, enriching incidents with Threat Intelligence (TIM), analyzing user behavior via UEBA, and discovering unmanaged assets using Attack Surface Management (ASM). Cortex XDR for endpoint protection, behavioral analytics, root cause analysis, and remote response actions that reduce dwell time and improve containment. Palo Alto NGFWs — enforcing App-ID-based policies, configuring NAT and VPNs, managing firewalls, and streaming telemetry into XSIAM for correlated analysis. Prisma Access — securing remote networks and mobile users via GlobalProtect, enabling Zero Trust Network Access with Cloud Identity Engine (CIE) to enforce identity- and device-aware policies across distributed environments. Prisma SD-WAN for improving application performance and optimizing traffic flows across branch locations using intelligent path selection and policy-based routing. Strong knowledge of networking and security fundamentals — TCP/IP, IPSec, SSL/TLS, NAT, DNS, ACLs, routing protocols, and secure access protocols (SSH, FTP, RDP, SMTP, etc.). In my current role, I've designed and implemented real-world detection and response workflows — including threat correlation, IOC blocking, vulnerability mitigation (CVE), malicious URL filtering, and automated endpoint isolation — to reduce risk and improve SOC efficiency.