<<<<<<< HEAD Saketh Kancheti's Portfolio
======= Portfolio

Saketh Kancheti's Portfolio

About

Security Engineer with 3+ years of experience in the operations, governance, penetration testing and OSINT threat intelligence of enterprise security controls such as SIEM, SOAR, EDR, IAM, cloud, and vulnerability management platforms. Have a record of accomplishment in defining and quantifying security KPIs, enabling continuous improvement and leading complex security initiatives in both cloud and on premises infrastructures from conception to delivery.

Experience

Professional roles and contributions.

Security Engineer

Oct 2025 – Present

NKC Health

  • Investigated an average of 30 emails daily using tools like Mimecast and Varonis SlashNext to authenticate frameworks (SPF, DMARC, DKIM) and determine phishing attacks to prevent enterprise account compromise.
  • Secured agentic AI systems by leveraging Varonis DSPM to track data usage, classify sensitive datasets, and audit access patterns, enabling detection of unauthorized data interactions and strengthening AI governance controls.
  • Performed proactive threat hunting through DNS enumeration and attack surface analysis, identifying shadow IT infrastructure, stale DNS records, and unmanaged externally reachable assets. Produced a master document along with a playbook for remediation and policy for governance, ensuring compliance with NIST and HIPAA frameworks.
  • Configure and monitor AWS security services, including GuardDuty, CloudTrail, Security Hub, Config, and CloudWatch, enabling real-time detection of cloud threats and reducing mean time to detect incidents by 40%.
  • Engaged with third-party vendors and cross-functional teams to conduct cybersecurity risk assessments and maintain risk registers. Led threat modeling using the STRIDE model and documented executive and technical documentation.

Previous Role

Jun 2020 – Jun 2023

Accenture

  • Managed enterprise vulnerability risk lifecycle using Rapid7 InsightVM, analyzing 2,000+ assets and maintaining centralized risk registers and creating dashboards to monitor risk metrics and communicate KPIs to leadership.
  • Performed root cause analysis on security incidents using Splunk SIEM, CrowdStrike Falcon, and Wireshark packet analysis, identifying initial compromise vectors and enabling detection tuning that reduced false positives by 30%.
  • Authored post-incident documentation and TTP playbooks that improved the Incident Response team's response time by 10%. Supported deployment for Infrastructure as Code (IaC) using Terraform for cloud resources (Entra ID, Sentinel).
  • Developed a DevSecOps automation pipeline using Detection-as-Code in Python to synchronize SIEM alerts with real-time threat intelligence feeds. Integrated security checks into the CI/CD pipeline using SAST and DAST tools.
  • Conducted an organization-wide phishing awareness campaign by developing custom landing pages and banners, resulting in a measurable increase in employee-reported suspicious emails.

Projects

A few things I’ve built or worked on.

Ripple Consensus Security Analysis

Click to flip

Analyzed the security properties of Ripple's federated consensus protocol, identifying trust model weaknesses, conditions for ledger divergence, and gaps between documented and formally proven guarantees.

Tools: Federated Byzantine Agreement · Distributed Systems Theory · Cryptographic Protocol Analysis

Project Two

Click to flip

Short description of what you did. Replace with real details.

Tools: Add tools and technologies used

Project Three

Click to flip

Short description of what you did. Add links later if you like.

Tools: Add tools and technologies used

Contact

Get in touch — email, socials, or a contact form.

Email GitHub LinkedIn
>>>>>>> 7a5e965c38a8b9d32c04c8aa8a7169a45beae88a