Roshini Illankoon
Gampaha
Summary
With over two years of hands-on experience in Security Operations, Roshini is a dedicated cybersecurity professional specializing in real-time monitoring, incident response, threat analysis, mitigation, and remediation within SOC environments. Certified with SC-900 and SC-200, her expertise spans endpoint security, SIEM technologies, and the development and optimization of use cases and correlation rule tuning. Currently serving as a Threat Detection and Response (TDR) Security Analyst within EY GDS's Consultancy Service Line practice, she focuses on Cyber Security Competency, leveraging her BSc (Hons) in Information Technology with a specialization in Cyber Security to address complex digital challenges and enhance organizational resilience.
Overview
4
4
years of professional experience
1
1
Certification
Work History
Security Analyst II
EY GDS (CS) Lanka (Private) Limited
03.2024 - Current
- SOC Monitoring: Monitored SIEM systems to detect threats and anomalies, prioritizing critical alerts for swift action.
- Incident Response: Investigated security incidents, analyzed root causes for in-depth analysis to ensure rapid containment and resolution.
- Reporting and Documentation: Prepared security reports, including business reviews, documenting findings, playbook creation, and recommendations for continuous security improvement.
- Incident Mitigation: Applied containment measures, executed remediation strategies, and developed policy updates to reduce risk exposure.
- SIEM Use Case Development: Created and validated security use cases, enhancing detection accuracy and security posture.
- Correlation Search Tuning: Optimized correlation searches to improve detection accuracy and reduce false positives.
- Collaboration: Worked with cross-functional teams on tool migrations, data integration, and stakeholder communication regarding threat landscapes and incident updates.
IT Security Analyst
Amana Bank PLC
12.2022 - 02.2024
- Real-time Monitoring: Monitored and analyzed real-time events, carrying out security event monitoring and incident response activities according to their severity.
- Incident Investigation: Collected necessary data for conducting investigations into information security incidents. Ensured incidents and requests were handled according to agreed procedures.
- Security Appliance Management: Managed various security appliances, including WAF, Endpoint security, Mail gateways, and VPN.
- Networking Knowledge: Applied understanding of networking principles (OSI Model, routing, TCP/IP) to security operations.
- Stakeholder Communication: Maintained regular, clear, and diligent communications with stakeholders and senior team members.
- Access Control: Assisted users in defining their access rights and privileges, administering logical access controls and security systems.
- ITIL Processes: Adhered to ITIL processes such as Change Management, Incident Management, and Problem Management.
- Documentation: Created and maintained security records and documentation.
- Knowledge Sharing: Conducted IT security-related knowledge-sharing sessions for IT staff within the department.
Undergraduate Trainee - Systems Engineer
IFS R&D International (Pvt) Ltd
10.2021 - 10.2022
- Ticketing System Management: Worked with ServiceNow ticketing system.
- Software Support: Reviewed new software requests and resolved software-related issues.
- Queue Management: Managed an incoming queue of varying case types within SLA and OLA targets.
- Active Directory Management: Managed security and policy settings within Active Directory.
- Technical Troubleshooting: Identified hardware and software solutions, resolving technical issues effectively.
- Procurement Support: Created purchase orders and gathered quotations for new software.
- Flexible Work Hours: Demonstrated ability to work flexible hours to accommodate the global nature of the role and diverse time zones.
- Application Whitelisting: Implemented and managed application whitelisting processes to enhance security with organizational standards.
- Software Optimization: Led software removal initiatives to streamline system performance, troubleshoot issues, and optimize software configurations.
Education
Bachelor of Science - Cyber Security
Sri Lanka Institute of Information Technology
Malabe, Sri Lanka03-2024
Skills
- Intrusion detection
- Endpoint security
- Identity and Access management
- Risk mitigation
- Incident response
- Critical thinking skills
- Analytical skills
- Problem-solving aptitude
- Task prioritization and focus
- Time management abilities
- Organizational skills
- Resilience under pressure
- Security information and event management
- Knowledge-sharing abilities
Certification
- SC-200:Microsoft Certified: Security Operations Analyst Associate
- SC-900:Microsoft Certified: Security, Compliance, and Identity Fundamentals
- Certificate of Achievement Network Defense Essentials (NDE - EC-Council)
- MITRE ATT&CK Defender™ (MAD) ATT&CK® Fundamentals Badge Training
- NSE 1,2&3 for Network Security Associate
- ITIL V4 Foundation training
Activities And Hobbies
- Professional Development - Pursuing cyber security related certifications to enhance skill sets.
- Physical Wellness - Regularly engaging in physical activities like running or gym workouts. Participate and won championships at school level sports such as netball and basketball.
- Leadership Roles - Held leadership positions as a student representative at the university.
- Outdoor Activities - Engage in outdoor activities such as hiking and camping.
- Arts and Creativity - Served as a Euphonium player in the senior brass band at school. Achieved first place at the national level as part of the top orchestra school team in the country.
Timeline
Security Analyst II
EY GDS (CS) Lanka (Private) Limited
03.2024 - Current
IT Security Analyst
Amana Bank PLC
12.2022 - 02.2024
Undergraduate Trainee - Systems Engineer
IFS R&D International (Pvt) Ltd
10.2021 - 10.2022
Bachelor of Science - Cyber Security
Sri Lanka Institute of Information Technology
Similar Profiles
Sasikumar UdayapparasuSasikumar Udayapparasu
Audit Senior 2 Assurance at EY GDS (CS) Lanka (Private) LimitedAudit Senior 2 Assurance at EY GDS (CS) Lanka (Private) Limited
Kyla VillanuevaKyla Villanueva
Tax Associate at EY GDS (CS) Philippines, Inc.Tax Associate at EY GDS (CS) Philippines, Inc.
Abigael CleofeAbigael Cleofe
Senior Audit Associate at EY GDS (CS) PHILIPPINES, INC.Senior Audit Associate at EY GDS (CS) PHILIPPINES, INC.
JANITH BANDARA DISSANAYAKEJANITH BANDARA DISSANAYAKE
Factory Manager at Carbon Activated Corporation Lanka (Pvt) LtdFactory Manager at Carbon Activated Corporation Lanka (Pvt) Ltd
Tharaka BalasooriyaTharaka Balasooriya
Chief Manager I&SE at Arvind LimitedChief Manager I&SE at Arvind Limited