Manas Gande

Manas Gande

Security Engineer · Threat Detection & Response

I build high-fidelity detections, automate security workflows, and use AI to accelerate response. Currently a Security Engineer at GitHub.

✉️ Email GitHub GitHub LinkedIn LinkedIn

👋 About Me

Hi, I'm Manas — a Security Engineer specializing in Threat Detection and Response, adversarial research, and security automation. I design and build scalable detection pipelines that combine telemetry, analytics, and automation to deliver precise, high-fidelity detections.

My work centers on developing detections, building resilient detection architectures, integrating AI into security workflows, and engineering automations that reduce mean time to respond and eliminate manual investigation overhead. I've led initiatives to build KQL-based detection frameworks, create AI-assisted alert analysis and remediation flows, and drive Purple Team exercises to enhance coverage and detection accuracy.

I'm deeply passionate about transforming detection engineering into a data-driven, automated, and adaptive discipline, where security systems not only detect threats — but continuously learn and evolve from them.

🎓 Education

University of California, Berkeley

Master of Information and Cybersecurity (MICS)

GPA: 4.0
🐻
2021 - 2022

Key Coursework:

Applied Cryptography Network Security Privacy Engineering Digital Forensics

Shiv Nadar University

Bachelors in Electronics and Communication Engineering

GPA: 3.2
🏛️
2014 - 2018

Key Areas:

Data Structures Programming Communication Systems Hardware Engineering

🛠️ Skills

Programming

Python PowerShell Bash SPL (Splunk) KQL (Microsoft) XQL (Palo Alto)

Platforms

Splunk Microsoft Sentinel IBM QRadar CrowdStrike Cortex XDR Microsoft Defender Symantec Tines Azure Logic Apps Terraform Netskope Ironscales Proofpoint Azure Cisco ASA

Languages

English Hindi Punjabi

🧑🏻‍💻 Experience

GitHub

May 2024 – Present
Security Engineer III
  • Built a Kusto detection pipeline for Azure Data Explorer.
  • Led OKRs for detection building and sprint execution.
  • AI-driven automations for remediation and detection-as-code generation.
  • Purple Team activities and regular threat hunting.
  • Splunk dashboards for data health and resource monitoring.

First Quality Enterprises

Apr 2021 – May 2024
Deputy SOC Manager
  • Owner of Incident Response Plan & SOC processes.
  • Led escalations, automation, rule tuning, and Purple Team efforts.
  • Revamped SOC metrics dashboards and reporting.
Senior Cybersecurity Analyst
  • Investigated and remediated security incidents across various platforms.
  • SOAR playbooks & scripts with up to 95% time reduction for select use cases.
  • EDR scripting, proactive hunting, and ATT&CK mapping.
  • SIEM migration from QRadar to Microsoft Sentinel.

M&T Bank

Mar 2020 – Apr 2021
Cybersecurity Operations Defense Analyst II
  • Investigated incidents across QRadar, Exabeam, and Symantec DLP.
  • Automations for compromised credential workflows (≈90% faster).
  • Phishing classification and network block automations.

PNB Housing Finance

May 2018 – Dec 2019
Assistant Manager, IT Security
Management Trainee, IT Security
  • Built the Security Operations Centre; deployed DLP & full disk encryption.
  • Managed AIP, Cisco ASA, SEP; coordinated external audits.
  • PowerShell/Python automations for operational efficiency.

🔧 Highlighted Projects

Kusto Detection Pipeline

Designed and implemented a KQL-based detection framework using the Kusto Python SDK to run and monitor detections directly against data on Azure Kusto Clusters

AI x SecOps

Integrated GitHub Copilot and Tines for alert summarization, enrichment, and detection-as-code generation.

MITRE ATT&CK Alignment

Mapped rules to ATT&CK, ran adversary simulations, and Purple Team exercises based on MITRE tactics and techniques

🏅 Certifications

CISSP (2024) CompTIA Security+ (2020–2023)