Malleswar Reddy Yerabolu is a cybersecurity engineer specializing in threat and vulnerability management, application security, and security operations. He brings five-plus years in vulnerability management and five-plus years in security governance and risk, with hands-on experience across enterprise, government, and financial environments. His core strengths include risk assessment, incident response, security architecture, compliance, and secure configuration management, supported by deep tooling expertise and disciplined, metrics-driven execution.

Currently a Sr. Security Engineer (Vulnerability Management) at Wisegen Inc. supporting NC DHHS, Malleswar leads remediation programs using Rapid7 Nexpose/InsightVM, defines strategy and roadmaps, authors playbooks and runbooks, and coordinates remediation with stakeholders and IR teams. He integrates threat intelligence into hunt activities, tunes Splunk Enterprise Security (correlation searches, key indicators, risk scoring), supports RSA Archer for integrated risk, and drives enterprise patching across Windows and Linux—validating fixes, reducing exposure, and improving MTTR. His work spans web application penetration testing aligned to OWASP Top 10, QRadar-based monitoring, and DLP governance.
Previously, as Sr. Cyber Security Engineer with NYC OTI (Cyber Command), he drove the end-to-end vulnerability lifecycle using Qualys VMDR, produced executive dashboards and program metrics, tuned Symantec DLP, automated Azure tasks with PowerShell/Runbooks, and operated in SOC contexts with QRadar and Splunk. Earlier, at IHG Hotels & Resorts, he led vulnerability operations with Tenable Nessus/IO, managed Palo Alto firewalls, Blue Coat proxies, Radware AppWall WAF, and strengthened SIEM/DLP workflows and ServiceNow/Jira processes. At Bank of America, he implemented QRadar SIEM integrations, enhanced McAfee ePO, supported audits, and advanced compliance against NIST SP 800-53, SOX, HIPAA/HITECH, PCI DSS, and privacy requirements through automation (Python, Bash).
Malleswar’s toolset spans Qualys, Tenable, Rapid7, Nessus, Nmap, Burp, AppScan, Veracode, ZAP, FireEye (EX/NX/HX), LogRhythm, CyberArk, and packet analysis (Wireshark, Tcpdump). He is fluent in Python, Shell, Perl, Java, C#, XML, and works across Windows, Linux/UNIX, with database experience in Oracle, SQL Server, Sybase. Framework familiarity includes NIST SP 800-171/53A, ISO 27001/31000, HIPAA/HITRUST, PCI DSS, CVE/SANS 25.
He holds an M.S. in Computer Engineering (California State University, 2017) and certifications CISM, CISA, Qualys Certified Vulnerability Management Specialist, and Associate CISO (EC-Council). Malleswar is known for turning complex security findings into prioritized, risk-based actions that measurably reduce exposure.