Project Software Engineer
Resume:
Sathish Kumar First cross St. S.G playa
C.V
Raman nagar, Bangalore
Karnataka - 560093, India
Mobile - 974*******
*****.********@*****.***
Objective
Seek a challenging position that provides an environment for growth,
continuous learning and skillful application of my knowledge in the
software business of the organization.
Education
PSG College of technology
Coimbatore, India JUN 2005 - JUN 2008
B.E Computer science with CGPA#: 8.50 out of 10
Nachimuthu polytechnic college
Pollachi, India JUN 2002 - JUN 2005
Diploma in Computer Engineering - Gold medalist
Summary
. Experience of 2 years and 6 months in Juniper Networks on prototype,
design, development and maintenance of products in FreeBSD and LINUX
platforms
. Hands on with UNIX and LINUX internals and exposure to FreeBSD
. Very good understanding of LINUX TCP/IP stack, LINUX kernel and network
programming
. Excellent knowledge on system programming using C, Data structures and
algorithms
. Developed and maintained kernel and user space applications on Linux,
FreeBSD and JUNOS
. Hands on with developing multi threaded applications
. Worked on security products like SRX series service gateway for the data
center, SRX series service gateway for branch
. Very Good knowledge of CVS and SVN source control versions
Professional Experience
Software Engineer
Juniper Networks - Bangalore, India JUN 2008 -
Present
Network based PDF decoder
. Nowadays the most common Web-based attacks are related to malicious PDF
activity, this attack consists of attempts by attackers to distribute
malicious PDF content to victims through the Web. This attack is assumed
to be popular due to the common use and distribution of PDF documents on
the Web. In addition, browsers can be set up to automatically render a
PDF document
. In this project a new network based nested decoder added into Juniper IDP
detector to detect and block PDF based file format vulnerabilities
My contributions and Responsibilities
. Own the design and implementation of PDF decoder solution for Juniper SRX
series gateways
. Understand the market requirement and competition
. Understand different deployment scenarios from which drive product
features and roadmap
. Collected and studied various PDF reader based malwares from malware
domain list
. Prototyped a solution and verified the functionality and performance with
collected PCACPS
. Implemented an efficient algorithm to decode PDF files on the fly with
50% less memory and processing power compared to existing proxy based
Antivirus solutions.
Juniper IDP Signature Language enhancement
. Juniper Intrusion detection and prevention system detects various attacks
based on signatures defined by security team. In this project, existing
signature language enhanced to avoid false positives and simplified
signature definition.
. Newly added features,
. Bit level pattern matching using bitmask, useful in parsing binary
protocols and document formats
. Match within Same context Instance, match different patterns in same
context instance
. Ordered Constraint, ordered match of different patterns
. Within Bytes Constraint, look for specific pattern with in specific bytes
range
. Within packets constraint, look for patterns with in specific packets
range
. Context length check
. Existing signature language of Juniper IDP allows checks on various
protocol header fields for the IP, TCP, UDP and ICMP protocols. In
addition to that a new "length" construct within the "context-check"
construct will cause the IDP engine to perform comparisons against the
context length, after the DFA pattern has been matched.
My contributions and Responsibilities
. Own the design and implementation of signature language enhancement
solution for Juniper SRX series gateways
. Designed and prototyped a solution and with a help of security team
verified it against various accuracy tests
. Designed solution to support both software DFA pattern matching and
hardware pattern matching
. Received J-Champ award for the generic design and implementation of this
project
Juniper IDP on SRX1400 platform
. SRX1400 is an entry level data center services platform. As part of this
project Intrusion detection functionality enabled in SRX1400
My contributions and Responsibilities
. Took ownership and complete responsibility of this project
. Worked with platform and flow team to understand the basic infrastructure
. Enabled complete IDP functionality in this new platform, this project is
now at release stage
CLI enhancements for J-web
. J-web is Juniper's Web interface for branch SRX series gateways. As part
of this project we increased IDP's J-web page performance and user-
frendliness
My contributions and Responsibilities
. Worked with customer escalations team and UI team to understand the
current problem
. Based on customer feedback enhanced existing IDP related JUNOS commands
. Because of caching, and other enhancements made IDP related CLI commands
20% faster than before and increased J-Web responsiveness (one of the
main customer requirement)
Intern in software development
Juniper Networks - Bangalore, India JAN 2008 -
JUN 2008
. Developed Juniper Web interface for low end J-2320 routers.
My contributions and Responsibilities
. Designed and developed J-web pages using ExtJS - Extended Java script and
AJAX
. Exposure to JUNOS internals and JUNOS Scripts
. During this internship period, learned basic routing, firewall and
intrusion detection functionality
Awards and honors
. Received "J-champ" award from Juniper Networks, Inc for generic design
and implementation of "Signature Language enhancement" project
. Received best technical paper and innovative idea award from SLT tech
summit 2009 Juniper Networks, Inc for my work on "Light weight virtual
intrusion detection system for cloud computing environment"
. Developed "Network Behavior analysis algorithm for detecting DDOS
attacks" and presented at Juniper Networks, Inc SLT tech talk 2009
Contact this candidate