Security Access Control

PARUL SHARMA

848-***-**** ***********@***.*** www.linkedin.com/in/paruldecoded paruldecoded.carbonmade.com

KEY SKILLS

Access Control, Application Security, AWS, Burp Suite, Carbon Black, Digital Forensics, EnCase,

Endpoint Security, Firewall, IDS, IPS, Incident Response, Jira, Malware Analysis, Metasploit, Network Security, Nessus, OWASP, Penetration Testing, SEIM, Splunk, TCP/IP, Vulnerability Analysis, Wireshark, Zap

EDUCATION

New York University, MS Cyber Security

New York City, NY September 2015 - May 2017

Tilak Maharashtra Vidyapeeth, Post Graduate Diploma in Cyber Security

Pune, India August 2013 - May 2014

Lovely Professional University, Bachelors in Computer Applications

Jalandhar, India August 2010 - May 2013

WORK EXPERIENCE

BLOOMBERG BNA, Threat Response Intern

Arlington, VA June 2016 - August 2016

Pioneered a Mobile Forensics Deployment Program: Identified the requirements for a mobile forensics capability and evaluated different tools and techniques to recommend the best fit for the organization. Acquired and analyzed digital evidence from iOS, Android and Windows based mobile devices.

Strengthened the Incident Response Operations: Monitored and analyzed system logs from routers, switches and network devices to support threat detection and incident investigations. Conducted endpoint investigations to capture and neutralize threat activities. Responded to security alerts, created and managed tickets.

SEDULITY GROUPS, Cyber Security Research Associate

New Delhi, India August 2013 - May 2015

Contributed to the Security of Next Generation Internet Protocol: Discovered vulnerabilities in an IPv6 based addressing scheme - Stateless Address Auto Configuration (SLAAC). Devised different attack vectors to exploit both IPv6 & IPv4 networks using vulnerabilities in SLAAC. Recommended security policies to reduce attack surface. Publicized my research work by presenting it at a national IT conference and publishing it in an international scientific journal.

Bolstered Projects in IT Security Auditing: Reviewed operating system access controls, performed security vulnerability scans and hardened the security of end systems. Configured central security servers for content filtering and access control.

MAJOR PROJECTS

Windows Based Anti-Forensics: Developed Windows based Anti-Forensics tool in Python. Made the recovery of sensitive data impossible. Generated fake digital footprints to mystify forensic investigations.

Vulnerability Assessment for Mobile Platforms: Analyzed Android Media Server and exploited vulnerabilities in LibStateFright. Discovered previously unknown attack vectors. Proposed mitigation techniques and patches to prevail over stage-fright.

Internet of Things – Threat Modelling: Analyzed the security of different Smart Lighting Frameworks. Notified different vendors regarding asset risk. Suggested defenses to patch the existing vulnerabilities.

Implementation of Next-Gen Firewall: Implemented Next-Gen Firewall completely on an Open Source Platform. Used Snort to perform real time traffic analysis and packet logging. Defined firewall rules using IP Tables.

CERTIFICATIONS

Incident Response & Advanced Forensics Cybrary Certified, 2017

Certified Cyber Security Professional (CCSP) Sedulity Certified, 2014

Contact this candidate