Post Job Free
Sign in

Information Security Engineer

Location:
Sunnyvale, CA
Posted:
October 16, 2017

Contact this candidate

Resume:

Professional Summary:

*+ years of IT Security experience. Over 4+ years of Information Security Experience. Collaborated and lead individuals, large-scale Security projects with varying level of in-depth configuration, analysis, troubleshooting, testing, remediation, bug submissions, and by providing solutions.

Professional Experience:

1.Nominum on Contract Xoriant Security Engineer Sep 17 – Present.

Became the first Security Engineer to do risk assessment and check network readiness to scan the vulnerabilities

Tested different vendor products like Rapid7, Qualys, and Nessus, conducted demo and developed a proposal to implement a scanning tool using scanners and agents to scan the entire organization.

Worked and analyzed the incident response, policy compliance, file integrity monitoring, endpoint protection tools.

2.Apple on Contract Aumkaara Information Security Engineer May 16 – Apr 17

As part of Infosec Logging Team, handled below targets and tasks in PCI Host not Logging Project.

Lead the Host not logging project, PCI Auditing and individuals.

Installed, deployed Splunk indexers and forwarders to test that the logs are sent to Splunk.

Used API Programming to do big data analysis and to find the flaws in the python code. To overcome the problems in the code, designed Ticket Creation and Escalation Automation to reduce false positives and to increase resilience and productivity in the ticketing process.

Worked in ISO27000, PCI, WEBTRUST Security Compliance Standards and frameworks.

Tested and Implemented processes, controls on Qualys Vulnerability Scans and Patch Management. This helped to ensure the source of truth when handling and testing vulnerabilities.

3.Apple on Contract Advantis Global Information Security Engineer Dec 14 – Mar 16

As part of Vulnerability Management Team, handled multiple projects and resolved vulnerabilities,

Strong skills in evaluating and testing networking, system, web application vulnerabilities using Burp, Nmap, Curl, Qualys. Took Initiative in the team to track and remediate the vulnerabilities.

As a lead in Qualys Web Application Scanning (WAS) project, developed processes, procedures, reduced vulnerability false positives, tested and analyzed Penetration Testing activities on OWASP vulnerabilities. Designed WAS Authentication Automation to increase the application authentication level and reporting methods.

Brought in new method to efficiently handle Patch Management using Qualys Reporting.

Used Splunk search queries to accurately analyze and do reporting on the vulnerabilities.

Worked in Information Security Product Review and PCI Compliance projects.

Due to high volume of incidents and its tracking issues, Designed Ticket Remediation Automation to provide flexibility to end users to do scanning and tracking of the vulnerabilities at ease.

As a forerunner and lead, laid the foundation to implement IPv6 Scanning in Apple Network.

4.Cisco Systems Security Engineer Feb 13 – Oct 14

As part of Cisco TAC Support Team, handled and resolved customer issues on a daily basis.

Used debug logs to troubleshoot, validate and remediate zero day attacks and vulnerabilities.

Developed and written signatures for vulnerabilities and tested them using Cisco IPS.

In-depth troubleshooting and debugging in areas of DMVPN, GETVPN, VTI, GRE Tunnels, Remote IPsec VPN on ikev1, ikev2 topologies and created NAT rules and ACL policies.

Lead Anyconnect Migration project with 40,000 users. Able to complete the project by recreating multiple customer issues, identifying software defects and by resolving bug fixes.

Became a forerunner to develop troubleshooting steps and laid out a methodology to offer TAC Support in handling Mediatrace technology. Got a CAP Award for the initiative.

5.Sustainable Silicon Valley Security Engineer Oct 11 – Jan 13

As a Network Security Admin at Sustainable Silicon Valley, some of my day-to-day activities are:

As a forerunner, Installed Nessus, created policies and scanned the network to find open ports, missing patches and exploits. This helped to remediate the vulnerabilities in the environment.

Noticed problems with a rigid vendor, worked with Executive Director to take the website development in-house. With passion, implemented controls, processes, policies, standards, and guidelines for Drupal-Based SSV Website and Eco-cloud Website.

Configured Zone Based Policies, NAT Filtering, and IPsec VPN using Cisco Router.

6.Slash Support India Pvt Limited, India Application Consultant Mar 06 – Nov 08

Handled the NETGEAR Business customers by resolving VPN, Firewall, Routers, Switches, etc.

Trained the team on IPsec Site-to-Site VPN using IKE, AH, ESP Protocols, Hashing Algorithms.

Configured the Wired/Wireless Routers for internal access, Port forwarding, NAT Rules.

Handled and fixed issues in Netgear products which are authenticating to PKI/CA server.

7.Newwave Computing Pvt. Ltd, India Support Coordinator Aug 04 – Jul 05

Helped the Support team to handle issues on IBM, Real Secure, Cisco, 3Com products, etc.

Lead a team of 15 technical support engineer in Support Coordinator position.

Worked in Real Secure architecture to handle incident response tasks, and remediated them.

Successfully designed and tested the implementation of 36 Catalyst Switches with 4 Cisco ISR Routers with EIGRP in a research site.

8.Newcastle University, UK Security Engineer Sep 02 – Nov 03

As a programmer during my study period in Newcastle University, accomplished these projects.

TCP/IP client-server, JAVA datagram, multi-threading architecture model is used for a secure (Diffie-Hellman, X.509 Certificate, MD5 Hash) connection-oriented design. Dynamic shortest-path design is successfully tested with 50 different IP lists.

A novel hierarchical Cross-Bar Switches based on TCP/IP is implemented using GALS, NoC methodology to overcome SoC power consumption issue. This project helped the research team that are working on defense asynchronous design projects to get funded in commercial market.

Technical Skills

Security Tools QUALYS, Nessus, Burp, Nmap, Curl, Splunk, Symantec Endpoint

Firewalls/VPN/IPS Cisco ASA, Routers, Cisco IPS, Real Secure IDS/IPS, Microsoft Azure

Operating Systems LINUX – Ubuntu, Red Hat, Kali-Linux, Windows, Mac

Virtualization AWS Cloud, VmWare Workstation; Fusion; VSphere, VirtualBox

Software/Scripting Language Python, C, C++, SQL, UML

Professional Qualifications:

Master of Science Newcastle University, U.K. Nov 2003

Bachelor of Engineering Bharathiar University, India Apr 2001

Professional Certification and Training Courses

AI, Machine Learning June 2017 – Present

Python – Coursera Nov 2014

CISSP (First Attempt) February 2007

REFERENCES: Can be provided upon request



Contact this candidate