Project Manager Security
Resume:
SUDHISH SURYAWANSI
Manassas, VA 20110
*******.**********@*****.***
Objective:
Using my expertise in IT field, seeking a position as a Cyber Security
Analyst for a reputed company.
Areas of Expertise:
A trained professional with great familiarity and hands-on experience in
planning, coordination, and maintenance of an organization's information
security; his tasks involved training and education of internal users on
topics linking to computer security to increase awareness on prevention of
security breaches and be able to respond to cyber attacks, and, in some
cases, gather data and evidence to be used in prosecuting cyber crime; his
exposure involved installation of security software and network monitoring
essential in today's corporate scenario as cyber attacks have increased and
become more sophisticated.
Experience with Security Architecture and Design, 24/7/365 network
monitoring, Firewalls, IDS, SIEM tools, VMware, Cloud Computing, Windows
(XP, 7, 8, 2000, 2003, 2008, VISTA), HTML, MS SQL, Java scripting, Perl,
Python, LINUX, UNIX, Microsoft Office Suite, and Microsoft Project. Skilled
in the various vulnerability assessment tools like WebInspect, McAfee,
NESSUS, Nmap, Security Technical Implementation Guides (STIGs), SNORT,
SPLUNK, tcpdump, and Wireshark.
Educational Qualifications:
Bachelors of Science (Computer Science), from George Mason University,
VA.
Certifications:
Network+, MCSE, Security+.
Work Experience:
Technical SOC Lead 7/2013-9/2013
Virginia Lotto Pool, VA.
Provided as a SOC lead to coordinate incident management activities.
Provided staff security analysts to provide aggregated, second-tier
monitoring at the primary agency data center. Monitored security events
24/7/365, correlating information, and identifying incidents, issues,
threats, and vulnerabilities found by agency data sources and SOC tools
deployed throughout the enterprise; tools included, but were not limited
to, vulnerability scanners, baseline configuration management systems,
hardware asset management systems, software asset management systems,
network contextual analyzer systems, intrusion detection systems (IDS),
data loss prevention systems (DLPS), and security information and event
management (SIEM) systems.
Security Support Specialist 6/2013-7/2013
Mount Airey Group, Inc., VA.
Monitored threat intelligence sources 24/7/365 (security alerts,
warnings, and other indicators) from the Department Computer Security
Incident Response Center (CSIRC), the U.S. Computer Emergency Readiness
Team (US-CERT), and other sources to compile agency-related threat
intelligence reports. Provided security protection to the company's
data, documents, financial records and other relevant information.
SOC Analyst 8/2012-6/2013
Virginia Lotto Pool, VA,
Provided staff security analysts to provide aggregated, second-tier
monitoring at the primary agency data center. Monitored security events
24/7/365, correlating information, and identifying incidents, issues,
threats, and vulnerabilities found by agency data sources and SOC tools
deployed throughout the enterprise; tools included, but were not limited
to, vulnerability scanners, baseline configuration management systems,
hardware asset management systems, software asset management systems,
network contextual analyzer systems, intrusion detection systems (IDS),
data loss prevention systems (DLPS), and security information and event
management (SIEM) systems.
Security Analyst 6/2012-8/2012
QSSI, Inc., Herndon, VA
Conducted security inspections 24/7/365 and surveillance operations with
other MIS team personnel. Assisted with the preparation of new or
revising of out-of-date IT security policies and procedures. ?Researched,
evaluated, and recommended vital IT security-related technologies and
services. Assisted in day-to-day management of the corporate IT
governance and assurance program. Led the development and management of
the corporate security training program, reviewed current and developed
new courses as needed.?
Security Analyst 3/2012-5/2012
SecureIT, Reston, VA
Provided information assurance subject matter expert support and
mentoring to other security engineers throughout the SDLC (System
Development Life Cycle). Provided application and network vulnerability
risk analysis for new and existing systems. Conducted initial reviews of
audit logs 24/7/365 pertaining to critical information systems
encompassing review of weekly-generated reports and identification
suspicious activities. Developed and provided test planning, mitigation
strategies, forensics, auditing, and vulnerability reports. Recommended
hardware and software upgrades and purchase approvals to help secure the
company's valuable information and prevent Distributed Denial of Service
(DDoS) attacks.
Security Analyst 7/2011-3/2012
Teleworx LLC, Reston, VA
Coordinated review of logs and user access data availability and programs
for both regular and privileged users 24/7/365. Assisted in the
developing and implementation of information security policies, laws,
standards, and processes for corporate governance. Drafted and edited
prevailing internal regulatory compliance laws on email and network
security. Educated the employees on the procedures to be followed should
they be faced with such individual attacks.
Security Analyst 8/2010-7/2011
SKUMARS & Associates, LLC, VA
Developed, implemented and maintained system software and hardware
essential in the prevention of cyber security attacks on both corporate
individuals and company. Enhanced the existing company information
security policies, standards, and processes. Discussed cyber security
issues with management and assisted in the drafting and editing of
information security policies, standards, and processes. Reported and
reviewed findings from incident investigations, facilities inspections,
and environmental testing. Maintained and applied knowledge of current
policies, regulations, and industrial processes.
Security Sys Engineer 2/2010-8/2010
Stars & Stripes, D.C.
Monitored and managed in securing physical and cloud infrastructures for
both platforms (Windows and UNIX) 24/7/365. Provided technical support
to other security engineers as a trusted advisor on various security
related applications and tools. Maintained awareness of trends in
security regulatory, technology, and operational requirements and
performed other duties as per assigned. Coordinated review of logs and
user access data availability and programs for both regular and
privileged users.
Security Analyst 9/2009-2/2010
SKUMARS & Associates, LLC, VA
Developed, implemented and maintained system software and hardware
essential in the prevention of cyber security attacks on both corporate
individuals and company. Enhanced the existing company information
security policies, standards, and processes. Discussed cyber security
issues with management and assisted in the drafting and editing of
information security policies, standards, and processes. Reported and
reviewed findings from incident investigations, facilities inspections,
and environmental testing. Maintained and applied knowledge of current
policies, regulations, and industrial processes.
Security Patent Examiner 8/2008-9/2009
United States Patent and Trademark Office (USPTO), VA
Researched and examined various security related patents.
Security Engineer 7/2006-8/2008
Unisys, VA
Operated, administered audited the NOC/SOC environments against security
solutions & compliance, provided technical support to other security
engineers as a trusted advisor. Supported Project Manager to update the
Security Service Plans (SSP), and created other security artifacts based
on NIST 800 & DIACAP benchmarks.
Sr. Help-Desk Analyst 8/2004-7/2006
George Washington University (GWU), Ashburn, VA
Performed solutions for a variety of systems (Blackboard, Colonial Mail,
Banner, and etc.). Provided technical support via phone, emails, and
onsite through a ticketing system. Prepared IT Security Advisories and
Security Information Bulletins. Developed and documented standard
operating procedures (SOP) and compiled reports.
Security Sys Engineer 1/2001-8/2004
CACI, VA
Supported other engineers with security related hardware, applications,
configurations and installations of various operating systems. Tested out
various appliances and applications using basic scripting/coding.
Performed 24/7/365 network monitoring - reviewed and analyzed system
security logs, intrusion Detection and Prevention Systems (IDS/IPS)
sensors data. Provided support to Project Manager performing security
audits for the NOC/SOC environments. Educated the employees on the
procedures to be followed should they be faced with such individual
attacks.
Contact this candidate