Name : Swetha m
Email: ad2jwv@r.postjobfree.com
PH: 469-***-****
Around 8 years of versatile experience in the areas of Application, Cloud and Infrastructure/Network Security which includes design, implementation, and support with extensive project execution expertise.
AWS Certified: 1. AWS Solution Architect Associate
2. AWS Certified Sysops Administrator Associate
Professional Experience
Northern Trust- Chicago May 2022-Present
Cloud Security Engineer
Responsibilities: -
●Deployed, configured, and managed infrastructure security products, tools, and solutions to help augment security threat monitoring, detection, prevention, and compliance as part of the organization's cloud security architecture.
●Worked with Cloud Operations, IT, and product teams to perform security reviews and approvals for the planned deployments, initiatives, and/or changes in the public cloud environment as part of the SDLC and Change Management processes.
●Developed and enforced cloud security standards in AWS and Azure including IAM policies, security groups, S3 bucket policies, encryption, network security, cloud workload and container security, logging, monitoring, etc.
●Responded to and performed the initial investigation and triaging of alerts from security tools and products like SIEM, IDS/IPS, EDR, Email Security, etc.
●Performed security assessments based on relevant industry standards (SOX, NIST, PCI DSS, ISO27001) and provided remediation approaches to address the security control gaps identified.
●Worked with management and other technical teams in defining and implementing strategic, technical, and operational security/infrastructure controls that are properly aligned with business goals and objectives.
●Responsible for maintaining security configurations for routers, switches, and firewalls and for using applicable encryption methods.
●Coordinated the implementation of security tools and secure infrastructure architectures to support transaction processing and internal initiatives, and implementation and support of transaction processing systems.
●Researched, designed, and developed new information security controls for clients on multiple security technologies such as Firewalls, Intrusion Detection/Prevention Systems, Vulnerability Scanning, and SIEM.
●Familiarity with security solutions and tools such as Qualys, Prisma, Zscaler as well as cloud-native tools such as Azure Monitor, AWS CloudTrail, and AWS GuardDuty.
●Assist in setting of security baseline for window, linux and other server builds as well as working with prisma to ensure enforcement to the standards.
●Deploy cloud Integration with aws for webhooks and Integrated Prisma with azure.
●Monitor Prisma provides utilities for different platforms and OS, that will be needed for a Defender deployment.
●Integrated AWS with Qualys ec2 connector in all aws accounts to control over your cloud assets
●Scope and resolve complex issues with onboarding, deployment, and configuration of AWS Security products.
●Used Splunk Security Manager to identify threats and assigned category and Advise and educate customers on the features and capabilities of AWS Security products
●Interpret and analyze log data to troubleshoot issues .
●Communicate solutions and recommendations to the customer and ensure that customers have the information and tools to address similar issues in the future .
●Collaborate and coordinate with other teams and experts throughout AWS to tailor the best solution for customer issues.
Conduent-Austin Aug 2017 – Dec 2020
Cloud Security Engineer
Responsibilities: -
●Responsible for end-to-end cloud security delivered in 5 pillars namely IAM, data security, application security, OS hardening (CIS/STIG Benchmarks and security patching/configurations), security intelligence
●Worked with business units, software developers, and security, to design and build applications and services within AWS, Azure, and on-prem
●Designed, implemented, and managed virtual networking within Azure and connect to on-premises environments, configure Express Route, Virtual Network, VPN Gateways, DNS, and Load Balancers
●Implemented user accounts and role-based policies for access to Azure services, Azure Identity Management services, WS-federation, OAuth, and SAML-P
●Integrated on-premises Windows AD with Azure AD, configure multi-factor authentication, and federated single sign-on
●Experience with Security Centre, Key Vault, Application Gateway, and Network Security Groups
●Used Jenkins for continuous deployment and integration of the build and release process.
●Worked on DevOps/Agile operations process and tools Developed Python and shell scripts for automation of the build and release process.
●Developed Shell and Perl Scripts for the purpose of manual deployment of the code to the different environments and E-mail the team when the build is completed.
●Developed build and deployment scripts using MAVEN as build tools in Jenkins to move from one environment to other environments.
●Created and managed a Docker deployment pipeline for custom application images in the cloud using Jenkins.
●Defined a multi-container application in a single file, span the application up in a single command using Docker Compose.
●Used of Docker, Kubernetes and Open Shift to manage micro services for development of continuous integration and continuous delivery.
●Automated CI/CD with Jenkins, build-pipeline-plugin, Maven, GIT Set up Jenkins master/slave to distribute builds on salve nodes.
●Built a Jenkins-based CI/CD pipeline, speeding product deployment and allowing greatly improved testing of all aspects of the deploy process.
●Configured SonarQube scanner for code analysis, code smell, finding bugs and checking the quality levels of particular code.
●Used Splunk to monitor the system logs as well as notify the incident management system upon exceeding thresholds.
●Deploying and designing cloud-based solutions for clients using multiple platforms such as AWS, IBM Cloud and GCP
●Experience with cloud security platforms/ Management and tools, such as AWS Security Hub, Azure Security Centre, or Google Cloud Security Command Centre
●Collect requirements and build solutions and tools to constantly improve availability, performance, uptime, and response times within Azure.
●Identified risk and vulnerability reported in azure security center and GCP security command center and remediated them.
●Experienced in GCP features with VPC storage and cloud load balancing .Build and maintain central security policies for azure cloud infrastructure.
●Performed penetration testing on AWS and Azure infrastructure to find missed configurations and data leakages.
●Migrated entire AWS accounts from AWS organization to Control Tower and configured SCPs and guard rails as needed.
●Designed and implemented cloud security standards, policies, and automated defenses across the organization using Terraform and Ansible
●Responsible for supporting integration and stable development environments, consisting of Windows and Linux servers, hosted both on-prem and in the cloud.
●Responsible for the design, development, and implementation of new security features.
●Troubleshoot and fix issues using monitoring tools and reviewing error logs.
●Created an AWS VPC for my team that met enterprise security and PCI requirements. Configuration and updates are automated using CloudFormation templates.
●Set up security groups and firewall rules to allow consumption of data center resources from our AWS VPC and access services running in other VPCs.
Cybage, India July 2015-May 2017
Security Engineer
Responsibilities: -
●Troubleshoot problems on a day-to-day basis & provide solution that would fix the problems within the network.
●Support customers with the configuration and maintenance of ASA firewall systems.
●Maintenance and Troubleshooting of LAN connectivity problems using the Ping, Traceroute.
●Developed application security program(DAST and SAST) at the enterprise level to identify, report and remediate security vulnerabilities from applications developed in DEV,PROD,NON-PROD environments.
●Managed the IP address space using subnets and variable-length subnet masks (VLSM).
●Involved in troubleshooting IP addressing issues and Updating IOS images using TFTP.
●Assisted in troubleshooting LAN & WAN connectivity and hardware issues in the network of 10000 hosts.
●Daily responsibilities included monitoring remote sites using network management tools, assisting in design guidance for infrastructure upgrades & help LAN administrators with backbone connection and connectivity issues
●Studied and analyzed client requirements to provide solutions for network design, configuration, administration, and security.
●Experience with configuring BGP, and OSPF on 7200 Cisco routers.
●Maintained redundancy on Cisco 2500, 2600, and 3600 routers with HSRP
●Monitor the performance of networks and servers to identify potential problems and bottlenecks.
●Performed RIP & OSPF routing protocol administration.
●Interacted with support services to reduce downtime on leased lines.
Sonata Software Limited Hyd India June 2014 -July 2015
Network Engineer
Responsibilities:
●Perform internal and external penetration testing of network infrastructure and applications
●Perform well-controlled vulnerability exploitation/penetration testing on applications, network protocols, and databases
●Perform network reconnaissance, OSINT, social engineering, and physical security reviews
●Develop and deploy, internal control risk management, IT controls, and related standards
●Identify and evaluate complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
●Identified information security and cyber risk issues, projects, or any other initiative that may have an information security implication.
●Activities, security risk assessments security-related investigations, and information security awareness.
●Internal security and confidential information investigations and information usage security audits.
Tools Worked
Skills: WebApp penetration testing, Cloud Security Audits, and Engineering, 3rd Party Application Security Reviews
Cloud Security Products: Alert Logic Cloud Insight, Alert Logic Cloud Defender, Sumologic, Checkpoint Dome9,Cloudflare.
AWS Security Services: IAM, Inspector, Guard Duty, Macie, Directory Service, KMS, Organizations, Shield,Prisma.
GCP Security Products: IAM, Identity-Aware Proxy, Cloud DLP, KMS, Cloud Security Scanner
Firewall Products: Checkpoint Endpoint Security, Forcepoint, Websense, Cisco Sourcefire, Cisco AMP
Application Security Products: Checkmarx SAST, WhiteHat Security SAST &DAST, Netsparker, Rapid7 InsightVM, Rapid7 Insight AppSec, Rapid7 Appspider Enterprise, Qualys Guard WAS, Burp Suite Pro
Cloud Services: Amazon Web Services, Anthos (Google Cloud Platform), Microsoft Azure,Splunk
Automation: CloudFormation, Ansible, Python,Terraform