Name : Swetha m

Email: ad2jwv@r.postjobfree.com

PH: 469-***-****

Around 8 years of versatile experience in the areas of Application, Cloud and Infrastructure/Network Security which includes design, implementation, and support with extensive project execution expertise.

AWS Certified: 1. AWS Solution Architect Associate

2. AWS Certified Sysops Administrator Associate

Professional Experience

Northern Trust- Chicago May 2022-Present

Cloud Security Engineer

Responsibilities: -

●Deployed, configured, and managed infrastructure security products, tools, and solutions to help augment security threat monitoring, detection, prevention, and compliance as part of the organization's cloud security architecture.

●Worked with Cloud Operations, IT, and product teams to perform security reviews and approvals for the planned deployments, initiatives, and/or changes in the public cloud environment as part of the SDLC and Change Management processes.

●Developed and enforced cloud security standards in AWS and Azure including IAM policies, security groups, S3 bucket policies, encryption, network security, cloud workload and container security, logging, monitoring, etc.

●Responded to and performed the initial investigation and triaging of alerts from security tools and products like SIEM, IDS/IPS, EDR, Email Security, etc.

●Performed security assessments based on relevant industry standards (SOX, NIST, PCI DSS, ISO27001) and provided remediation approaches to address the security control gaps identified.

●Worked with management and other technical teams in defining and implementing strategic, technical, and operational security/infrastructure controls that are properly aligned with business goals and objectives.

●Responsible for maintaining security configurations for routers, switches, and firewalls and for using applicable encryption methods.

●Coordinated the implementation of security tools and secure infrastructure architectures to support transaction processing and internal initiatives, and implementation and support of transaction processing systems.

●Researched, designed, and developed new information security controls for clients on multiple security technologies such as Firewalls, Intrusion Detection/Prevention Systems, Vulnerability Scanning, and SIEM.

●Familiarity with security solutions and tools such as Qualys, Prisma, Zscaler as well as cloud-native tools such as Azure Monitor, AWS CloudTrail, and AWS GuardDuty.

●Assist in setting of security baseline for window, linux and other server builds as well as working with prisma to ensure enforcement to the standards.

●Deploy cloud Integration with aws for webhooks and Integrated Prisma with azure.

●Monitor Prisma provides utilities for different platforms and OS, that will be needed for a Defender deployment.

●Integrated AWS with Qualys ec2 connector in all aws accounts to control over your cloud assets

●Scope and resolve complex issues with onboarding, deployment, and configuration of AWS Security products.

●Used Splunk Security Manager to identify threats and assigned category and Advise and educate customers on the features and capabilities of AWS Security products

●Interpret and analyze log data to troubleshoot issues .

●Communicate solutions and recommendations to the customer and ensure that customers have the information and tools to address similar issues in the future .

●Collaborate and coordinate with other teams and experts throughout AWS to tailor the best solution for customer issues.

Conduent-Austin Aug 2017 – Dec 2020

Cloud Security Engineer

Responsibilities: -

●Responsible for end-to-end cloud security delivered in 5 pillars namely IAM, data security, application security, OS hardening (CIS/STIG Benchmarks and security patching/configurations), security intelligence

●Worked with business units, software developers, and security, to design and build applications and services within AWS, Azure, and on-prem

●Designed, implemented, and managed virtual networking within Azure and connect to on-premises environments, configure Express Route, Virtual Network, VPN Gateways, DNS, and Load Balancers

●Implemented user accounts and role-based policies for access to Azure services, Azure Identity Management services, WS-federation, OAuth, and SAML-P

●Integrated on-premises Windows AD with Azure AD, configure multi-factor authentication, and federated single sign-on

●Experience with Security Centre, Key Vault, Application Gateway, and Network Security Groups

●Used Jenkins for continuous deployment and integration of the build and release process.

●Worked on DevOps/Agile operations process and tools Developed Python and shell scripts for automation of the build and release process.

●Developed Shell and Perl Scripts for the purpose of manual deployment of the code to the different environments and E-mail the team when the build is completed.

●Developed build and deployment scripts using MAVEN as build tools in Jenkins to move from one environment to other environments.

●Created and managed a Docker deployment pipeline for custom application images in the cloud using Jenkins.

●Defined a multi-container application in a single file, span the application up in a single command using Docker Compose.

●Used of Docker, Kubernetes and Open Shift to manage micro services for development of continuous integration and continuous delivery.

●Automated CI/CD with Jenkins, build-pipeline-plugin, Maven, GIT Set up Jenkins master/slave to distribute builds on salve nodes.

●Built a Jenkins-based CI/CD pipeline, speeding product deployment and allowing greatly improved testing of all aspects of the deploy process.

●Configured SonarQube scanner for code analysis, code smell, finding bugs and checking the quality levels of particular code.

●Used Splunk to monitor the system logs as well as notify the incident management system upon exceeding thresholds.

●Deploying and designing cloud-based solutions for clients using multiple platforms such as AWS, IBM Cloud and GCP

●Experience with cloud security platforms/ Management and tools, such as AWS Security Hub, Azure Security Centre, or Google Cloud Security Command Centre

●Collect requirements and build solutions and tools to constantly improve availability, performance, uptime, and response times within Azure.

●Identified risk and vulnerability reported in azure security center and GCP security command center and remediated them.

●Experienced in GCP features with VPC storage and cloud load balancing .Build and maintain central security policies for azure cloud infrastructure.

●Performed penetration testing on AWS and Azure infrastructure to find missed configurations and data leakages.

●Migrated entire AWS accounts from AWS organization to Control Tower and configured SCPs and guard rails as needed.

●Designed and implemented cloud security standards, policies, and automated defenses across the organization using Terraform and Ansible

●Responsible for supporting integration and stable development environments, consisting of Windows and Linux servers, hosted both on-prem and in the cloud.

●Responsible for the design, development, and implementation of new security features.

●Troubleshoot and fix issues using monitoring tools and reviewing error logs.

●Created an AWS VPC for my team that met enterprise security and PCI requirements. Configuration and updates are automated using CloudFormation templates.

●Set up security groups and firewall rules to allow consumption of data center resources from our AWS VPC and access services running in other VPCs.

Cybage, India July 2015-May 2017

Security Engineer

Responsibilities: -

●Troubleshoot problems on a day-to-day basis & provide solution that would fix the problems within the network.

●Support customers with the configuration and maintenance of ASA firewall systems.

●Maintenance and Troubleshooting of LAN connectivity problems using the Ping, Traceroute.

●Developed application security program(DAST and SAST) at the enterprise level to identify, report and remediate security vulnerabilities from applications developed in DEV,PROD,NON-PROD environments.

●Managed the IP address space using subnets and variable-length subnet masks (VLSM).

●Involved in troubleshooting IP addressing issues and Updating IOS images using TFTP.

●Assisted in troubleshooting LAN & WAN connectivity and hardware issues in the network of 10000 hosts.

●Daily responsibilities included monitoring remote sites using network management tools, assisting in design guidance for infrastructure upgrades & help LAN administrators with backbone connection and connectivity issues

●Studied and analyzed client requirements to provide solutions for network design, configuration, administration, and security.

●Experience with configuring BGP, and OSPF on 7200 Cisco routers.

●Maintained redundancy on Cisco 2500, 2600, and 3600 routers with HSRP

●Monitor the performance of networks and servers to identify potential problems and bottlenecks.

●Performed RIP & OSPF routing protocol administration.

●Interacted with support services to reduce downtime on leased lines.

Sonata Software Limited Hyd India June 2014 -July 2015

Network Engineer

Responsibilities:

●Perform internal and external penetration testing of network infrastructure and applications

●Perform well-controlled vulnerability exploitation/penetration testing on applications, network protocols, and databases

●Perform network reconnaissance, OSINT, social engineering, and physical security reviews

●Develop and deploy, internal control risk management, IT controls, and related standards

●Identify and evaluate complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement

●Identified information security and cyber risk issues, projects, or any other initiative that may have an information security implication.

●Activities, security risk assessments security-related investigations, and information security awareness.

●Internal security and confidential information investigations and information usage security audits.

Tools Worked

Skills: WebApp penetration testing, Cloud Security Audits, and Engineering, 3rd Party Application Security Reviews

Cloud Security Products: Alert Logic Cloud Insight, Alert Logic Cloud Defender, Sumologic, Checkpoint Dome9,Cloudflare.

AWS Security Services: IAM, Inspector, Guard Duty, Macie, Directory Service, KMS, Organizations, Shield,Prisma.

GCP Security Products: IAM, Identity-Aware Proxy, Cloud DLP, KMS, Cloud Security Scanner

Firewall Products: Checkpoint Endpoint Security, Forcepoint, Websense, Cisco Sourcefire, Cisco AMP

Application Security Products: Checkmarx SAST, WhiteHat Security SAST &DAST, Netsparker, Rapid7 InsightVM, Rapid7 Insight AppSec, Rapid7 Appspider Enterprise, Qualys Guard WAS, Burp Suite Pro

Cloud Services: Amazon Web Services, Anthos (Google Cloud Platform), Microsoft Azure,Splunk

Automation: CloudFormation, Ansible, Python,Terraform

Contact this candidate