Experienced Security Consultant with * years of IT experience with a focus on designing and developing security solutions

Knowledge and experience in standard Security and regulatory frameworks including ISO 27001/31000, NIST 800-71, HIPAA and PCI DSS

Expertise in Gathering and analyzing metrics, key risk indicators and maintain scorecards defined within the area of information security to ensure our information security program is performing effectively and efficiently

Familiar with general security risk management principals and best practices

Hands on experience with security consulting and research

Responsible for working with Endpoint Management team to manage software deployment to PCs using tools such as 2008/2012 Active Directory, Microsoft WSUS patching, Anti-virus and endpoint protection. Creation and management of PC Build Images for Windows, and application for PCI security policies.

Oversee Vulnerability assessment /penetration testing of scoped systems and web applications to identify system vulnerabilities.

Helped application teams in on-boarding Splunk and creating dashboards, alerts, reports etc.

Monitoring and remediating daily security alerts generated by end users and also responsible for effectiveness of tools and scans, as well as assessing and tracking risk of exposure

Provided guidance, recommendations, best practices, etc. for vulnerability operations, stabilize and optimize system performance, including rules and reports, assist with threat models, data flow and creating documentation

Worked with developers, QA to integrate security into lifecycle and testing, security input during feature release and security technology recommendations

Experience in security Information and Event Management Tools like IBM QRadar and RSA Archer.

Sr.Security Engineer

Citizen’s Bank

Providence, RI April 2019 – current

Responsibilities:

Installed and maintained security software including, Symantec endpoint protection, Backup Exec 2015, Encryption Management, RSA Authentication manager

Completed proof-of-concept thin-client web framework for enterprise intelligence applications with web developer under extreme deadline.

Developed Application Security program (DAST, SAST, IAST) at the enterprise level to identify, report and remediate security vulnerabilities from applications deployed in DEV, PRE-PROD and PROD environments.

Designed, documented and executed maintenance procedures, including system upgrades, patch management and system backups.

Specifically, security testing has been performed to identify XML External Entity (XXE), Cross-Site Scripting, ClickJacking, and SQL Injection related attacks within the code.

Developed threat modeling framework (STRIDE, DREAD) for critical applications to identify potential threats during the design phase of applications.

Implemented file system security by applying hashing techniques for protecting data stored in files on the file servers.

Administered PKI, cryptography, certificate management and implemented dual keys to address segregation of duties issue between DBAs and security admins.

Participated in the development of IT risk assessments for enterprise applications.

Reviewed source code (Java/J2EE/C#/.NET/Spring/FTL/JavaScript) and identified security vulnerabilities.

Perform manual security testing for OWASP Top 10 vulnerabilities like SQL Injection attacks, cross site scripting (XSS), CSRF, Session Management etc.

Implemented DevOps for the entire application security scanning including, automatic scanning, application of security policies, upload the results to the enterprise portal.

Automated the build and release management process including monitoring and tracking changes between releases using Continuous Integration tool Jenkins

Setup Jenkins as CI/CD for integrating build tools into the development life cycle.

Implemented, and automated security controls, governance processes, and compliance validation

Troubleshooted and resolved web application issues escalated from customer support and other departments with a 100% success rate.

Information Security Engineer

Capital One

Irving, TX Feb 2017 – March 2019

Responsibilities:

Installed and maintained security software including, Symantec endpoint protection, Backup Exec 2015, Encryption Management, RSA Authentication manager

Installed and configured Windows 2012/2016 server

Created various policies for group access control and authentication of users; reset passwords; created Active Directory for entire network

Experienced in the escalating process of security incidents

Utilized ServiceNow ticketing system for incident and change management along with escalations

Provided remote desktop support via TeamViewer, VNC, and Skype screen share for customers to provide instant support; supported queries via phone, fax, and email.

Extensive Experience with Symantec DLP and RSA DLP architecture and implementation for enterprise level.

Perform research, analyze and understand log sources utilized for security monitoring focusing networking devices.

Consult clients on automating business processes & risk management activities in the RSA ArcherGRC .

Assist penetration testing and investigation.

Implementation with NIST SP 800-53A and NIST SP 800-30.

Perform vulnerability scans using Nessus and prepare reports.

Create policies, alerts and configure using SIEM tools

Work experience with IT policies, procedures, and standards are related to doing security review using the NIST standard specifically with NIST 800-53 and NIST 800-66 for HIPAA security rules. Review the Logs for malicious user activities

Security Analyst

Intersoft Kk Nov 2014 - Jun 2016

Bengaluru, India

Responsibilities:

Evaluated enterprise risks, document processes and systems in flowchart and narrative form, and design audit requirements

Manage all repeated threats to all systems and perform vulnerability tests

Experienced on Setup Splunk Forwarders for new application tiers introduced into environment and existing applications

Worked closely with Application Teams to create new Splunk dashboards for Operation teams

Developed ISO-based controls that address regulatory requirements associated with PCI, HIPAA and SOX

Tracking the receipt, implementation, and compliance of information assurance vulnerability assessment and documenting information assurance initiatives ensure that systems, networks, and data adhere to security policies and procedures

Risk Management, Vulnerability Management, Intrusion Prevention, Incident Response

Adding new vulnerabilities to the Vulnerability Database for various platforms with proper exploits

Assist developers in remediating issues with Security Assessments with respect to OWASP standards

Support and Operational experience of GRC systems

Help lead the Risk System (GRC) development and implementation

Perform all GRC configurations for enhancements and maintenance

Implemented a new GRC system, as part of the overall project team.

Integration of IDS/IPS to SIEM and analyze the logs to filter out False positives and add False negatives in to IDS/IPS rule set.

Responsible for testing and implementation IBM QRadar with setup to AD (Active Directory) and LDAP.

Troubleshooting the issues which are related to IBM QRadar.

Technical Skills:

Programming Languages: Python, Jupyter Notebook, C++, C#

Software: MS Office, O365, Sharepoint, Nessus, Wireshark, Metasploit, RSA Archer, IBM Appscan, Burpsuite, Nmap, Acunetix, Nexpose, Checkmarx, Fiddler.

Operating Systems: Windows, Mac, Kali Linux, Linux

Concepts: OWASP Top 10, DDoS, OSI Model, Phishing, XSS(Persistent, DOM Based and Reflected), NIST, HIPAA, PII, AWS, DNS, SIEM, IDS/IPS, PKI, VPN, OSPF, SSL, Active Directory, Endpoint Protection, Security Onion, Network Security, HTTP, TCP/IP, Proxies, Firewalls and Protocols, Machine Learning, Cryptography, Application Security, Security Engineering.

CERTIFICATIONS:

AWS Security Fundamentals

AWS Security Practitioner Essentials

Cybersecurity Risk from the Department of Homeland Security

Education:

Bachelor’s degree in Computer Science – India

Master’s Degree in Computer Science, Specializing in Cybersecurity – USA

Contact this candidate