Security Information
Resume:
Anikhet Menon
San Jose, CA, ***** ********@*****.*** 669-***-**** linkedin.com/in/anikhet-menon/ TECHNICAL SKILLS
Tools: SNORT, Wireshark, NMAP, SIEM, EDR, PowerShell, Metasploit, Ansible, Git, OpenShift, Nikto, Burp Suite Programming Languages: Python, Perl, C, HTML, PHP, MySQL Security Frameworks/Compliance: NIST, GDPR, CCPA, HIPAA Networking Protocols: TCP/IP, UDP, SNMP, LDAP, SSO, LDAP, BGP, ARP, IDS, RIP, CDN, OSI, VLAN, DNS, HTTP/S Cloud Technologies: AWS (IAM, S3, CloudWatch, EC2, VPC), Microsoft Azure, GCP Container: Docker Operation System: Linux (Ubuntu, CentOS, Kali Linux), Windows OS, Windows Server 2008/R2, 2012/R2, Unix, Mac OS Monitoring tools: Prometheus, Grafana AWS Security Tools: CloudTrail, AWS Inspector, S3 vulnerabilities, AWS WAF EDUCATION
San Jose State University San Jose, CA
Master of Science (MS) in Computer Networking Aug 2018 - May 2020 University of Mumbai, Pillai College of Engineering Mumbai, India Bachelor of Engineering (BS) in Electronics and Telecommunication Jun 2013- Aug 2017 PROFESSIONAL EXPERIENCE
Poly (Plantronics + Polycom) Santa Cruz, CA
Information Security Intern Jun 2019 – Aug 2019
Perform daily Security Operations in Incident Response and Threat/Risk management domain that include:
Mitigating social engineering attempts: Investigate phishing emails, blocking and monitoring URLs on Palo Alto firewall and analyze similar emails using PowerShell
Monitoring security alerts and logs on AlienVault SIEM
Monitor risk events using Microsoft Azure Active Directory and raise tickets related to security incidents on ServiceNow
Create vulnerability reports for assets using Rapid7 Insight VM Vulnerability Management Tool which helps in reducing the risk score. Deliver appropriate actions such as Inbox Forwarding Rule, Impossible Travel and Inbox Manipulation on several alerts produced by Microsoft Office 365 tool (O365)
Documenting and updating the runbook and reports
Achievements include identification and reporting of 5-7 high-risk compromised accounts Larsen & Toubro Ltd. Mumbai, India
Support Engineer Intern Jul 2017 – Mar 2018
Troubleshoot Windows, Mac OS and Mobile platforms
Monitor network performance and perform diagnostic testing of software and hardware appliances
Technical Support for people using the network by setting up user accounts, permissions and passwords ACADEMIC PROJECTS
Penetration Testing (Research)
Network Penetration Testing (Pre/Post Connection Attacks): Network Traffic analysis using Wireshark, WEP/WPA/WPA2 Cracking MITM (DNS Spoofing, ARP Poisoning, Demonstrating the purpose and creating a honeypot) Social Engineering: Phishing: Email Spoofing Web Application Penetration Testing: SQL Injection, CSRF, Cross-Site Scripting covering OWASP TOP 10 Creating Dashboard using Grafana to monitor DDoS attacks
Developed a dashboard which would help the team to mitigate DDoS attacks by monitoring CPU utilization and incoming requests Implemented a Secure CI/CD Pipeline for a train schedule application
Developed, Tested and Deployed the application using Github, Travis CI, Jenkins and Gradle
Constructed a multi-container docker images for the application and deployed it to AWS Elastic beanstalk.
Performing a vulnerability scan using AWS Inspector. Design and implement security monitoring and alerting using CloudWatch IT Security Policy Project
Designed a data destruction policy. Ensured proper disposal of devices, equipment and media associated with Protected Health Information (PHI); classified data by need for confidentiality and need for availability; identified regulatory and risks related to improper disposal; defined proper mediums for destroying data
Devised an audit plan. Formulated plan for identification of risks and testing effectiveness of related controls by utilizing available resources to verify that the policy is implemented as designed throughout the organization Open Source Security Assessment
Performed SQL Injection, XSS, CLRF, CSRF, and Reflection Injection attacks on PHPMailer.
Resolved above mentioned attacks using RIPS analyzer and RATS security tool. CERTIFICATIONS
Fortinet Network Security Expert 1 & Network Security Expert 2 AWS Solution Architect – Associate (ongoing)
Contact this candidate