*

Bharath RAMAKRISHNA

Product Cyber Security Engineer

E-Mail : adijwx@r.postjobfree.com

Mobile : +91-994*******

Date of Birth : 08/10/1991

Gender : Male

Education Level : Masters in Computer Administration Domain : Infrastructure Security

Experience in years : 8+

Available : March-2021

OBJECTIVE

To be a part of an innovation-driven organization which could provide me opportunities to work on state-of-the- art technologies, Quench my thrust for understanding the technical challenges and providing effective solutions. EDUCATION

Bachelor of Commerce from Madras Christian College in 2014 Masters in Computer Administration from Jaipur National University in 2018 CERTIFICATIONS AND TRAININGS

Preparing for ISC2’s CISSP Certification

Preparing for eLearnSecurity’s Malware Analysis Professional Certification

Certified Information Systems Auditor (CISA), An ISACA Certification for technology risk assessment.

Certified Information Privacy Professional (CIPP/E), An IAPP Certification for Data Privacy.

Offensive Security Wireless Professional (OSWP), Wi-Fi pen testing certification from OffSec

Certified as a Blockchain Expert by Blockchain Council of India.

Certified as a Lead Auditor in ISO 27001:2013 (ISMS), to perform third-party audits of ISMS.

Certified as a CompTIA® IT Operations Specialist, To handle critical SOC operations SUMMARY OF QUALIFICATION

Strong affinity and familiarity with Automotive components and processes

Solid understanding Automotive in-vehicle communication protocols such as CAN, LIN and Ethernet and related exploits

Worked on major High Security Module security assessment and implementation cases

Hands-on experience in STRIDE-based TARA analysis of J3061 /ISO 21434 Road vehicle cyber security standard

Practical understanding of cryptographic algorithms and automotive use cases

Solid knowledge about in-vehicle network security and Gateway IPS/IDS

Solid knowledge about Secure Boot, Secure Update and Secure On-board Communications

Performed Privacy Impact Analysis on automotive products that collect and process PII

Hands on experience wireless pen testing with Wi-Fi, Bluetooth and RFID

Hands on experience with firmware analysis with published CVEs

Pen testing experience in Kali Linux with tools like Nmap, Aircrack-ng and Hashcat etc

Hands on experience in Python and shell scripting 2

Extensive experience of Infrastructure Security in major verticals of the IT domain such as enterprise, ISP and Financial environments

Identify tools and technologies that can be implemented and in-line with the skill-set of the team

Knowledge on Zero-trust access model and OS hardening procedures and guidelines SKILLS & COMPETENCES/ TECHANICAL SKILLS

Name Years Expert Experienced Beginner

Cyber security tools and skills

Firewalls and load balancers 6 x

WAF and SIEM 6 x

IPS and IPsec VPN Gateway 6 x

Infrastructure Pentesting 6 x

Cyber risk assessment 3 x

ISO 27001 GAP analysis 3 x

Automotive cyber security tools and skills

ISO 21434 TARA Assessment 1 x

In-vehicle Security 1 x

Wireless security and Data Privacy 1 x

EMPLOYMENT HISTORY

Valeo India Senior Software Engineer OCT 2019 – Present PricewaterhouseCoopers Consultant- Cyber Security FEB 2019 – SEP 2019 Mindtree Senior Security Engineer-SOC JUL 2017 – JAN 2018 Sify Technologies Infrastructure Security Engineer MAR 2016 – JUL 2017 Reliable Network Tech Senior Network Security Engineer JUN 2012 – FEB 2016 3

MAJOR (KEY) PROJECTS

Project: Valeo (Internal) OCT 2019 – Present

Client: Confidential

Tools Used: CAN-utils, IC sim, Wireshark and JTAG analyser Role: Senior Software Engineer

Project Description: Valeo is a market-leading automotive tier-1 component manufacturer with around 50+ R&D centers in the world. Valeo is structured around four business units: Comfort & Driving Assistance Systems, Powertrain Systems, Thermal Systems & Visibility Systems. Product cyber security team is responsible for cyber risk assessment, security proposal and pen testing of automotive components As a Senior Software Engineer-Cybersecurity, I was responsible for:

Executing OEM security requirements and controls incorporated in products.

Majorly working on ADAS, Instrument cluster and connected component product development.

Testing Secure Boot, Secure Update and Secure On-board Communications.

Involving in STRIDE-based TARA analysis of J3061 /ISO 21434 Road vehicle cyber security standard.

Pentested with Kali Linux with tools like Nmap, Aircrack-ng and Hashcat etc.

Building security solution documents based on major microcontrollers such as Infineon, Cypress Semiconductor and NXP.

Working on major High Security Module security assessment and Virtual HSM use cases.

Assessing implemented cryptographic algorithms with automotive use cases.

Working on in-vehicle network security and Gateway IPS/IDS integration.

Performing Privacy Impact Analysis on automotive products that collect and process PII. Project: Security Integrator-SOC FEB 2019 – SEP 2019 Client: Indian Overseas Bank

Role: Consultant- Cyber Security

Project Description:: Indian Overseas Bank is India’s second largest PSU bank in India with over 3,400 branches offering digital banking services and overseas banking. PwC was involved for a security integrator assignment to improve the bank’s overall security posture and implement industry security best practices with in the IT environment.

As a Consultant- Cyber Security, I was responsible for:

Managing Security Integrator engagement with Indian Overseas Bank (IOB), Largest PSU Bank.

Performing a major role in Cyber Security Gap analysis of IT system across DC and DR Locations.

Aiding with Technical Advisories and followed up to it for closure.

Developing SCDs for all Operating Systems and Databases post-hardening procedures.

Validating proposed technical solutions and built cost-benefit analysis for high-value procurements.

Performing Firewall Rule base review and provided recommendations based on critical findings.

Proposing a secure zone-based network topology in line with Zero-trust access model.

Performing Process-based Risk Assessment against ISO 27001 controls and CIA Triad.

Performing Third-party vendor risk assessment behalf of the client.

Aiding with fine tuning SOC tools such as SIEM, NBA, WAF, EDR and PIM. 4

Project: Infrastructure Security (Internal) MAR 2016 – JUL 2017 Client: Sify Technologies Ltd

Role: Infrastructure Security Engineer

Project Description: Sify Technologies Limited is an Indian information and communications technology company providing end to end ICT solutions including telecom services, data center services, cloud & managed services, transformation integration services and application integration services. Sify Technologies Limited played an important role during the early spread of Internet and e-commerce in India. Infrastructure security team is responsible for availability and security of core network components

As a Infrastructure Security Engineer, I was responsible for:

Configuring and maintaining customer devices such as Firewalls, Load Balancers and E-Mail Security equipment.

Responsible for monitoring of IBM QRadar SIEM, Juniper, McAfee & Checkpoint & Network Load Balancing – F5 LTM/GTM

Working on Tipping point IPS & SMS and Juniper pulse SSL / IPsec VPN Gateway

Design, develop, and implement network security measures that provide confidentiality, integrity, availability, authentication, and non-repudiation

Develop approaches to infra vulnerabilities and recommend changes to system or system components such as Information Assurance Vulnerability Alerts

Develop threat models and associated security architectures/requirements, and design appropriate mitigations

Secure Enterprise information by developing and supporting security technologies, services, and capabilities across the network plus design and develop migration strategies

Design develop, implement, and review IT hardware, software, and networks that enhances security of internal information and assets

Review solution data flows to ensure secure designs

Monitor security environment and identifies security gaps LANGUAGES

Language Speaking Writing Reading

English Professional Professional Professional

Tamil Native Native Native

German Basic Intermediate Intermediate

French Basic Basic Basic

HOBBIES AND INTERESTS

Stage Peformer (Actor and Singer), Hiking and Learning foreign languages

Contact this candidate