Bharath RAMAKRISHNA
Product Cyber Security Engineer
E-Mail : adijwx@r.postjobfree.com
Mobile : +91-994*******
Date of Birth : 08/10/1991
Gender : Male
Education Level : Masters in Computer Administration Domain : Infrastructure Security
Experience in years : 8+
Available : March-2021
OBJECTIVE
To be a part of an innovation-driven organization which could provide me opportunities to work on state-of-the- art technologies, Quench my thrust for understanding the technical challenges and providing effective solutions. EDUCATION
Bachelor of Commerce from Madras Christian College in 2014 Masters in Computer Administration from Jaipur National University in 2018 CERTIFICATIONS AND TRAININGS
Preparing for ISC2’s CISSP Certification
Preparing for eLearnSecurity’s Malware Analysis Professional Certification
Certified Information Systems Auditor (CISA), An ISACA Certification for technology risk assessment.
Certified Information Privacy Professional (CIPP/E), An IAPP Certification for Data Privacy.
Offensive Security Wireless Professional (OSWP), Wi-Fi pen testing certification from OffSec
Certified as a Blockchain Expert by Blockchain Council of India.
Certified as a Lead Auditor in ISO 27001:2013 (ISMS), to perform third-party audits of ISMS.
Certified as a CompTIA® IT Operations Specialist, To handle critical SOC operations SUMMARY OF QUALIFICATION
Strong affinity and familiarity with Automotive components and processes
Solid understanding Automotive in-vehicle communication protocols such as CAN, LIN and Ethernet and related exploits
Worked on major High Security Module security assessment and implementation cases
Hands-on experience in STRIDE-based TARA analysis of J3061 /ISO 21434 Road vehicle cyber security standard
Practical understanding of cryptographic algorithms and automotive use cases
Solid knowledge about in-vehicle network security and Gateway IPS/IDS
Solid knowledge about Secure Boot, Secure Update and Secure On-board Communications
Performed Privacy Impact Analysis on automotive products that collect and process PII
Hands on experience wireless pen testing with Wi-Fi, Bluetooth and RFID
Hands on experience with firmware analysis with published CVEs
Pen testing experience in Kali Linux with tools like Nmap, Aircrack-ng and Hashcat etc
Hands on experience in Python and shell scripting 2
Extensive experience of Infrastructure Security in major verticals of the IT domain such as enterprise, ISP and Financial environments
Identify tools and technologies that can be implemented and in-line with the skill-set of the team
Knowledge on Zero-trust access model and OS hardening procedures and guidelines SKILLS & COMPETENCES/ TECHANICAL SKILLS
Name Years Expert Experienced Beginner
Cyber security tools and skills
Firewalls and load balancers 6 x
WAF and SIEM 6 x
IPS and IPsec VPN Gateway 6 x
Infrastructure Pentesting 6 x
Cyber risk assessment 3 x
ISO 27001 GAP analysis 3 x
Automotive cyber security tools and skills
ISO 21434 TARA Assessment 1 x
In-vehicle Security 1 x
Wireless security and Data Privacy 1 x
EMPLOYMENT HISTORY
Valeo India Senior Software Engineer OCT 2019 – Present PricewaterhouseCoopers Consultant- Cyber Security FEB 2019 – SEP 2019 Mindtree Senior Security Engineer-SOC JUL 2017 – JAN 2018 Sify Technologies Infrastructure Security Engineer MAR 2016 – JUL 2017 Reliable Network Tech Senior Network Security Engineer JUN 2012 – FEB 2016 3
MAJOR (KEY) PROJECTS
Project: Valeo (Internal) OCT 2019 – Present
Client: Confidential
Tools Used: CAN-utils, IC sim, Wireshark and JTAG analyser Role: Senior Software Engineer
Project Description: Valeo is a market-leading automotive tier-1 component manufacturer with around 50+ R&D centers in the world. Valeo is structured around four business units: Comfort & Driving Assistance Systems, Powertrain Systems, Thermal Systems & Visibility Systems. Product cyber security team is responsible for cyber risk assessment, security proposal and pen testing of automotive components As a Senior Software Engineer-Cybersecurity, I was responsible for:
Executing OEM security requirements and controls incorporated in products.
Majorly working on ADAS, Instrument cluster and connected component product development.
Testing Secure Boot, Secure Update and Secure On-board Communications.
Involving in STRIDE-based TARA analysis of J3061 /ISO 21434 Road vehicle cyber security standard.
Pentested with Kali Linux with tools like Nmap, Aircrack-ng and Hashcat etc.
Building security solution documents based on major microcontrollers such as Infineon, Cypress Semiconductor and NXP.
Working on major High Security Module security assessment and Virtual HSM use cases.
Assessing implemented cryptographic algorithms with automotive use cases.
Working on in-vehicle network security and Gateway IPS/IDS integration.
Performing Privacy Impact Analysis on automotive products that collect and process PII. Project: Security Integrator-SOC FEB 2019 – SEP 2019 Client: Indian Overseas Bank
Role: Consultant- Cyber Security
Project Description:: Indian Overseas Bank is India’s second largest PSU bank in India with over 3,400 branches offering digital banking services and overseas banking. PwC was involved for a security integrator assignment to improve the bank’s overall security posture and implement industry security best practices with in the IT environment.
As a Consultant- Cyber Security, I was responsible for:
Managing Security Integrator engagement with Indian Overseas Bank (IOB), Largest PSU Bank.
Performing a major role in Cyber Security Gap analysis of IT system across DC and DR Locations.
Aiding with Technical Advisories and followed up to it for closure.
Developing SCDs for all Operating Systems and Databases post-hardening procedures.
Validating proposed technical solutions and built cost-benefit analysis for high-value procurements.
Performing Firewall Rule base review and provided recommendations based on critical findings.
Proposing a secure zone-based network topology in line with Zero-trust access model.
Performing Process-based Risk Assessment against ISO 27001 controls and CIA Triad.
Performing Third-party vendor risk assessment behalf of the client.
Aiding with fine tuning SOC tools such as SIEM, NBA, WAF, EDR and PIM. 4
Project: Infrastructure Security (Internal) MAR 2016 – JUL 2017 Client: Sify Technologies Ltd
Role: Infrastructure Security Engineer
Project Description: Sify Technologies Limited is an Indian information and communications technology company providing end to end ICT solutions including telecom services, data center services, cloud & managed services, transformation integration services and application integration services. Sify Technologies Limited played an important role during the early spread of Internet and e-commerce in India. Infrastructure security team is responsible for availability and security of core network components
As a Infrastructure Security Engineer, I was responsible for:
Configuring and maintaining customer devices such as Firewalls, Load Balancers and E-Mail Security equipment.
Responsible for monitoring of IBM QRadar SIEM, Juniper, McAfee & Checkpoint & Network Load Balancing – F5 LTM/GTM
Working on Tipping point IPS & SMS and Juniper pulse SSL / IPsec VPN Gateway
Design, develop, and implement network security measures that provide confidentiality, integrity, availability, authentication, and non-repudiation
Develop approaches to infra vulnerabilities and recommend changes to system or system components such as Information Assurance Vulnerability Alerts
Develop threat models and associated security architectures/requirements, and design appropriate mitigations
Secure Enterprise information by developing and supporting security technologies, services, and capabilities across the network plus design and develop migration strategies
Design develop, implement, and review IT hardware, software, and networks that enhances security of internal information and assets
Review solution data flows to ensure secure designs
Monitor security environment and identifies security gaps LANGUAGES
Language Speaking Writing Reading
English Professional Professional Professional
Tamil Native Native Native
German Basic Intermediate Intermediate
French Basic Basic Basic
HOBBIES AND INTERESTS
Stage Peformer (Actor and Singer), Hiking and Learning foreign languages