Technical Specialist Information Security
Resume:
SRINIVAS KRAPA
*************@***.*** ***-***** **684 / 091-83090 10458
Executive Summary
Technically sophisticated professional with visionary & results-oriented executive with over 14+ years of experience in implementing and managing the Infrastructure, Technical Support and Team Management. Proficient in leading Teams for running successful Service Delivery & Process Operations and experience of implementing procedures, Service Standards for Business Excellence. Core Competencies
• Vulnerability Management: Tenable.SC & Nessus Scanners
• Cloud Security: Azure & Microsoft Cloud App Security
• Systems: Experience working in mixed Windows/Linux and virtual/physical servers’ environments
• Software Asset management: Snow License Manager Web Console tool (SNOW)
• Email Security: Area1 Horizon & Microsoft Exchange Admin Centre
• Endpoint Security: Trend Micro, McAfee
• Firewall: Palo Alto & Juniper Firemon
• SIEM: IBM QRadar (On-Premises)
• Monitoring Tools: HP BSM, HP ALM, BMC Portal, BMC ProactiveNet, BMC ADDM & Evanios
• ServiceNow, Microsoft Visio & Lucidchart
Certifications & Education
• Certified in Ethical Hacking
• Lean Six Sigma Green Belt Certified
• ITIL V3 Foundation Level Certified
• ISTQB Foundation Level Certified+
• Higher Diploma in Software Engineering from APTECH
• New Manager Integration Workshop
• Masters in Computer Applications from Madurai Kamaraj University
• Bachelor's Degree in Commerce from Osmania University Professional Summary
• Over 14+ years of experience in career with demonstrated capability in Infrastructure & Service Delivery Operations, Technical Support and Team Management.
• Experience in Information Security and Technology with expertise in configuring and using scanning tools, verifying found vulnerabilities, researching found vulnerability mitigation solutions.
• ITIL certified with a clear understanding of ITIL best practices and methodologies, IT Management, Incident and Change Management.
• Excellent experience in managing teams and successfully managed a team of 20.
• Possess strong customer engagement, service delivery, people management & partner management skills.
• Self motivated, quick learner, goal oriented, dedicated, creative & versatile professional.
• Positive attitude towards work & Passionate to adapt new trend and technologies.
• Takes initiative & work as part of a Team or independently.
• Dynamic leadership ability that can develop and energize multi-disciplined work Teams.
• Experience in identifying, proposing and delivering domain specific solutions to the customer business needs.
• Solid experience in Release Management, Strategic Planning, People Management, Change Management, Quality Improvement, coordination and leadership. Professional Experience
Employer: Worked for NGA HR India Pvt Ltd from July 2008 to March 2021 Role: Technical Specialist/Assistant Manager
Environment: Microsoft Azure, Nessus, IBM Qradar, Trend Micro, Evanios, HP BSM, BMC Portal, BMC ADDM, Service Now and MS Office.
Responsibilities:
• Act as the coordinator for all technology projects related to Information Security. Liaison to Information Systems department, attend meetings, assign and track deadlines/tasks for the department and provides follow up on incomplete assignments.
• Participate in efforts to promote security throughout the project and build good working relationships within the team and with others in the organization
• Participate in the Service Delivery Team for Global Operations Support and maintain the project schedules.
• Maintaining server software inventories and manage application white listing solutions.
• Reviewing, analyzing security breaches to determine their root cause, and respond to daily security violations and alerts and Document security records and escalate incidents based on severity.
• Effectively deal with work and time pressure in the efficient and effective accomplishment of job requirements
• Accountable for identifying, declaring, and managing high-priority cyber-security incidents including managing actions required for containment, eradication, and recovery.
• Investigating and mitigating McAfee ePo server and agent handler communication issues.
• Configuring reports for Last 24 hrs. Unresolved threats and various other reports on Trend Micro.
• Managing 4k+ endpoints and mitigating the threats detected.
• Configured Trend Micro Cloud App Security based upon the Organization needs by enforcing policies, which will trigger alerts when any suspicious emails identified and if any malicious files/items found on user One drive and SharePoint.
• Reviewing publicly disclosed 0-Day Vulnerabilities and evolving threats with potential to impact and adding the IOC’s on the internal security tools on Pro-active measure.
• Integrated HaveIBeenPwned with organization domain to get notified when internal users account is breached on external websites.
• Participate in conference calls, to discuss day-to-day activities and brief other teams on major security incidents. Creating Major Incidents reports to find the pattern of attacks observed in the organization and sharing with CISO.
• Automated Phishing/Suspicious email reporting & ticketing process across the organization.
• Created and implemented end-to-end process to investigate and mitigate the Phishing/Suspicious emails.
• Hands on experience of configuring vulnerability scanning on Azure environment with Tenable.SC
• Conducting weekly internal vulnerability scanning on different data centers to identify and mitigate identified vulnerabilities.
• Managing day-to-day tasks on the Tenable.sc and troubleshooting if any issue occurs.
• Coordinate with the Infrastructure teams to outline the severity of the internal/external vulnerabilities and help them to mitigate the issues.
• Performing vulnerability Assessment through Nessus of complete assets of the customer and coordinating with various team to mitigate the risk associated.
• Investigating partial scan results by generating Diagnostic logs from admin console.
• Investigating Microsoft Cloud App Security alerts and fine-tuning the policies if required.
• Configured location-based login alert policies on MCAS.
• Worked on Microsoft Azure as Cloud App Security Alerts, Monitoring the Dashboards, Policies, etc.
• Worked on SOC 2 controls with Internal/External Audit teams.
• Preparing process documents for new projects and delivering to the team.
• Coordinating with different teams internally for root cause of the incidents and working along with them for rule tuning, correcting false positives and Domain Whitelisting. Correlation of logs from various sources for creating advance use cases.
Server & Application Monitoring Engineer:
• Evanios is an Event Management tool, which is a sub module in Service Now and will be managed directly from Service Now Console.
• Addition and Removal of Monitoring (Windows, Linux, Oracle and Other devices)
• Knowledge on MID Server installation, Evanios Agent installation, Configuration and Administration
• Worked with Event Rules, Notification Rules and report
• Responsible for the health of enterprise monitoring tools and infrastructure such as: BMC & HP Tools.
• Set processes for new Request Management, Change Management, SOP's, Issue handling.
• Delivery and setting to work of Condition Monitoring system installations offshore and onshore.
• Engage with application development teams for project integration and problem resolution tasks.
• Provide technical Condition Monitoring support for all customer queries.
• Conducting Implementations because of Change Request Notices, which include all aspects of the installation and deployment of systems.
• Establish and maintain realistic service level agreement (SLA).
• Monitor all the application views created to ensure application availability and performance.
• Do manual check of the application when any application related alert is received as and when required.
• Working knowledge of ITIL process and supporting procedures Responsibilities @ Team Level:
• Monitoring the queues in SNOW for the Assignment groups for different teams.
• Based on the ticket status assign it to the team members who have the bandwidth.
• Checking the backlog tickets and providing the updates.
• Buddying with team members and trying to resolve the issues.
• Monitoring the schedule jobs on Daily/Weekly or Monthly.
• Worked on tickets assigned for troubleshooting or monitoring configurations.
• Checking the status in SNOW and approving them based on the ticket criteria.
• Conducting team meetings and providing the updates either Center specific or within the team.
• Checking with the team if any help is required on the relevant area.
• Performing the checks in SharePoint for CMMI documentation.
• Creating the report on weekly and monthly basis.
• Doing the Mid-year and Annual reviews for the teams. Employer: Worked for Satyam Computers Services Ltd, from January 2007 to June 2008 Client: GlaxoSmithKline (GSK), UK
Role: Senior Software Engineer
Environment: HP BSM 6.7, VuGen 8.0/8.1, BPM 5.0, SQL Server. Responsibilities:
• Co-ordination with customer and application/infrastructure owners
• Design of Topaz and SiteScope infrastructure for monitoring all Mission Critical Applications in 77 locations in 35 Countries.
• Integration of Topaz and Sitescope Data and generation of the Top view (BAC)
• Configuring Monitors for various Servers and applications using SiteScope
• Providing Support for different applications Web, Mainframe, SAP, Exchange, Oracle
• Script Development using Vugen with exception handling.
• Installation and Configuring Business Process Monitors
• Setting Thresholds and maintaining the scripts
• Application performance monitoring
• Debugging & Troubleshooting
Employer: Worked for GENPACT from December 2004 to December 2006 Client: GE Money (GE Consumer Finance)
Role: Senior Engineer
Environment: HP BSM 6.2, Topaz 4.5 FP2, Vugen 4.5(FP2)/8.0/8.1, BPM 5.0/4.5 FP2, SiteScope Responsibilities:
• Set processes for new request management, Change Management, Standard operating procedures, Issue handling & Escalations.
• Configuring BAC/Topaz Reports
• Providing Support for around 200 different applications
• Defining change Management procedures/ Issues and escalations
• Understanding of the Requirements and workflow for Applications
• Scripting of the workflow using the Vugen, QTP/Exception handling
• Applications included: Mainframes/SAP/Oracle NCA/Oracle Discoverer/Websites/Citrix
• Customizing the process, developing the automated tools
• Installation and Maintenance of Topaz Agents
• Created the “Custom Dashboard” made for the clients to monitor the real time data
• Setting Thresholds and maintaining the scripts
• Application performance monitoring
• Debugging & Troubleshooting
• Creating Availability/Performance Analysis Reports
• Configuring Monitors for various Servers and applications using SiteScope. Employer: Worked for WebHelp Global Services from June 2003 to October 2004 Client: Microsoft
Role: Team Lead
Responsibilities:
• Consistently improved customer satisfaction ratings on the program with support from quality & training resources
• Responsible for a direct reporting team of 20 Associates responsible for 24*7 support on a Microsoft Product Line.
• Responsible for meeting and exceeding all client objectives of CSAT (> 85%) and ART (< 24 hours).
• Worked with the program management team to identify cost reduction areas by running programs such as optimal shift staffing, increase in seat utilization, increasing associate efficiency etc.
• Assist with On Job Training for new recruits. Also conduct / host training sessions on New Products and their Support requirements periodically.
• Coordinating with the client and the internal training department for effective training schedules.
• Direct coordination with the Global Outsourcing Team of Microsoft in relation to Quality of customer service provided at the site.
• Created employee schedules based on capacity planning to maintain service levels
• Measured employee performance against KRA’s with rewards and recognitions
• Breaking down monthly client forecasts to weekly and daily advisory
• Respond to volumes spikes with changes in staffing, overtime management
• Identify emerging issues impacting the process and execute corrective action with the production support team and client team leads
• Leading conference calls for operational review & quality calibrations with tech leads and quality contacts on the client side.
Contact this candidate