Middleware-DevSecOps Engineer
Resume:
Diptendra Kumar Srivastava
Visa Status: H*B ( Open for C2C Position)
Assistant Vice President [ DevSecOps and Middleware Architect]
Email:adxdj8@r.postjobfree.com
Present Location: Westchester, Pennsylvania (USA)
Phone: +1-215-***-****
PROFESSIONAL SUMMARY
A passionate IT Professional with 17 years of experience in enterprise architecture, Application Production Support, Infrastructure automation, Vulnerability Management and Baseline and GIS guideline implementation using hardening scripts & DevOps Tools, Middleware Products, Micro-services, REST API, Python and Shell Scripts.
As a Vulnerability Management and Remediation Consultant, I worked for leading and driving vulnerability remediation across enterprise applications,
Worked with IT engineering, infrastructure, and application development teams and in close collaboration with the Security Assurance, Secure Development Lifecycle and Products and Application Security teams.
My roles involve Analyze application vulnerabilities, determine cause and impact and identify the corrective action needed to eliminate and prevent the event from happening in the future.
Define and report program roadmap, status, development issues and success metrics and Articulate risk and impact to internal stakeholders.
Convey the urgency and need to remediate vulnerability commensurate with the risk it presents to the organization.
I having good understanding of vulnerability validation, re-production, remedy advice and vulnerability research skills and to use to provide comprehensive technical guidance and remedy advice to internal stakeholders when required.
Strong knowledge of security principles and best practices, including threat modeling, vulnerability testing, and incident response.
Review and provide the remediation solutions using vulnerability management tools like QUALYS, CrowdStrike, Tanium and Tenable IO.
Analyzing vulnerabilities using CVE, CVSS, Severity, Consequence Model, Problem statement, remediation plan, Future trends and impact analysis.
Good understanding of OWASP and threat profile.
Having good understanding in common types of cyber-attacks like phising, Man-in-middle, Deniel-of-Services, SQL injection, Zero-Day Exploit and DNS Tunneling,
Developed routing tool to provide standard solutions and measure quality, efficiency, and responsiveness of the issues using python modules like.. numpy, pandas.
Cultivate, develop and manage strong, lasting customer relationships at senior management level.
Experience in ADSF, Middleware and OS software vulnerability management, remediation and sustenance plan, worked on application and server hardening Script development, Interim tools development.
Conduct regular security risk assessments and vulnerability testing, and provide recommendations for mitigation strategies.
Developed, implemented and documented security programs and policies and monitored compliance across departments.
Manage security incidents and coordinate responses to security breaches, including incident investigation, remediation, and reporting.
Stay up-to-date with the latest security threats, trends, and technologies, and advise leadership on potential risks and mitigation strategies
As Part of Middleware&DevOps team, I worked on DevOps tools and services to design and implement automation solutions, On-boarded applications to the cloud infrastructure, and implemented CI/CD pipeline for automated deployment in Dev, SIT, QA, PT and Production environment using Ansible, Git-bash, XL Release and Jfrog artifactory.
Working experience using Middleware Product WebSphere Application Server, IBM HTTP server, Webmethods integration server, WebLogic, Jboss, Apache Tomcat, Apache Http Server, Oracle Fusion Middleware, Tuxedo, and Tibco suits ( IM, Adapter, BW Engine).
Experience in middleware application monitoring setup using Splunk, AutoSys, AppDynamics and BladeLogic
Having working experience in setup new middleware domain configuration, upgrade version, Patching, migration between Data-centre, DR setup and Testing, application monitoring setup, and L3 Production support.
Good knowledge in Unix shell and Python Scripting, Developed multiple in-house automation applications and tools to improve process efficiency and monitoring.
Provide technical leadership, guidance, and mentorship to the technology teams.
Work with other executives, stakeholders, and teams to identify and prioritize technology initiatives and projects.
I have good strategic thinking ability, strong business acumen, and excellent interpersonal and communication skills.
Production support on Linux Systems in a 24/7 production Environment to maintain all servers and applications.
TECHNICAL SKILLS
Operating System
Windows, UNIX, LINUX
Languages
Core Java, Python, React, Shell Scripting, JavaScript and Python
Database
MS SQL, Oracle, Cassandra
Middleware
WebSphere, WebLogic, Apache HTTP Server, Apache Tomcat, Jboss and Oracle Tuxedo
Messaging Systems
MQ/JMS, Kafka
Versioning Tools
CVS, SCCS, Git, GitHub, TFS.
Vulnerability Management tools
QUALYS, CrowdStrike, Tanium and Tenable IO
CI-CD Tools
Ansible, Mulesoft, XLR, Celestial, Jenkins
Repositories
BitBucket, Nexus, Jfrog Artifactory.
Bug Tracking Tools
Jira, ServiceNow
Atlassian Tools
Jira Confluence.
Cloud Services
Amazon Web Services (EC2, VPC, ELB, RDS, S3, SNS, SQS, Cloud Watch, Cloud Formation), Cloud Foundry, Lambda.
Virtualization Tools
Vagrant, VMWare
Web/App Servers
Apache, Tomcat, Apache HTTP Server, IBM Http Server, Redhat Jboss
Methodologies
Agile, Scrum and Waterfall.
Containers
Kubernetes, Docker, Swarm.
Ticketing Tool
BMC Remedy. IBMMaximo, Nexus
Monitoring Tools
Instroscope, Splunk, Dynatrace, Grafana, AppDynamics, Autosys, Bladelogic
PROFESSIONAL CERTIFICATIONS
Six Sigma Green Belt (Bank of America).
ITIL V3
BMC AR System Admin certification
IBM AIX Admin certification
PATENT GRANTED
Patent#US20160197801A1: Electronic health and welfare monitoring of network server operation
PROFESSIONAL EXPERIENCE
1.Present Role: DevOps-middleware Architect & Enterprise Vulnerability Management specialist.
Employer: BA Continuum Solutions, Client: Bank of America [Duration: April 2011 – April 2023]
Responsibilities:
(i)Dev-Ops Architect
As part of Enterprise Simplification Team, I leads the design and implementation of enterprise applications for multiple Line of business both CIO and CTO teams.
Responsible for building platforms and frameworks to create consistent, verifiable, and automatic management of applications and infrastructure between non-production and production environments.
Design and build DevOps technical solutions for cloud-native, cloud-enabled, and on-prem infrastructure with micro-services and traditional application patterns.
Creating and maintaining infrastructure as code using Chef, Ansible, Puppet and AWS CloudFormation.
Experience with efficient elastic environment and implementations, using Amazon Web Services and Open-shift.
Design and implemented scalable enterprise monitoring system by applying continuous integration/delivery concept.
Perform maintenance and troubleshooting of our enterprise redhat Open Shift system
work continuously improve speed, efficiency and scalability of open shift systems.
Experience in monitoring the availability & performance of RedHat linux servers through commands like mpstat, vmstat, iostat, netstat, Top and Sar.
Managing systems routine backup, scheduling jobs like disabling and enabling cronjobs, enabling system logging, network logging of servers for maintenance, performance tuning, testing, jumpstart & kick-start OS integration, DNS, DHCP, and host server.
Created additional Docker slave Nodes for Jenkins using custom Docker images and pulled them into ECR, worked on all major components of Docker like, Docker Daemon, Hub, Images, Registry, Swarm.
Experience on AWS, focusing on high-availability, fault tolerance, and suto-scaling using Terraform templates, Along with CI/CD with AWS Lambda and AWS code Pipeline.
Worked on Terrform API modules to manage infrastructure and publishing module to the Terraform registry and contributed for end-to-end configuration management to deploy our Products inside AWS environment.
Utilized Jenkins master. Slave architecture to distribute builds on nodes and trigger Jenkins job to build the artifacts using Maven, Deployed the Terraform templates to create the stack.
Maintained Artifacts in binary repositories using JFrog Artifactory and pushed new Artifacts by configuring the Jenkins project using Jenkins Artifactory Plugin.
Active involvement with software release, monitoring, data analysis, data/file syncing, and source code stats.
Develop ansible yml scripts for deployment using ansible, celestial, bit-bucket source code repositories.
Created monitoring, alerting and dashboard capabilities to monitor CI CD and production KPIs and other metrics.
Worked agile development process/environment using tools including JIRA, Stash/Bit Bucket and Jenkins.
Experience deploying API and micro-services into Docker or Kubernetes clusters, integrating DevOps tools such as SonarQube, Nexus, Fortify.
Experience of deploying API and micro-services into Docker and Kubernetes clusters using DevOps Pipelines.
Responsible for application horizon on-boarding, configuration and support for deployment pipelines for DEV, SIT, PT, PROD, and CONT Environments.
Worked on Ansible Playbook updates, Ansible Tower configurations, Python, Horizon bitbucket, Git, Artifactory, Celestial, Docker, Container, Jenkins, and XL Release to automate the build for various release support work.
Worked in container-based technologies like Docker, Kubernetes, and OpenShift, instrumentation Services using openshift for load balancing and adding them to Routes to be accessible from outside, troubleshooting pods through ssh and logs, modification of Build configs, name space, templates, Image streams, etc.
(ii)Middleware Consultant :
Middleware application install, configuration, L3 Production Support & troubleshooting.
Domain Configuration in Web-sphere Application Server, IBM HTTP server, WebMethods, WebLogic, RedHat Jboss, Apache Tomcat, Apache HTTP Server, Fusion Middleware, and Tuxedo.
Worked on ADF, RCU, ORDS, and Apex configuration in Oracle Fusion middleware.
Configuration and Monitoring the JVM performance by analyzing Heap dump, Core Dump, Garbage collection, and JDBC Pools.
Configured Introscope, dynatrace and Appdynamics for JVM health monitoring.
Version upgrade of Oracle Web-logic Server from 11g to 12c, IBM Web-sphere version upgrade in 9x, JDK upgrade in jdk1.8x, Tomcat, and Apache http server version upgrade to remediate the GIS vulnerabilities and security updates.
Troubleshooting and fixing the issues that occurred during the deployment of Java applications and EJB components.
Automated the Deployment process of various WAR, JAR, and EAR applications in clustered environments using ANT scripts, wlst, and automation tools.
Setup and managed Cronjob, batch processing, and job scheduling using shell scripts.
Work on Web Security tools- LDAP Server, SSL Certificates, Ping Federation, Cyberark, HashiCorp, and Client rolebased authentication.
Server platform upgrade to remediate the latest vulnerabilities and secure the applications.
Analyzing the log files, taking thread dumps, JVM Dumps, and Exception stack traces
Server certificate management, update and renew using the key tool, OpenSSL, LDAP and CDSN configuration.
Writing Ant, Shell, and Jython scripts to automate integration and test environments build, including deploying WAR and EAR files, stopping and starting Application Servers and processes and dynamically creating server profiles/instances, and defining resources (MQ connections, etc.) as and when required
Involved in on-call support for major applications that involved troubleshooting issues in application components, application servers, web servers, load balancers, and DNS aliases.
Work coordination among distributed teams located in the US, India, and UK region.
Working in a team to provide 24/7 on-call support for production and non-production environments.
(iii)Enterprise Vulnerability Management:
As part of Vulnerability Management, my responsibilities includes coordination, Remediation, followup, regular connects with stakeholders and with Support groups ( Application Team, Middleware, ADSF, Server-admin, DBAs, OS Patching Team) for appropriate fix implementation.
Software Vulnerability management - Review and provide the remediation solutions using vulnerability management tools like QUALYS, CrowdStrike, Tanium and Tenable IO.
Analyzing vulnerabilities using CVE, CVSS, Severity, Consequence Model, Problem statement, remediation plan, Future trends and impact analysis.
Developed and implemented measures and procedures to protect IT systems from cyber threats and data breaches.
Analyzed network security and current infrastructure to assess areas in need of improvement and develop solutions.
Monitored all production and internal systems for 99.99% availability (Tier 3 customer support, system deployments & builds, remote hands for cross functional teams, circuit provisioning, and capacity planning)
Collaborated with cross functional team leaders to ensure new system designs met standards for monitoring and supportability from an operations point of view
Good understanding of OWASP and threat profile.
Having good understanding in common types of cyber-attacks like phising, Man-in-middle, Deniel-of-Services, SQL injection, Zero-Day Exploit and DNS Tunneling,
Worked with cross-functional teams including Engineering, Security, GIS to address the vulnerability.
Conducted vulnerability management scans, supporting vulnerability management toling, reporting and capturing metrics of data
Managed the lifecycle of vulnerabilities identification, evaluation, prioritization and reporting.
conducted vulnerability scans of the systems, network, endpoints, and applications.
Developed routing tool to provide standard solutions and measure quality, efficiency, and responsiveness of the issues using python modules like.. numpy, pandas.
Analyze the Server( Container, DMZ, Apphost) vulnerabilities and provide the remediation solutions based on QUALYS, CrowdStrike, Tanium and Tenable vulnerabilities and provide recommendation based on CVE, CVSS Problem Statement using MITRE, NVD and CVE.org .
Work with other executives, stakeholders, and teams to identify and prioritize technology initiatives and projects.
Drive innovation and continuous improvement by keeping up with emerging trends, technologies, and best practices.
Ensure that our technology infrastructure is scalable, reliable, and secure, and that it meets the needs of our customers and stakeholders.
Ensure that our products and services meet or exceed industry standards and customer expectations
Develop and implement a comprehensive technology strategy that aligns with the company's business goals and objectives.
Maintain a high level of technical knowledge and expertise and ensure that our technology teams are up-to-date with the latest technologies, methodologies, and tools.
Developed disposition rules to review vulnerabilities and define the technical solutions and effort like Code change, Configuration update, Version Changes etc.
Developed routing tool to provide standard solutions and measure quality, efficiency, and responsiveness of the issues using python modules like.. numpy, pandas, Beautiful Soup, UFT, Selenium and Service-now.
Managing a team for each work-stream, staying educated on current trends and assisting in the development of knowledge portal.
Disposition matrix development using python and json for enterprise data categorization from CMDB and APPHQ ( SOR).
Communication Matrix using python pandas, dictionary and json to create rule-set of each vulnerability type.
Baseline security parameter review and updates, Review Security threats and provide recommendation to prevent and remediate.
CVE Analysis, metric for high contributors vulnerabilities, future trends, consequence model and severity analysis. Provides remediation suggestion on technology changes, mitigation strategies, and potential disruptions to service.
Assists in planning, coordinating and executing engineering projects across various environments (Regression, Performance, Production, and Post-production).
.
2.Role: Software Development and Environment configuration Management
Employer Name: IBM India, Client Name: Vodafone Spain [ Duration: November 2007- April 2011 ]
Responsibilities:
As Software Engineer role I worked on Vodafone spain middleware applications.
Supported Telecom CRM applications using Tuxedo, Weblogic, Infranet, Clarify on Sun Solaris and HPUX servers.
Performed several Server platform upgrade to remediate the vulnerabilities and secure the applications.
JVM Performance tuning and monitoring setup.
Supported Middleware products Tuxedo, Tibco, Weblogic, Infranet, Clarify on HP-UX and Windows servers.
Involved in Domain configuration, New Domain setup, Server and Services setup, queue creations and /Q device setup, tux web server configuration and start/stop, WSL, JSLand tlisten services.
Prepared Shell Scripts and Perl scripts for server administration and application healthcheck status.
Tibco middleware support and administration domain (Adapter, IM Engine, BW components, RVD and EMS communication, Hawk agent, runtime agent).
Debugging and tracing and integration with tuxedo and weblogic using adapter components .
Unix Perl scripting. Perl/Shell scripting for tuxedo health checks, clients, IPC resource management.
My role included and responsible for process and functional design activities, Creating functional requirements as an input to application design, Developing and testing detailed functional designs for business solution components and prototypes.
Supervising application build, test, and deploy activities Planning and executing data conversion activities (e.g., test data),Driving test planning and execution.
Worked in 24X7 on-call support roster and troubleshoot environmental problems.
Environment: Clarify, BEA Tuxedo, Tibco, Infranet, WebLogic, WebSphere, Shell Script, PerlScript, Plataforma, HP-UX,
3.Role: Software Engineer (Application Developer)
Employer Name: Binary Semantics Limited, Client: XCEL Energy [ Duration: January 2007 - November 2007]
Responsibilities:
As OpenSource Application developer, my role includes application development/modification existing modules using Perl, C and Core Java and provide the testing support, develop test test cases and strategy documents.
Role included code modification using C, C++ and core java and write sql query, triggers, procedures, index, parser creation to identify key component from customer comment data.
Perl script creation to support customer utility function in project.
Develop various process flow diagrams and working models to streamline the process.
I involved in debugging and troubleshooting the existing components to ensure the efficiency of task.
Redeveloped modules using C, C++,Perl and CNO tools to implement algorithms.
Created technical presentations to brief the usage of complex tools and techniques.
Tracked the changes in coding by deploying version control tools such Git, CVS, SVN, etc.
Installed jMeter to test the performance of web applications and conducting functionality test.
Records and document each phase of application development for further reference and maintenance operation.
Environment: C, C++, Core Java, Sybase, MySql, Cygwin, MSys, Perl, AIX, HP-UX and Windows .
4.Role: Software Engineer
Employer Name: Binary Semantics Limited, Client: NTTAT and NTT Docomo [ Duration: October 2005 - January 2007 ]
Responsibilities:
As part of BTS Application development team My role includes coding and test cases development, draw out a workable application design and coding parameters with the essential functionalities using C, C++, Core java, MSSQL .
I was involved daily scrum calls, design, built, and maintained efficient C++ code using SDLC process and Performed a key role in planning, designing extensions of existing products while documenting them for the team for future references.
Resolved issues proactively to deliver technical projects concerning quality products including next-generation software.
Implemented performance optimization logic, quality modules while identifying bottlenecks, bugs and devising solutions to these problems.
Developed communication modules using data-structures, algorithm and debugging existing and newer code of server application components. Develop messaging functionality using socket, multi-threading, IPC and STL programming.
During project I worked on design patters factory, singleton, strategy, adaptor, facade design pattern during the development.
Prepared workflows using FSD ( Functional specification documents) and TSD ( technical specification document), created automation scripts using perl, python and shell scripting.
involved in writing optimization techniques for more accuracy modules in C and C++ and PL/SQL.
Developed software test approach, test plan, test case design, and test scripts based on user requirement and specification documents.
Documentation of test plans to test functionalities.
Environment: C,C++, Core Java, SCTP Protocols, Socket Programming, PL/SQL, CVS.
5.Role: Software Engineer
Employer Name: CSC Financials Limited, Client: CITI Bank [ Duration: July 2004 - October 2005]
Supported application development and support for CitiBank loan and debit card application modules and related utilities using C, C++, MingW, Msys on Windows and HP-UX server.
As Application developer I worked on appScan software and modified for the release changes and enhancement, added feature to scan the application form and identify the manual errors.
My role involve in coding and test cases development, Coordination with the onshore team for requirement understanding and daily updates.
Worked on low and high level design documents.
Used waterfall model and worked on Prototype development as well.
Created back-end objects like table, index, sequences, and wrote stored procedures, functions and database triggers in SQL server. Generated reports with Microsoft SQL server reporting service and crystal report.
Developed utility to automate repetitive database processes in lower lane servers.
Supported system integration testing, user acceptance testing and also involved in production changes upon change request.
Develop and executed module test cases on unit and integration testing environments.
Created Test plans, Test cases and test scripts. Also worked in production issues debugging and troubleshooting during offshore hours.
Environment: C,C++, Core Java, Multi-threading, appScan, Documentum, CVS.
EDUCATION
Master of Computer Application ( Completed in 2004 with 74%) from Uttar Pradesh Technical University, Lucknow, India.
Bachelor of Science in Computer Science ( Completed in 2000 with 65%) from Chhatrapati Shahu Ji Maharaj University, Kanpur, India.
Contact this candidate