Application Security Web
Resume:
Umayal Muthaiah
Phone: 732-***-**** Email: ******@*******.***
PROFESSIONAL SUMMARY
Over 18 years of IT experience specializing in application support, security, and cross- technology collaboration.
Proficient with ITIL tools such as Jira and ServiceNow for managing production support and bug fixes.
SANS Certified Application Security Professional (GWEB) and CompTIA Security+ Certified, with expertise in web application security, logging, alerting, and penetration testing.
AWS Certified Developer Associate with hands-on experience in AWS Cloud environments, including CloudWatch, Log Insights, IAM, and SSO.
Extensive experience in Data Design and Development using databases like Microsoft SQL Server, MySQL, Oracle, Teradata, and Netezza.
Strong background in Database and Web Application Development using Java/J2EE technologies.
Skilled in SAST and DAST tools, with practical experience in Python and Salesforce.
Expert in GRC tools, particularly LogicGate, for building applications and workflows.
Experienced in managing penetration testing for networks, web applications, and APIs.
Proficient in ETL processes for data extraction and transformation across diverse platforms.
Adept in Web-Based Application Development using HTML, DHTML, CSS, JavaScript, JSP, and Servlets.
Known for strong communication and analytical skills with a proactive, results- oriented approach.
TECHNICAL SKILLS
Languages: Java, SQL, PL/SQL, XML, C++, C, XHTML, HTML, CSS, JavaScript, AJAX, C#
Development Tools: IBM RAD, WSAD, Eclipse, WebLogic Workshop, OpenLDAP, iBatis, Hibernate, SSIS, SSAS, Oracle SQL Developer
Application/Web Servers: WebLogic, WebSphere, Apache Tomcat, Oracle JDeveloper, IIS
Security Tools: PhishER, ReliaQuest, IBM QRadar, Cisco Web, Email Gateway, LogicGate, Microsoft Defender
DAST/SAST Tools: SonarQube, CodeScan, Acunetix, Burp Suite, Contrast, CheckMarx, Fortify
IAM Tools: Shibboleth, Okta
Databases: Informix, Oracle, SQL Server, Teradata, Netezza, MySQL, DB2, MS- Access, Apache Derby
Scheduling Tools: ODI, SQL Server Agent
Scripting Languages: JavaScript, Python
Version Control: CVS, Tortoise SVN, GitLab
Environments: UNIX, Red Hat Linux, Windows, AWS EC2
Documentation Tools: Confluence
ITIL Tools: Jira, ServiceNow
Monitoring Tools: Splunk, CloudWatch
EDUCATION
Bachelor of Engineering in Computer Science
Bharathidasan University, India
PROFESSIONAL EXPERIENCE
Proviniti Sr. Production Support Engineer
Oct 2023 – Present Client: Fiserv
Collaborate with the product and QA teams to raise and track Jira tickets for bugs until release completion.
Manage production incidents using ServiceNow.
Coordinate with on-site and offshore development teams to resolve production bugs and critical issues.
Analyze, prioritize, and manage daily tasks, while educating peer groups.
Work with cross-functional teams to address critical partner issues.
SSO implementation for bank partners using Catalyst, collaborating with product and security teams.
Manage the yearly renewal of Catalyst certificates, communicating with partners for updates, and testing access.
Enable partners in Catalyst and performed user setup using AWS Glue jobs.
Monitor CloudWatch logs and Splunk alerts for critical issues.
Prepare and maintain documentation of production support scripts and procedures. Walker & Dunlop Sr. Application Security Analyst Oct 2020 – Jun 2023
Developed and implemented an Application Security Program, focusing on DAST and SAST.
Managed security assessments, ensuring compliance with OWASP Top 10 and SANS25 standards.
Collaborated with development teams on code reviews and vulnerability remediation.
Presented executive summaries of security assessments to stakeholders and senior management.
Developed secure coding training programs for developers.
Managed penetration testing for networks and web applications.
Developed LogicGate applications for third-party vendor assessments and audit remediation.
Participated in a Web Application Firewall POC with GCP.
Managed SIEM logging alerts and phishing email alerts. Infosys Limited Technology Lead
Apr 2011 – Oct 2020
Client: Verizon NJ Feb 2020 – Oct 2020: Managed production support for Verizon's Electronic Payment System (VEPS).
Client: Dow Jones NJ Feb 2012 – Jan 2020: Managed IAM with Shibboleth and Okta, configuring SSO.
Client: Citigroup NJ Sep 2011 – Jan 2012: Worked on Unified Access Layer UI for distributed data.
Client: MetLife USA Jul 2011 – Aug 2011: Contributed to Data Masking Shared Service.
Distribution by Air, Inc. NJ Programmer/Database Developer Mar 2006 – Apr 2011
Developed server-side components and client-side validations for business applications.
Implemented XML parsing for shipment delivery confirmations.
Contact this candidate