Cyber Security Specialist

RAJANIKANTH SUMBET

San Ramon 925-***-**** *********@*****.***

LinkedIn : Rajanikanth Sumbet

PROFESSIONAL SUMMARY

Highly accomplished Senior Cyber Security Specialist with 8+ years of experience in driving organizational security through expert vulnerability assessments, strategic incident response, and compliance management within an 18+ years IT career. Proven track record of enhancing threat detection, preventing data breaches, and ensuring regulatory compliance in fast-paced environments. Skilled in Microsoft Azure Sentinel, Splunk, and LogRhythm, with expertise in SIEM management, cloud security, and threat analysis. Certified in CEH, CompTIA Security+, and Microsoft Defender XDR, with a strong educational foundation in Computer Applications. Skilled in creating SOPs, optimizing playbooks, and ensuring compliance with HIPAA, PCI_DSS, and GDPR. A results-driven professional with excellent problem-solving skills, a strong work ethic, and a passion for staying up-to-date with the latest cybersecurity trends and technologies. SKILLS

● Core Cybersecurity: Firewall Configuration, DDoS Prevention, Incident Response, Threat Hunting (MITRE ATT&CK, Cyber Kill Chain), Security Analysis, SOC Operations (L1, L2), CIA Triad, Endpoint Security, Network Security.

● Cloud Security & Identity Management: Microsoft Azure (Azure Sentinel), AWS, GCP (Alerts and Monitoring), IAM, RBAC, PIM, Microsoft Office 365 Security, Regulatory Compliance (HIPAA, GDPR, PCI DSS).

● Threat & Vulnerability Management: Vulnerability Analysis, Penetration Testing, Malware Analysis, Threat Intelligence, Nessus, Qualys, Nmap, Burp Suite, Recorded Future, ThreatConnect.

● Email & Endpoint Security: Proofpoint, Mimecast, Microsoft Defender for Office 365, Microsoft Defender for Endpoint, Symantec Endpoint Protection, CrowdStrike Falcon.

● Security Tools & Platforms: SIEM (Splunk, Azure Sentinel, LogRhythm, QRadar, Sumo Logic), EDR/XDR

(CrowdStrike, Microsoft Defender Suite), IDS/IPS (Palo Alto Firewalls), Wireshark.

● Automation & Scripting: Python, PowerShell, Bash, KQL, SOAR Playbooks, Splunk Scripting.

● Operating Systems: Windows (Server/Desktop), Linux (RedHat, Parrot OS, Kali Linux), macOS, Cisco IOS.

● Cybersecurity Frameworks & Standards: NIST 800-18, ISO 27001, MITRE ATT&CK, Cyber Kill Chain, HIPAA Compliance, CIA Triad.

● Network Products: Cisco Firewalls, Palo Alto Firewalls.

● Additional Skills: SOP and Playbook Creation, Log Analysis, Security Incident Management, Phishing and Spam Email Analysis, Security Operations Monitoring, Presentations, Service now, Sharepoint.

● Soft Skills: Multitasking, Professionalism, Problem-Solving, Self-Direction, Time Management, Reliability, Interpersonal skills, Thorough analysis, Provide guidance, Mentorship, Attention to Detail, Written and verbal communication, Adaptability, Flexibility, Strong analytical skills, Conflict resolution, Management Skills, Relationship management, Fast paced, Work under Pressure, Motivated. WORK HISTORY

CAPITAL ONE. San Leandro, CA

Cyber Security Specialist 06/2023 – Present

● Performed security and privacy assessments, including vulnerability assessment and penetration testing, to determine compliance and strengthen organizational security posture.

● Led security incident responses and investigations, identifying root causes and consulting with teams to implement solutions within SLA timeframes.

● Implemented Azure Sentinel, Azure Security Center, and Application Gateway to enhance monitoring and incident response capabilities.

● Successfully established and tested Azure AD Tenant for production, ensuring secure deployment and scalability.

● Configured and managed Azure AD Connect, Microsoft Azure Active Directory, and Azure Single Sign- On to streamline user authentication and access.

● Hands-On experience with security tools, such as Splunk, QRadar, and Symantec Endpoint Protection.

● Conducted thorough vulnerability assessments of applications using tools like Nessus and manual techniques, adhering to OWASP standards.

● Automated security controls, processes, and metrics to streamline operations and enhance organizational security.

● Integrated DevOps into the cyber security infrastructure, significantly increasing system resilience and response times.

● Managed real-time security monitoring for a network of over 1000 devices, preventing significant data loss.

● Provided continuous monitoring and threat analysis for the firm's cloud infrastructure, enhancing overall network security.

● Experience with diverse assessment tools for monitoring and mitigating potential cyber threats.

● Conducted regular audits and tests to ensure the effectiveness of data protection protocols.

● Managed and enforced data integrity policies across various network systems.

● Developed and maintained policies related to identity access management, improving overall organizational cyber security posture

● Applied triage skills to identify and prioritize cyber threats, reducing system vulnerabilities by 30%.

● Performed comprehensive risk analysis to identify potential cybersecurity threats and vulnerabilities

● Managed onboarding projects for security hardware/software implementations and updates, ensuring seamless deployment across systems.

● Conducted event correlation and analysis using tools like Wireshark, Nessus, and TCP dump to identify patterns and mitigate potential risks.

● Played a key role in maintaining PCI DSS compliance for critical applications, securing payment card data and meeting industry standards.

● Proactively participated in threat hunting initiatives to identify advanced threats and mitigate risks before breaches occurred.

● Develop and maintain Standard Operating Procedures (SOPs) and incident response playbooks tailored to the banking domain, leveraging the MITRE ATT&CK framework.

● Conduct regular audits and assessments to ensure adherence to security policies and compliance requirements in banking operations.

● Performed regular audits of IT infrastructures to ensure adherence to cybersecurity standards and protocols.

● Collaborate with cross-functional teams to deploy secure infrastructure for banking applications, ensuring seamless compliance with financial industry standards.

● Conduct Knowledge Transfer (KT) sessions to train teams on secure practices for handling banking data and managing cyber threats.

● Strengthen endpoint and network security to protect customer accounts and prevent unauthorized access.

Managed and maintained the company's SaaS platforms ensuring maximum cyber security.

● Apply expertise in the Cyber Kill Chain, CIA Triad, and threat mitigation to enhance the bank's security posture against evolving cyber threats. Enhanced organization's digital security by leveraging expertise in multiple programming languages to design robust defense strategies.

Managed and improved Cybersecurity Operations to safeguard company data and prevent unauthorized access.

● Developed and refined cybersecurity policies, procedures, and playbooks to align with organizational goals and industry best practices.

● Exhibited superior Stakeholder Management skills by regularly updating all parties involved on the progress of cyber security measures.

● Successfully utilized conflict management techniques to resolve disputes during team projects, enhancing overall cyber security effectiveness.

● Performed regular vulnerability assessments and updates on routers to maintain robust cyber security.

● Demonstrated effective leadership in training new hires on latest cybersecurity practices and protocols.

● Implemented IT security strategies, effectively reducing system vulnerabilities by a significant margin. EBAY INC. San Jose, CA

Senior Consultant (SOC Analyst) 06/2020 – 05/2023

● Monitored and analyzed security events using SIEM tools (LogRhythm, McAfee ePO, Palo Alto, Mimecast).

● Provided real-time threat detection, incident response, and security monitoring to protect against cyber threats.

● Monitor security events and alerts generated by Microsoft Sentinel, and respond to incidents in a timely and effective manner.

● Implemented CI/CD pipelines to enhance cybersecurity measures and streamline software updates.

● Conducted risk assessments and updated System Security Plans (SSP) using NIST 800-18 guidelines to ensure regulatory compliance.

● Identified and addressed vulnerabilities based on client security policies and regulations such as GDPR, PCI DSS, and HIPAA.

● Managed email security solutions, including Proofpoint and Mimecast, to prevent phishing attacks and malware infiltration.

● Utilized strong communications skills to explain complex cyber security concepts and risks to non- technical team members.

● Supported the deployment and monitoring of compliance dashboards in Office 365 Tenant, aligning with organizational security policies.

● Developed cloud incident response plans and playbooks, enabling rapid and effective response to security incidents.

● Conducted proactive vulnerability management for cloud applications, automating remediation processes for efficiency.

● Demonstrated exceptional verbal communication skills in effectively coordinating with cross-functional teams on cyber security initiatives.

● Enhanced overall system security by demonstrating exceptional teamwork in identifying and mitigating potential threats.

● Assisted in the integration of cloud-based security solutions with on-premises infrastructure to ensure seamless operations.

● Collaborated with stakeholders to assess cloud security risks and implement mitigation strategies tailored to the organization's needs.

● Leveraged Power BI and Azure Security tools to provide management with detailed insights and actionable metrics on security posture.

● Maximized productivity by utilizing set goals skill to meet all project deadlines and exceed expectations in the field of cyber security.

● Maintained expertise in cloud trends, Azure updates, and best practices to keep security measures aligned with evolving technologies.

Cognizant technology Solutions San Jose, CA

Senior Consultant (SOC Analyst) 08/2016 – 05/2020

● Successfully managed Security Operations Center (SOC) operations, monitoring network traffic and responding to potential threats.

● Played a pivotal role in analyzing complex security issues, identifying root causes, and proposing effective solutions.

● Conducted thorough web application penetration tests, identifying vulnerabilities and recommending security enhancements.

● Actively participated in threat hunting initiatives, proactively identifying advanced threats and potential breaches.

● Involved in weekly and monthly meetings with other teams to review and discuss upcoming production changes and policy modifications.

● Create Policies, Procedures, Reports, Metrics, and provide network and host-based security to each host within the organization.

● Utilized SIEM (QRadar) systems to monitor and analyze security events, promptly escalating potential threats for further investigation.

● Led the content development of cyber-security policies and procedures, ensuring thoroughness, accuracy, and compliance with industry standards.

● Successfully implemented risk management strategies to safeguard company's digital assets from potential cyber threats.

● Applied strong analytical abilities in conducting detailed risk assessments and developing effective cyber security strategies.

● Collaborated with L2 analysts to conduct in-depth investigations into complex incidents, providing insights into attack vectors and mitigation strategies.

● Assisted in the development of incident response playbooks, streamlining response processes.

● Successfully managed Security Operations Center (SOC) operations, monitoring network traffic and responding to potential threats.

● Played a pivotal role in analyzing complex security issues, identifying root causes, and proposing effective solutions.

● Managed and enhanced technical experience in cyber security protocols to ensure company-wide data safety.

● Exhibited enthusiastic participation in team projects related to cyber threat analysis and risk management.

● Utilized SIEM systems to monitor and analyze security events, escalating potential threats for further investigation.

● Collaborated with senior analysts to contribute to in-depth investigations into complex incidents.

● Assisted in refining incident response processes and documentation.

● Used PowerPoint to conduct training sessions on new cybersecurity measures and protocols. Cognizant technology Solutions San Jose, CA

Salesforce Consultant (2010 – 2016)

Siebel Consultant (2005 – 2010)

EDUCATION

Bachelor of Computer Applications

Osmania University - Hyderabad

CERTIFICATIONS

● Sentinel One Incident Response

● Certified Ethical Hacker (CEH).

● CompTIA Security

● Microsoft SC 200.

● Microsoft Defender XDR SC 900.

● Mastercard Cyber Security (Forage Internship)

● Pwc Switzerland (Forage Internship)

ACCOMPLISHMENTS

● SIEM (Microsoft sentinel, Splunk, LogRhythm, IBM Qradar consoles)

● Have a deep knowledge in identifying and analyzing suspicious events

● Versatile, bilingual professional and ability to manage sensitive materials.

● Managed and improved organization's systems security, reducing potential threats by 30%.

● Able to use various security tools to perform logs and packet analysis as well as performing Security SIEM Operational tasks - Analysis, Filters, Active channels, Reports, Dashboards and Suggestion of fine-tuning on existing rules

● Have good Knowledge on TCP/IP, security concepts, WAN and LAN concepts, routing protocols, Firewall security policies and good understanding on different types of attacks

● Finally, can perform malware analysis, phishing analysis with the overall objective to ensure Confidentiality, Integrity and Availability of the systems, networks and data.

● Cyber Security Foundation Professional Certificate

● Preparing for CISSP Certification

Contact this candidate