Cloud Security Network

KONDERU VAMSHI

Charlotte, NC ***** +1-754-***-**** ***********@*****.***

SUMMARY

●Cybersecurity professional with over 4 years of experience in IT security, risk assessment, and threat mitigation.

●Proven expertise in identifying, analyzing, and mitigating cybersecurity vulnerabilities through penetration testing and security assessments.

●Skilled in deploying and managing security technologies, including SIEM, IDS/IPS, firewalls, and endpoint security solutions.

●Strong understanding of security compliance frameworks such as NIST, ISO 27001, and CIS Controls, ensuring adherence to industry best practices.

●Hands-on experience in incident response, digital forensics, and security operations to detect, analyze, and remediate security incidents effectively.

●Proficient in cryptographic methodologies, encryption protocols, and secure authentication mechanisms to enhance data protection and integrity.

●Experienced in conducting security awareness training programs to educate employees on best security practices and social engineering threats.

●Well-versed in cloud security, including AWS and Azure, with a focus on secure identity and access management (IAM) and network security controls.

●Passionate about continuous learning, staying updated with the latest cyber threats, and implementing innovative solutions to fortify security defenses.

SKILLS:

●Penetration Testing & Vulnerability Assessment: Kali Linux, Metasploit, Nmap, Nessus, Burp Suite, OWASP Top 10

●Programming & Scripting: Python, PowerShell, Bash, C#, SQL

●Cloud Security: AWS Security, Azure Security, Identity and Access Management (IAM)

●Network Security: TCP/IP, Wireshark, Secure Network Design, Zero Trust Architecture

●Compliance & Frameworks: NIST, ISO 27001, CIS Controls, GDPR, HIPAA, SOC 2

●Incident Response & Digital Forensics: MITRE ATT&CK, DFIR, SIEM Log Analysis, Threat Hunting

●Encryption & Cryptography: AES, RSA,

SSL/TLS, Hashing Algorithms

●Security Technologies: SIEM (Splunk, QRadar), IDS/IPS, Firewalls, Endpoint Security, DLP, VPN, IAM, PKI

EXPERIENCE

Cybersecurity Analyst

AT&T-Charlotte,NC.

01/2023-Present

●Conduct vulnerability assessments and penetration testing to identify and mitigate security risks.

●Implement and manage SIEM solutions to monitor and analyze security logs for potential threats.

●Develop and enforce security policies, ensuring compliance with NIST, ISO 27001, and CIS frameworks.

●Perform threat intelligence analysis, identifying emerging threats and recommending mitigation strategies.

●Conduct security awareness training for employees, emphasizing best practices for data protection.

●Collaborate with IT teams to implement endpoint security solutions, firewalls, and intrusion detection systems.

●Investigate security incidents, conduct forensic analysis, and provide detailed reports on findings.

●Assist in cloud security configuration, ensuring compliance with AWS and Azure security best practices.

Security Engineer

Toyota-Hyderabad,IN

05/2020 - 02/2022

●Designed and implemented security controls to protect sensitive data and prevent unauthorized access.

●Conducted network security assessments and recommended enhancements to improve security posture.

●Configured and maintained firewalls, VPNs, and endpoint security solutions to safeguard infrastructure.

●Automated security monitoring using Python and PowerShell scripts to enhance threat detection.

●Assisted in incident response activities, analyzing security breaches and providing mitigation strategies.

●Ensured compliance with security policies by performing regular audits and security assessments.

●Worked with development teams to integrate security best practices into SDLC, ensuring secure coding practices.

●Researched and implemented encryption solutions to protect data at rest and in transit.

EDUCATION AND TRAINING

03/2024 Master of Science: Computer Science

Campbellsville University - Campbellsville, KY [3.9] GPA

Final Grade: [A+]

08/2021 Bachelor of Science: Computer Science

Indian Institute Of Science and Technology- Hyderabad, India.

Projects

1.Building a firewall for a Domain/Website

Designed and implemented a firewall for a domain or website using IONOS and Cloudflare platforms, providing robust protection against cyber threats.

Used IONOS as a domain and web hosting service provider and Cloudflare as a security and performance service provider.

Worked on setting up the IONOS by domain registration and configuring DNS settings along with integrating Cloudflare.

Configured the NGFW (Next Generation Firewall) rules as per the requirements and implemented the advance security features and responsible for Real time monitoring, Testing and Validation.

2.Intrusion Detection System (IDS) using Snort and Splunk

Implemented an Intrusion Detection System (IDS) to monitor and analyze network traffic for signs of malicious activity using Snort and Splunk platforms.

Used Snort for traffic analysis and packet logging and Splunk for searching, monitoring and analyzing machine generated data with powerful visualizations and alerts.

Performed Data forwarding by configuring Snort to forward alerts and logs to Splunk using syslog and set up Splunk for efficient data searching and analysis.

REFERENCES

References available upon request.

Contact this candidate