Security Engineer Cloud

Sitharam Reddy Gaddam

+1-856-***-**** ***********************@*****.***

SUMMARY

Cyber Security Engineer with a Master’s in Cybersecurity from Rowan University, specializing in AWS cloud security, automated testing, and network defense. Proficient in deploying IDS/IPS systems, enhancing SIEM operations, and conducting advanced vulnerability assessments using Python and Bash scripting. Demonstrated success in implementing AES-256 encryption, enforcing ISO/IEC-com- pliant security policies, and reducing breach response times through proactive incident analysis. Experienced in penetration testing, risk management, and automation across hybrid cloud environments. Actively engaged in the cybersecurity community through CTF competitions (NCL, TryHackMe), consistently applying practical knowledge to real-world threat scenarios to harden cloud and network infrastructures.

SKILLS

• Cybersecurity: Network Security (Firewalls, IDS/IPS), Vulnerability Assessment, Penetration Testing, Security Information and Event Management (SIEM), Data Encryption, Cryptography, Cloud Security, Cyber Defense

• Network and Systems: Computer Networks, Risk Management Policy, Scripting Languages (Python, Bash)

• Soft Skills: Problem-Solving, Analytical Thinking, Communication (written and verbal), Teamwork, TimeManagement EDUCATION

ROWAN UNIVERSITY Sep 2022 - May 2024

Masters, Cybersecurity

ANURAG GROUP OF INSTITUTIONS (CVSR) Jun 2017 - May 2021 Bachelor of Science, Computer Science and Engineering WORK EXPERIENCE

KICKSTARTX Dec 2019 - Jul 2021

Cyber Security Analyst

• Executed AWS-based penetration testing, identifying and mitigating critical vulnerabilities in cloud infrastructure to boost security posture.

• Implemented Intrusion Detection Systems (IDS)/Intrusion Prevention Systems (IPS) and firewall configurations to reduce network risks.

• Developed and enforced robust security policies, ensuring strict compliance with specific ISO/IEC standards for information security.

• Conducted detailed security incident analysis using SIEM tools, resulting in a 20% reduction in breach response time.

• Performed targeted employee security awareness training, leveraging SIEM tools to monitor engagement and enhance training outcomes.

• Enhanced penetration testing methodologies, leading to a 25% reduction in identified vulnerabilities and improving overall system security.

• Developed Python scripts to automate vulnerability assessments, which significantly improved detection accuracy.

• Deployed advanced AES-256 encryption techniques for securing data storage on AWS.

• Formulated and implemented risk management policies aligned with cloud security frameworks, enhancing compliance and resilience.

• Streamlined network security configurations using advanced Bash scripting, leading to significant improvement in deployment times.

• Integrated stringent cryptographic standards across all cloud applications to enhance data integrity and confidentiality.

• Directed strategic cyber defense initiatives, significantly strengthening network and cloud resilience against advanced persistent threats. TCS (TATA CONSULTANCY SERVICE) Aug 2021 - Aug 2022 Automation Test Engineer

• Leveraged Postman and REST Assured for integration and functionality testing of APIs, ensuring smooth inter-system communication.

• Employed SQL scripts in Selenium, ensuring robust backend operations and reliable data management.

• Developed Selenium WebDriver scripts to automate user interactions, improving test coverage, efficiency, and interface reliability.

• Developed automation frameworks with TestNG, enhancing test execution efficiency and scalability across multiple environments.

• Designed and executed data-driven test cases using Excel and Apache POI to validate application workflows with multiple input combinations.

• Integrated automated test suites with Jenkins CI/CD pipelines, enabling scheduled test execution and quicker feedback loops for development teams.

• Performed cross-browser testing using Selenium Grid to ensure consistent performance and UI behavior across Chrome, Firefox, and Edge.

• Collaborated with developers and product managers in Agile/Scrum environments to define acceptance criteria and improve test case coverage.

• Implemented defect tracking and reporting using JIRA, ensuring timely resolution and traceability of issues across development cycles.

• Automated regression testing suites to validate stable builds before production release, reducing manual testing efforts by 60%.

• Created reusable page object models in Selenium to enhance maintainability and reduce code duplication across automated test scripts. Citi Bank Aug 2024 - Present

Cyber Security Engineer

• Designed and enforced AWS security architectures, including IAM role hardening, S3 bucket policy audits, and security group restrictions across multiple accounts.

• Automated threat detection and incident response workflows using Python and PowerShell, reducing manual effort and human error by 40%.

• Deployed and fine-tuned CrowdStrike Falcon EDR and integrated alerts with SIEM (Splunk/QRadar) to accelerate threat response across 500+ endpoints.

• Conducted vulnerability assessments using Nessus and Qualys; developed remediation tracking dashboards to ensure SLAs across internal teams.

• Implemented custom SIEM detection rules for financial fraud and insider threat use cases; improved false-positive filtering by 35%.

• Collaborated with DevOps to embed Snyk scanning into Jenkins CI/CD pipelines, ensuring container images met security baselines.

• Led Suricata IDS deployment for east-west traffic inspection and anomaly detection within segmented VPC environments.

• Built internal security automation scripts to ingest STIX/TAXII threat intel feeds into QRadar for enriched log correlation.

• Architected centralized logging pipeline using Filebeat ’ Logstash ’ Elasticsearch for faster root cause analysis.

• Conducted regular compliance audits aligned with SOX, GLBA, and internal InfoSec policies; ensured system readiness for regulatory reviews.

• Developed and maintained security incident response playbooks; conducted tabletop exercises across cross-functional teams.

• Implemented role-based access control (RBAC) across cloud and internal systems to enforce least-privilege principles and reduce identity-related risks.

• Led security architecture reviews for new infrastructure deployments, ensuring alignment with Citi’s secure-by-design framework and cloud governance policies.

• Developed custom alerting and notification integrations (Slack + QRadar + PagerDuty) to streamline SOC triage workflows and reduce MTTR (mean time to respond).

PROJECTS

Bank Loan Prediction

• Developed a predictive model utilizing machine learning techniques to assess loan eligibility based on customer attributes, ensuring accuracy.

• Implemented data preprocessing and feature engineering strategies leading to a streamlined and enhanced model performance. Improved Session Password-Based Security System

• Designed an advanced security system using dynamic password generation, significantly reducing unauthorized access incidents.

• Enhanced traditional security measures through robust authentication protocols, increasing overall system security efficacy. Comprehensive Security Assessment and Automation Plan for an IT Company

• Conducted an extensive security assessment covering policies, tools, MDM, and GPOs, identifying and mitigating critical vulnerabil- ities.

• Created an automation plan incorporating security policies and cybercrime prevention measures, streamlining security processes and reducing manual effort.

Financial Threat Intelligence and SIEM Enhancement Project

• Led a project to enhance threat detection capabilities for a banking environment by customizing SIEM (Splunk/QRadar) use cases targeting financial fraud indicators and insider threats.

• Developed and tuned correlation rules to detect anomalies in login behavior, unusual transaction patterns, and unauthorized access to high-risk banking systems.

• Integrated external threat intelligence feeds (STIX/TAXII) to enrich logs with context on known financial threat actors and malware campaigns.

• Built dashboards and automated reports for audit and compliance teams, aligning with FFIEC and PCI-DSS logging requirements.

• Collaborated with SOC teams to implement a refined alert triage workflow, reducing false positives by 35% and improving MTTR

(mean time to respond)

ADDITIONAL ACTIVITIES

• Demonstrated proficiency in cybersecurity through participation in capture-the-flag (CTF) competitions like National Cyber League and TryHackMe during college.

• Regularly participate in cybersecurity communities and forums, sharing solutions and learning from peer challenges.

• Built a home lab environment using Kali Linux and VirtualBox to simulate penetration testing and improve practical skills.

• Completed multiple labs and challenges focused on OWASP Top 10 vulnerabilities, privilege escalation, and incident response simulations.

Contact this candidate