SUMMARY

• U.S. Citizen success in continuous integration environment focus on QA/Testing of legacy & web server applications, including designing, developing and implementing test plans, test cases and test processes fueling swift corrective actions, significant cost savings and fault - free QA audits.
• Backed by strong credentials including a master degree, dedicated to optimization experienced DevOPS engineer understands the melding of operations and development to quickly deliver code to customers; an advanced command of testing suites, agile methodologies and monitoring tools; and cross-platform skills in Windows, Linux and Unix.

TECHNICAL SKILLS

• SQA Testing &Methodologies
• Test Plans, Cases & Processes
• DevOPS, CANARY
• Scripting & Documentation
• NCC Auditor, Tenable NESSUS, Web Inspect
• Regression & Negative Testing
• UI & Compatibility Testing CICD
• Data Interface & Migration Testing
• Performance, Load & Stress Testing
• UFT, ALM, JIRA
• Testing Automation
• Defect &Bug Tracking
• Test Strategies& Coverage
• QA & QC Standards
• Jenkins, SVN, Pipeline
• Test assessments

PROFESSIONAL EXPERIENCE

DevOPS Engineer

Confidential

Responsibilities:

• Created and executed functional test plans, cases and scripts to uncover, identify and document application use cases, software problems and their causes. Led QA testing that:
• Identified the root cause of intermittent interoperability security glitch in data control system for ELISE.
• Verify application security dependencies for PAY.GOV to support ELISE & MYUSCIS
• Setup overall security test framework for format and value based on vulnerability types.
• Create the correct security workflow and update the framework for testing team where the interactions between systems and interfaces implemented as workflow.
• Transitioned software development efforts to a test-driven development (TDD) process, writing and performing security testing based on requirements for DevOPS, which brought security testing in on the front-end of the development cycle for gains in build quality, software security compliance and programmer productivity.
• Implementing information technology security program upgrades due to new technologies, hardware migration and application enhancement for all 47 NextGen applications.
• Resolving integration issues related to the implementation of new systems, document the process for FISMA compliance develop and implement an information security wifin the existing infrastructure.
• Instituting security measures to ensure awareness and compliance and share wif enterprise wide stakeholders.
• Review and Identify the need for changes based on new security technologies and OWASP Top 10 Most Critical Web Application Security Risks.
• Evaluating security incident response policies and recommending changes when necessary to all 97 AIS and 7 portfolios
• Designing, developing or updating system security measures for comprehensive system security evaluations, audits and reviews.
• Assessing new systems design methodologies to improve software quality; designing, developing or updating system security measures
• Manage cyber security enterprise framework for programs and projects to setup strategic direction for new software and hardware changes and activities, infrastructure upgrade, emergency planning and setup policy enforcement.
• Design, develop, integrate, and update system security measures that provide confidentiality, integrity, availability, autantication multi-tier security measure.
• Conduct systems security evaluations, audits, and reviews; participate in network and systems design to ensure implementation of appropriate systems security policies for all DevOPS pipeline.
• Consult wif end user to evaluate functional & security test requirements to support CICD build process from Jenkins as well as CANARY pipeline and coordinate wif systems architects and developers as needed, to provide oversight in the development of design solutions to ensure software and patches follow DHS compliance.
• Define project security scope and objectives for all DevOPS pipeline based on enterprise policy requirements; develop and document new, update and modified requirements, capabilities, and constraints for design procedures and processes.
• Plans, installs, and configures cyber security test automations for all networks, databases, application using Tenable Nessus, NCC Auditor and Web Inspect to support continuous integration continuous delivery.
• Research current technology to understand capabilities of required system, network, applications; evaluate all available technologies and standards to meet FISMA requirements.
• Ensure the rigorous application of information security, assurance policies, principles, and practices in the delivery of all IT services; run scrum scrum to enforce IT security requirements.
• Responsible for program and project resources allocation, plans, workforce development plans, budget forecasts, initiatives, and policies to support DevOPS pipelines.
• Successfully managed test automation process to deliver major deployment for 7 DOC applications, Debugging and fixing bugs found during development, which interact wif time tracking and visa management system and conduct market research.
• Enhanced function library and associated them wif the software development for component & micro services testing based on requirements, architecture, and design.
• UFT test, created modular scripts, parameterization, shared repository and Re-usable actions to run them from Jenkins.
• Performed Descriptive programming, used conditional and loop statements using VB script as well as run functional & non-functional security test, GUI, Smoke, System Integration, Regression, End-to-end, Back End testing, Ad- Hoc, and Regression testing on ELISE system throughout the project cycle.
• Collaborate wif performance team, security team to manage multiple DevOPS pipeline through all stages of the Software Development Lifecycle (SDLC) including USCIS.
• Responsible for test matrices consistently delivered from DevOPS pipeline key projects, update modify user documentation and Operations manual; and providing updates to all standard documentation as assignments require.
• Identifying, developing and improving SDLC automation process for Central Enterprise Case Database Repository (CECDR) Phases II, Enterprise Data Warehouse Enhancements (EDWE), Project Resource Allocation (PRA), and Service Gateway (SC).

Security Test Analyst

Confidential, Union, NJ

Responsibilities:

• Actively involve wif scenario-based security automation testing for continuous integration/ continuous delivery automation process from Jenkins across 6 NEXTGEN projects analyze each new enhancement and ensure each requirements are working as expected.
• Prevented hundreds of thousands of dollars in erroneous security bypass loop to point of sales terminal (POS) by identifying software security bug in automated discount engine.
• Pinpointed previously undiscovered security flaw in CICD pipeline and stage gate, resulting in formal commendation letter from the VeriFone.
• Implemented API test automation framework for Tenable NESSUS, running automation build from JENKINS using SVN repository.
• Enhanced global security library for security test framework to identify all falls positive and re-use them across all projects during run time from Jenkins nightly build.
• Worked closely wif software developers and took an active role to ensure that the software component meets the highest quality security standards for FISMA compliance.
• Verified the updated requirements and test cases to ALM and ensured that the appropriate modifications were implemented based on the security requirement change requests.
• Worked proactively wif QA team to identified security therads, analyzed, documented, tracked and resolved.
• Reported issues into Rally/ JIRA (bug reporting) system and follow up wif the development/ FQT team until it gets resolved.
• Participated in Requirement Review, Defect Review meetings and provided feedback to ensure that the system meets all primary requirements.
• Responsible for the creation of the Test Plan, Test Scenarios, Functional and Integration Test Cases and Automation Test Script.
• Analyzed EPS, DIF, Pin Pad, AMS and AJB logs to validate the functionality and any issues found during the project.

Software Analyst II

Confidential, Duluth, GA

Responsibilities:

• Short-term emergency release handles in agile methodology.
• Developed and executed Manual test cases for Functional testing of various handheld devices, menus and print options.
• Written and executed Test cases based on Software Test Life Cycle (STLC).
• Performed Testing on multiple versions of printer and label to support MC 3190 and MC 3192
• Developed and analyzed test plan for product driven AS 400 applications test and back end data driven inventory management test.
• Generated Test Plans, Test cases, Test Scripts on legacy applications for inventory engines.
• Reported issues into the bug reporting system and follow up wif the development team until it gets resolved using Quality Center.
• Coordinate and facilitate across integration teams to ensure all of their testing needs, call outs and issues, identified and resolved as per sprint.
• Responsible for creating test plans, Master Test Plans, Coordination Task spreadsheets were maintain on the team site.
• Tested Green Screens workstation on the mainframe via TSO/ISPF, JCL, File Aid.3