SUMMARY:

• Technically sophisticated information security/business/IT system analyst with solid history using AES algorithm on a Cloud System, Adept at developing platforms and designing user interface. Demonstrate experience in development, implementation and management of information technology systems and creating and transforming business requirement into functional requirement. Demonstrate experience with project management and business models.
• Proficiency in using the following tools; RAT (Remote Administrative Tool), Metasploit, Kali Linux, John the Ripper, Phishing and Keylogger.
• Lead technician support on all Operating System difficulties end - user, routers, switches maintenance.
• Performed hands-on administration, monitoring, and troubleshooting of Local Area network (LAN), resulting in optimum performance and minimum downtime.
• Administer Microsoft Windows Servers (Active Directory), Microsoft Workstations, and network devices.
• Assisted in Trouble shooting Virtually, Remotely and Physically using VMware, Team viewer, Remote Desktop Connection for Various System and Windows Issues.
• Developing test plan, test cases and test procedures for clients.
• Configured and Maintained LINUX Server using PUTTY.
• Designed and Populated specific tables, databases for collection, tracking and reporting of data using SQL.
• Performed DAST using Qualys and Nessus Web App Scanner.
• Excellent knowledge in OWASP Top 10 and issues identifications.
• Perform supervisory and controlling functions to make sure the project is at par with the expected standards at all stages
• Generated and maintained job-related operational documentation and business process diagrams.
• Skilled team member and lead with a track record of directing multiple tasks effectively to ensure on target completion of all deliverables.
• Outstanding interpersonal and communication strengths leveraged to support new development projects.

TECHNICAL SKILLS:

Programming:: PHP, SQL, HTML/CSS, C/C++, Python, JavaScript, Java, NOSQL, Database, PowerShell, Batch Programming.

Software and other Tools:: MS Windows, Net Beans, Unix/Linux, MS Visual Studio, MS word, MS Excel, Active Directory, Putty, Eclipse for android development, Agile, Photoshop

Information Security Tools And Framework: RAT, Metasploit, Kali Linux, Wireshark, John the Ripper, Nessus Scanner, Burp Suite, Qualys Web App Scanner, DAST, Splunk, IBM Qradar, NIST, PCI DSS, OWASP Top 10, Palo Alto Networks, Symantec Endpoint Protection, Oracle IAM.

Networking Tools: Ethernet 802.3, TCP/IP, OSI Layer, DHCP, DNS, WINS, ARP, FTP, Telnet, DSL/Cable, hubs, routers (Cisco IOS), cabling, SMTP, POP3, NAT, VPN, VLAN, RIP, Ethernet 802.11, LAN/WAN.

PROFESSIONAL EXPERIENCE:

INFORMATION SECURITY ENGINEER

Confidential

• Managed and Maintained and give persistent tuning of Log Management and Security Incident and Event Management arrangements.
• Assisted in Global Implementation, support, training and maintenance of Splunk for System and Log Analysis.
• Undertaking specialized data security episode reaction, examinations, assembling and investigating information.
• Used Wireshark to capture RTP packets from a Google video chat to analyze network performance.
• OWASP Top 10 Issues identifications like SQLI, CSRF, XSS.
• Classify the critical, High, Medium, Low vulnerabilities in the applications based on OWASP Top 10 and prioritizing them based on the criticality.
• Worked on software and system vulnerability processes, manage vulnerability patches and perform vulnerability assessments on systems and services.
• Supported in the implementation of Corporate Cyber Security capital projects by assisting with the implementation of devices; evaluating vendor solutions.
• Performed Vulnerability Assessment and Web Application Security testing.

BUSINESS/IT SYSTEMS ANALYST

Confidential

• Developing test plan, test cases and test procedures for clients.
• Ensure proper risk and information security management is performed at the program and project levels
• Administer Microsoft Windows Servers (Active Directory), Microsoft Workstations, and network security devices.
• Constructed PowerShell script applications and HTA applications for technicians to use as tools to improve efficiency in managing boot media cloning and manual software installations.
• Ensure a process of continuous information security improvement through collection and analysis of stakeholder feedback and trend analysis
• Created batch and PowerShell scripts for deployment of new patches and automation of cleanup instructions as well as common issue resolutions
• Manage Office365 and Active Directory using Windows PowerShell.
• Assisted in Trouble shooting Virtually, Remotely and Physically using VMware, Team viewer, Remote Desktop Connection and Various driver upgrade tool to fix problems related to Boot Sector, BIOS, Registry, Disk Mgmt., Device Mgmt., Driver Mgmt., MS Configuration including Startup issues and safe boot issues, Group Policies, Active Directories, HDD and SSD including IDE and ACHI management and configuration, File Systems, Paging size management using Windows Virtual environment. Issues relating to Web Browsers(Chrome/IE), Temporary files, Cookie and Extension Management.
• Works proactively with direct teams to deliver both strategic and tactical initiatives throughout the entire SDLC
• Troubleshoot and Configured Chrome and IE including Private browsing and History management, Cookies and various extension connected with it. Migrating bookmarks to and from between browsers, Managed temporary files including contents to increase browser efficiency. Helped in casting from browser to different device using Chrome Cast.
• Helped customers in solving issues with group policies, Network and System issues.
• Hands on Experience in troubleshooting Application Authentication issues in Active directory Multi domain Environment.
• Troubleshoot/diagnose the faulty Memory/Disks on Red-hat Linux and coordinated with apps team to replace.
• Troubleshoot all types of system or service related UNIX problems by co-coordinating with vendor and development Engineers.
• Performed hands-on administration, monitoring, and troubleshooting of Local Area network (LAN).
• Used LINUX Putty gen to convert .sh file to .ppk file.
• Used LINUX putty configuration to use the .ppk file to start the server with the IPaddress .
• Used LINUX Scripting to change the group policy and listening port for the server and giving access to listen to lower level ports.
• Used WinScp to transfer server upgrade package to LINUX server and upgraded the server by installing various packages using LINUX Script.
• Saved and documented the LINUX Script log for future references.
• Server 2012 Active Directory deployment to production and testing.
• Developed project plan, schedules and budget based on client requirements.
• Worked closely with management to approve and baseline project plan.
• Worked with Business Analysts, Developers, Testers and Support team to deliver project on-time.
• Executed complex SQL queries to perform verification with database.
• Participated in the agile development methodology, iteration and agile release process.
• Performed analysis and presented results using SQL, MS Access, Excel, and Visual Basic scripts.
• Worked with advanced calculations to draw about data findings
• Designed and Populated specific tables, databases for collection, tracking and reporting of data using SQL.
• Used Excel functions to generate spreadsheets and pivot tables
• Designed and structured database systems and managed database security.
• Work alongside the Manager and Specialists in the Process and Performance Management
• Proactively manage all workflow queues and manage case load to ensure timely resolution

INFORMATION SECURITY ANALYST

Confidential

• Used Remote Administrative Tool (RAT) to Access another virtual system and be able to have full oversight of the tool.
• Utilized Metasploit and Kali Linux to access another computer and android device.
• Analyzed network and packet information by using Wireshark.
• Decrypt hash type codes and cracked passwords by means of John the Ripper.
• Performed Web Application Testing using Qualys and Nessus Web App Scanner.
• Built and analyzed data models and dashboards using Splunk.
• Worked on SIEM tool IBM Qradar for reporting and data aggregation.
• Used SIEM tool IBM Qradar on adding the newly build windows and Linux log servers and creating policies for different alerts.
• Provides central contact point for user support and problem management for managed security applications (Firewall, IDS, Encryption, SIEM, EIQ, Web filtering)
• Clarified PCI DSS (Payment Card Industry Data Security Standard) requirements to stakeholders and consulted on technical solutions for compliance.
• Developed Cyber Security Standards on NIST Frameworks and insured their proper implementation to reduce the risk of vulnerability to IT assets.
• Develops, updates, and completes systems security plans based on the National Institute of Standards and Technology (NIST) Special Publications and conducts an annual self-assessment.
• Performed vulnerabilities assessments with the aid of Nessus Vulnerability Scanner to detect potential risks on a single or multiple asset across the enterprise network and remediate potential risks.
• Managed the team to identify security risks relating to PCI-DSS
• Assisted with Symantec Endpoint Encryption research and implementation
• Assisted in deployment of AWS (Amazon Web Services) database and encryption.
• Create and build new servers with VMware vSphere and Amazon Web Services
• Assessed daily malware reports and alerts sent to employees via email
• Update and maintain firewall rules/configurations with Palo Alto Networks
• Communicate security policies and procedures to internal and external resources

INFORMATION SECURITY & IAM ANALYST

Confidential

• Implemented AES (Advance Encryption Standards) Algorithm on a Cloud System.
• Coded in Java and Python using Net Beans and Eclipse to implement the algorithm on a virtual database.
• Managed and monitored a team of 4 members as team leader and delegated their work schedule.
• Worked in implementing AES algorithm in a hospital-based cloud system.
• Used Oracle IAM to administer identity and security access globally for human and functional accounts across multiple system and applications.
• Work with the project teams on implementing the defined business Roles within Access & Identity Management (AIM) solution.
• Updating existing access management and provisioning workflows
• Execute and track security process related activities including User ID management.
• Managed Operations within IAM environment at the client, including application patching and upgrades and certificate management.

BUSINESS/IT SYSTEMS ANALYST&ADMINISTRATOR

Confidential

• Designed, developed, and modified reporting processes in accordance with client specifications.
• Provide support to the head manager in meeting crisis situations and finding solution to the technical and non-technical problems
• Compiled and tracked data and analyzed data to generate reports.
• Interpret data from primary and secondary sources using statistical techniques and provide reports.
• Performed data queries and prepared reports on daily, weekly basis
• Perform supervisory and controlling functions to make sure the project is at par with the expected standards at all stages
• Train the team members in meeting their individual goals and performing the responsibilities at par with the standards
• Establish meetings with the clients and financial advisors to determine the budget restrictions for the projects
• Lead technician support on all Operating System difficulties end-user, routers, switches, and firewalls maintenance.
• Worked on broad range of technologies, including business process tools such as Microsoft Project.
• Upgrade Red-Hat Linux kernel
• Worked with User Interface (UI) team to create report mockups from wire frames to ensure that functionalities
• Solaris Kernel Patching and Firmware Upgrades
• Applied Unified Modeling Language (UML) methodology tools such as MS Visio to design Use Cases and Business Process Flow diagrams.
• Promoted, MS Excel, MS Access, MS Visio, technical assessment tools, Data Warehouse tools and Design.
• Established service by walking callers through new installations and configurations.
• Prepared testing schedule for complete systems.
• Status reporting of campaign activities
• Documentation of the ETL process & developing the data flow diagram.

SOFTWARE ENGINEER & WEB DEVELOPMENT

Confidential

• Simulated an automated voting in a school system.
• Coded in JAVA using Eclipse.
• Worked on developing and testing the source code in a team of 5 members.
• Project involved using HTML and CSS, JavaScript and Python to download the map of India with all the states marked and the tariff prices for each carrier were visible.
• Uploaded the India map in paint and found out the degrees of pointers for each state.
• Attached the tariff rates for each carrier to its corresponding states with help of CSS.
• Created Database Schema Design, Data Definition Language and various SQL queries for data retrieval.
• Created and maintained Test Package documents & guidelines.
• Worked on providing enhancements to the system that involved designing the solution, development and requirements analysis, implementation.