TECHNICAL SKILLS:

Security Tools & Compliance: Nessus, Trend Micro, HP Web Inspect, Splunk (SIEM), NIST SP 800 - 53, FedRamp, FISMA/HIPAA, ARS

DevOps Tools: Jenkins, Chef, GitHub, Ansible- (CI/CD), REST APIs

Cloud Services IaaS, PaaS and SaaS: AWS & Azure platforms

Operating Systems: Linux and Windows Server 2012 R2 and Windows Server 2016

Databases: Microsoft SQL Server, MySQL and PostgreSQL | DynamoDB (NoSQL)

Virtualization: VMware (ESXi, vCenter, vSphere Client) and Oracle VirtualBox

Tools: Proficiency in the following Atlassian- JIRA, Confluence; ServiceNow

PROFESSIONAL EXPERIENCE:

Confidential, Woodlawn, MD

Cloud Security Engineer

Responsibilities:

• Execute platform security assessments and vulnerability mitigation, coordination, benchmarking and advise on enhancements to strengthen Center for Medicaid & Medicare (CMS) SaaS resilience.
• Oversee and resolve AWS instance and component security configuration drift, root cause analysis and recommend improvements to advance the baseline.
• Collaborate with Cloud Operations/Platform Team on the design of and implementation of Cloud (AWS and Azure) security configurations and tools.
• Lead remediation and continuous improvement across the cloud security posture with effective countermeasures and targeted mitigations as part of CDM team.
• Develop clear risk insight from analysis of security, network and application logs and threat intelligence to drive improvements in cloud security posture through engineering solutions using cloud security technologies.
• Able to leverage AWS and Azure monitoring components to create threat models and guidance on countermeasures.
• Provide security expertise for cloud based agile environment, and work closely with functional-area specialists, cloud architects, and security specialists in designing solutions for CMS Marketplace.
• Support certification and accreditation efforts within the program as well as, coordinating and performing vulnerability assessments through the use of automated and manual tools (Tenable, NMAP, etc.)
• Ability to work with APIs and Plugins to integrate security tools into established CI/CD pipelines with comprehension in the security areas of Key Management Systems, Certificate Management, Encryption, Penetration Testing, Vulnerability Scanning, Security and Monitoring tools, etc.

Confidential, Washington, DC

Cloud Security Analyst

Responsibilities:

• Implemented Infrastructure, Network, and Application Security best-practices, including the secure transport and storage of sensitive/private data following NIST guidelines.
• Established and maintained a professional relationship with System Owners (SOs) and Technical Leads (TLs) of information systems under my purview. Interview SOs and TLs about the operations and maintenance of security controls in their systems as part of assessment efforts.
• Developed and implemented solutions using AWS Cloud platform and its features which includes EC2, VPC, EBS, AMI, SNS, RDS, EBS, CloudWatch, CloudTrail, Cloud Formation, Auto-scaling, CloudFront, IAM, S3, and Route53.
• Analyzed system requirements and ensures that systems will be securely integrated with current Applications.
• Performed data gathering at various Confidential operational facilities, security testing (i.e. Nessus, HP WebInspect), analyzing system documentation and Standard Operating Procedures (SOPs), and providing recommendations to mitigate discovered vulnerabilities.
• Reviewed vendor documentation, system architecture, technical manuals, and standard operating procedures, as well as develop supporting documentation for certification and authorization deliverables.
• Liaised with System Owners from a security perspective in support of integration of new and existing policies, procedures, and technologies, including satellite navigation and advanced digital communications for modernization of US Air Traffic Infrastructure.
• Working knowledge of DevOps methods and CI/CD automation practices (Ansible, Git and Jenkins).

Confidential, Washington, DC

Cloud Engineer

Responsibilities:

• Responsibilities included performing on-site applications/systems integration, testing, customizing efficient workflows, training end users, and managing software launch.
• Actively participated in configuration of SSO integration between Local User repository (like LDAP) of local datacenter and AWS IAM using SAML for AP Global Campus project.
• Provided recommendations to clients with respect to cloud migrations and prepared technical implementation roadmaps for AWS adoption of new product offerings.
• Created various billing alarms to assist clients with managing their AWS cost for AP video and images and integrated 3rd party software utilizing the MOS Protocol (a XML and Web Service communication protocol) utilized by content delivery software into ENPS. Design workflows, support, troubleshoot, test, and approve companies as partners after undergoing Quality Assurance (QA) testing.
• Designed and created highly scalable, highly available, fault tolerant, highly secured, distributed infrastructure (IAAS) using AWS EC2 instances, EBS Snapshot, S3, Elastic Load Balancer, Auto Scaling, Cloud Watch, Cloud Formation, RDS, KMS, Lambda, SNS etc. for the digitization of 2TB worth of archival records and images across the globe.
• Worked with a team of SysOps Admins and DevOps engineers to design AWS Cloud Formation templates to create multi region web applications and databases and the configuration of CI/CD tools such as CodePipeline, CodeDeploy and Jenkins.
• Develop Systems Security Plans (SSP), Security Test and Assessment (ST&A) plan, Security Requirement Traceability Matrix (SRTM), Security Assessment Report (SAR), Security Impact Assessment (SIA), Risk Assessment Report (RAR) and other Security Package artifacts towards annual reassessment/ FISMA compliance efforts.
• Implemented monitoring process of cloud environment and notification system using CloudWatch and SNS for our premium instances.
• Designed data retention strategy along with automatic backup plan using SNS and scheduler.

Confidential, New York, NY

Systems Administrator - On Contract

Responsibilities:

• Designed and created AWS Network Diagram as well as both Windows & Linux AMI based servers for EC2 instances for law firms, and schools across the Tri-State.
• Provided day-to-day support of applications and services, resolve functional and performance issues.
• Interacted with clients to capture and gather user requirement, performing functional and detailed design analysis.
• Performed gap analysis between base and targeted architecture and Cost analysis and Sizing of infrastructure.
• Designed and developed AWS Cloud Formation templates to create custom VPC, Subnets, NAT to ensure deployment of web applications and completed, reviewed and maintained Information.
• Security System policy documents, System Security Plans and Security Assessment Plans for submission to the CISO for approval.
• Worked with team of engineers in designing and creation of complete CloudFormation Templates (Json/YML Template) to implement whole AWS infrastructure through scripting.
• Used CI/CD tools such as Git and Jenkins to deploy web application in both developments, Testing and Production environment.
• Facilitated LAMP installation and configuration on Redhat, Ubuntu and Amazon Linux instances and requirement analysis to find feasibility to migrate On-Prem apps into AWS Cloud in terms of Cost, Security and availability.
• Defined Migration plans and strategy for cloud infrastructure and data from On-Prem data center to AWS Cloud, which also included legacy applications.
• Led efforts to implement the migration of on-premise data warehouse to the cloud for Non-Profit clients using RedShift.

Confidential, New York, NY

IT Systems Specialist

Responsibilities:

• Responsibilities included monitoring 24/7 NOC Center, supporting various business units within the organization.
• Handle troubleshooting and maintenance for network systems, and installations of new workstations and servers for clients.
• Tasked with prioritizing tickets and routing them to the appropriate tech, or handle them remotely in compliance to SOA agreement.
• Managed multiple IT requests and resource allocation to provide high level technical solutions to increase productivity for end users.
• Analyzed client IT documentation and helped initiate project to re-write IT documentation including disaster recovery plans and network usage policies, by working closely with departmental heads and members of my team.

Confidential, New Hyde, NY

Junior Application Developer

Responsibilities:

• Project lead for on-site applications/systems integration, testing, customizing efficient workflows, training end users, and managing software launch.
• Led efforts during the software conversion process for enterprise applications across North & South America.
• Provided Tier 2 support with analysis and recommendations, serving as point person to collaborate with integration partners, synchronize our joint response to customers, and develop a plan to resolve the issue.
• Integrated 3rd party software utilizing XML and Web Service communication protocol for purposes of content delivery software.
• Designed workflows, support, troubleshoot, test, and approve companies as partners after undergoing Quality Assurance testing.
• Assisted in developing custom Web parts for application support toolset, and manage SQL Server Integration Services.
• Created Web sites using IIS/Windows Authentication in SQL Server 2008 on Windows 2008 servers QA testing and Unit testing for .Net and Java Web applications for brand-name marketing applications, such as Del Monte Campbell's, Phillips Senseo, and Hellman's.
• Implemented and tested components (such as FileUpload, Login Authentication, E-commerce, and Content Management modules) for several client projects.

Confidential, New York, NY

Systems Engineer

Responsibilities:

• Provided application support with the migration of ABC websites from Perl and C to .Net and C#.
• Supported with documentation for web applications and participated in testing results.
• Technical support to news personalities such as anchors, correspondents, producers in news and broadcast who were on critical air time deadline; installation and maintenance of various types of hardware and software for several departments.
• Created and maintained Microsoft Active Directory, and provided support for a variety of local and network applications including MS Office, Internet Explorer and in-house mainframe applications.
• Performed imaging and installation tasks of operating systems such as Windows from network sites ensuring proper applications are installed for various departments, configuration, troubleshooting and upgrading desktops/laptops and removal of spyware.
• Installation and configuration of Smart phone devices, VPN, Citrix, AGNS and Wi-Fi Cards.