SUMMARY:

• Experienced Security Consultant with 5 years of IT experience with a focus on designing and developing security solutions
• Knowledge and experience in standard Security and regulatory frameworks including ISO 27001/31000 , NIST, HIPAA and PCI DSS
• Expertise in Gathering and analyzing metrics, key risk indicators and maintain scorecards defined within the area of information security to ensure our information security program is performing effectively and efficiently
• Familiar with general security risk management principals and best practices
• Hands on experience with security consulting and research
• Responsible for working with Endpoint Management team to manage software deployment to PCs using tools such as 2008/2012 Active Directory, Microsoft WSUS patching, Anti - virus and endpoint protection. Creation and management of PC Build Images for Windows, and application for PCI security policies.
• Oversee Vulnerability assessment /penetration testing of scoped systems and web applications to identify system vulnerabilities.
• Helped application teams in on-boarding Splunk and creating dashboards, alerts, reports etc.
• Monitoring and remediating daily security alerts generated by end users and also responsible for effectiveness of tools and scans, as well as assessing and tracking risk of exposure
• Provided guidance, recommendations, best practices, etc. for vulnerability operations, stabilize and optimize system performance, including rules and reports, assist with threat models, data flow and creating documentation
• Worked with developers, QA to integrate security into lifecycle and testing, security input during feature release and security technology recommendations
• Experience in security Information and Event Management Tools like IBM QRadar and RSA Archer.

PROFESSIONAL EXPERIENCE:

Sr.Security Engineer

Confidential, Providence, RI

Responsibilities:

• Installed and maintained security software including, Symantec endpoint protection, Backup Exec 2015, Encryption Management, RSA Authentication manager
• Completed proof-of-concept thin-client web framework for enterprise intelligence applications with web developer under extreme deadline.
• Developed Application Security program (DAST, SAST, IAST) at the enterprise level to identify, report and remediate security vulnerabilities from applications deployed in DEV, PRE-PROD and PROD environments.
• Designed, documented and executed maintenance procedures, including system upgrades, patch management and system backups.
• Specifically, security testing has been performed to identify XML External Entity (XXE), Cross-Site Scripting, ClickJacking, and SQL Injection related attacks within the code.
• Developed threat modeling framework (STRIDE, DREAD) for critical applications to identify potential threats during the design phase of applications.
• Implemented file system security by applying hashing techniques for protecting data stored in files on the file servers.
• Administered PKI, cryptography, certificate management and implemented dual keys to address segregation of duties issue between DBAs and security admins.
• Participated in the development of IT risk assessments for enterprise applications.
• Reviewed source code (Java/J2EE/C#/.NET/Spring/FTL/JavaScript) and identified security vulnerabilities.
• Perform manual security testing for OWASP Top 10 vulnerabilities like SQL Injection attacks, cross site scripting (XSS), CSRF, Session Management etc.
• Implemented DevOps for the entire application security scanning including, automatic scanning, application of security policies, upload the results to the enterprise portal.
• Automated the build and release management process including monitoring and tracking changes between releases using Continuous Integration tool Jenkins
• Setup Jenkins as CI/CD for integrating build tools into the development life cycle.
• Implemented, and automated security controls, governance processes, and compliance validation
• Troubleshooted and resolved web application issues escalated from customer support and other departments with a 100% success rate.

Information Security Engineer

Confidential, Irving, TX

Responsibilities:

• Installed and maintained security software including, Symantec endpoint protection, Backup Exec 2015, Encryption Management, RSA Authentication manager
• Installed and configured Windows 2012/2016 server
• Created various policies for group access control and authentication of users; reset passwords; created Active Directory for entire network
• Experienced in the escalating process of security incidents
• Utilized ServiceNow ticketing system for incident and change management along with escalations
• Provided remote desktop support via TeamViewer, VNC, and Skype screen share for customers to provide instant support; supported queries via phone, fax, and email.
• Extensive Experience with Symantec DLP and RSA DLP architecture and implementation for enterprise level.
• Perform research, analyze and understand log sources utilized for security monitoring focusing networking devices.
• Consult clients on automating business processes & risk management activities in the RSA ArcherGRC .
• Assist penetration testing and investigation.
• Implementation with NIST SP A and NIST SP .
• Perform vulnerability scans using Nessus and prepare reports.
• Create policies, alerts and configure using SIEM tools
• Work experience with IT policies, procedures, and standards are related to doing security review using the NIST standard specifically with NIST and NIST for HIPAA security rules. Review the Logs for malicious user activities

Security Analyst

Confidential

Responsibilities:

• Evaluated enterprise risks, document processes and systems in flowchart and narrative form, and design audit requirements
• Manage all repeated threats to all systems and perform vulnerability tests
• Experienced on Setup Splunk Forwarders for new application tiers introduced into environment and existing applications
• Worked closely with Application Teams to create new Splunk dashboards for Operation teams
• Developed ISO-based controls that address regulatory requirements associated with PCI, HIPAA and SOX
• Tracking the receipt, implementation, and compliance of information assurance vulnerability assessment and documenting information assurance initiatives ensure that systems, networks, and data adhere to security policies and procedures
• Risk Management, Vulnerability Management, Intrusion Prevention, Incident Response
• Adding new vulnerabilities to the Vulnerability Database for various platforms with proper exploits
• Assist developers in remediating issues with Security Assessments with respect to OWASP standards
• Support and Operational experience of GRC systems
• Help lead the Risk System (GRC) development and implementation
• Perform all GRC configurations for enhancements and maintenance
• Implemented a new GRC system, as part of the overall project team.
• Integration of IDS/IPS to SIEM and analyze the logs to filter out False positives and add False negatives in to IDS/IPS rule set.
• Responsible for testing and implementation IBM QRadar with setup to AD (Active Directory) and LDAP.
• Troubleshooting the issues which are related to IBM QRadar.

TECHNICAL SKILLS:

Programming Languages: Python, Jupyter Notebook, C++, C#

Software: MS Office, O365, Sharepoint, Nessus, Wireshark, Metasploit, RSA Archer, IBM Appscan, Burpsuite, Nmap, Acunetix, Nexpose, Checkmarx, Fiddler.

Operating Systems: Windows, Mac, Kali Linux, Linux

Concepts: OWASP Top 10, DDoS, OSI Model, Phishing, XSS(Persistent, DOM Based and Reflected), NIST, HIPAA, PII, AWS, DNS, SIEM, IDS/IPS, PKI, VPN, OSPF, SSL, Active Directory, Endpoint Protection, Security Onion, Network Security, HTTP, TCP/IP, Proxies, Firewalls and Protocols, Machine L earning, Cryptography, Application Security, Security Engineering.