Passionate, value-driven, and experienced Security Analyst seeking a challenging career in IT Security. Ability to prioritize, manage multiple projects with time constraints and budget restrictions. Supported many big clients with high availability, security audits, vulnerability assessment, and designing policies.
-
Experience
UNIVERSITY OF NEW HAVEN, West Haven, CT
Graduate Student Worker, Aug 2018 –May 2020
Successfully assisted in running a cyber security camp called the GenCyber camp as a python and ethical hacking tutor for High School students
Assisted in the management and review process in the workflow of applicants, specifically overseeing the reviewing and acceptance process of large quantity international financial documents, verifying the authenticity of them, in conjuncture with USCIS guidelines and University standards
Designed a detailed working network for the University where CISCO devices were configured on Packet Tracer for LAN and WAN designs, Amazon AWS Cloud was implemented for running instances of Mail Server, DNS, DHCP and Active Directory
Implemented NMAP API in python for creating a GUI where the user could run various types of scans with multiple options and create reports in the desired format (XML, PDF, and Word)
Exploited OWASP Top 10 attacks on a Dummy Web Application (DVWA)
Sentimental and emotional analysis of big data (Twitter data set) on the upcoming US Presidential Elections on Hadoop environment
NETSURION TECHNOLOGIES PVT LIMITED, Bangalore, India
Information Security Analyst, Oct 2016 – Jul 2018
• Managed security incident investigation and diagnosis (perform triage on incidents which are reported by the EventTracker SIEM tool to filter out false positives and known accepted activities).
• Monitor real time attacks, intrusions, and unusual activities on client environment
• Responsible for the application of IT Security Policies, processes & procedures to mitigate risks to Customers
• Provided Daily/Weekly vulnerability assessment report along with patching recommendations.
• Continuous product tuning based on critical systems to capture real time attacks and malicious activities
• Guiding the team and discussing the technical topics, case studies, and research emerging threats regularly
• Successfully performed and assisted in internal security audits
• Oversee completion of the day-to-day checklist(s), including log review, alert analysis, and follow up on escalation status
• Provided remediation steps to Customers based on appropriate findings.
• On-call support for 24x7 critical incidents escalations & giving an overview to the client on the threat within SLA
• Maintaining customer compliance requirements (PCI, HIPAA, and NIST)
• Introduced new processes to help improve security operations and bring value to the customer
• Maintaining SLA for the Incidents and giving resolution using the FreshDesk ticketing tool. Worked on Managed services (Admin and Configuration level) like IDS (Snort) and VAS (OpenVAS & GreenBone)
• Worked on in-house SIEM product (EventTracker) with elevated privileges.
• Maintained a high level of quality while supporting security incident tickets, requests, and customer queries
• Engaged with customers and maintained professional relationships
• Prepared executive & management reports based on customer compliance needs
IMPULSE TECHNOLOGIES PVT LIMITED, Bangalore, India
Intern- Security Analyst (VA/PT), Jun 2016 – Oct 2016
Information gathering using NMAP
Vulnerability assessment for network hosts and web application
Designing policies for various vulnerability assessment tools
Network configuration review scans
Running OWASP scans using N-STALKER, Acunetix, Burp suite and Qualys
Design, and execute penetration tests against applications and infrastructure
Assign vulnerability scores utilizing the common vulnerability scoring system (CVSS)
Report generation for NIST security framework
-
Projects
Designed a detailed working network for the University where CISCO devices were configured on Packet Tracer for LAN and WAN designs, Amazon AWS Cloud was implemented for running instances of Mail Server, DNS, DHCP, and Active Directory
Implemented NMAP API in python for creating a GUI where the user could run various types of scans with multiple options and create reports in the desired format (XML, PDF, and Word)
Exploited OWASP Top 10 attacks on a Dummy Web Application (DVWA)
Sentimental and emotional analysis of big data (Twitter data set) on the upcoming US Presidential Elections on Hadoop environment