Network security professional with 4 years of Experience. Experience and Skills include SIEM and GRC Tools like RSA envision, RSA Netwitness, RSA Security Analytics and RSA Archer Extensive Experience in Application Security and penetration testing. In-depth understanding of network components, infrastructure, and Log collection methods. Extensive experience in customer support, market analysis and New Business Development Intense experience in designing rules for Regulatory Compliance like PCI, HIPPA, FERPA,SOX and GLBA
Work Experience
May 2011 to Current
RSA, The security division of EMCBedford, MASr. Software Quality Engineer, Technical Lead
Device integration testing technical Lead: Tested for Device Integration with more than hundred disparate event sources with SEIM (envision and Security Analytics) SA Content Testing: Technical lead in verifying alerting rules which includes Correlation, Application and Network rules using knowledge of IP based applications like WWW, SMTP, DNS and SNMP.
Event Stream Analytics rules testing lead: Used ESPER in the backend for testing rules which uses packet Meta and log Meta for firing alerts.
Malware Analysis (MA) for IDS and IPS rules: Familiar with wide variety of malware tools for static and dynamic analysis of Malwares.
Also designed Yara rules and Lua parsers for identification and prevention.
Performed Penetration Tests: Highly experienced in OWASP and lead penetration tester using STRIDE mythologies and measuring DREAD matrix Implemented full stack of SA for CIRC: Designed rules to monitor the corporate network for backdoors, Trojans, sniffing, DoS and SQL injections and so on.
Also worked as system and network admin for the SA CIRC stack.
Functional and Continuous Engineering (CE) Testing: Designed and tested new product features and CE bugs.
The same was automated to avoid regressions.
Also Implemented cross functional system test environment to mimic a real world scenario.
Tested SA integration with Archer and ECAT: Installed and configured Archer and ECAT for them to interact with SA.
Have a very good understanding on Archer and ECAT functionality.
Continuous Integration (CI) Testing: Designed and implemented CI framework for continuous build regression testing using VMware, Jenkins and Python automation framework.
Environment Installations: RSA Archer, RSA ECAT, RSA Security Analytics, RSA envision and various other disparate devices for SIEM.
Experienced with Data Science from Big Data using HDFS file system, Hadoop, MapR and Pivotal Managed Block storage systems: Worked with VNX, DAC, Pivotal and Warehouse systems for data storage.
Crane CompositesNew Business Development Market Research Analyst
Assisted Vice President and Managers of New Business Development with market intelligence about the product.
Used SQL Server for data analysis.
Created executive reports and presentation which helps NBD team to make decisions.
Gathered and analyzed market data from different cross functional units of business, markets of various companies, government sources, and by talking to the customers and non-customers based on various costs study parameters.
Used Business Intelligence Tools like SSAS, SSRS and OLAP for reporting and data analysis.
Involved in all the phases of Software Development Life Cycle (SDLC) methodologies throughout the project life cycle.
Assisted the PM in setting realistic project expectations and in evaluating the impact of changes on the project plans accordingly and conducted project related presentations.
Prepared AS IS Business Process document through interaction with internal officials and by analyzing the existing information systems.
Recommended enhancements, and implemented strategies to streamline current processes, suggesting process to make it cost-effective.
Monitoring QA teams, validating the test cases, encourage designing new test cases based on customer feedback.
Education and Training
Northern Illinois University DeKalb, IlManagement Information SystemsM. SGPA: GPA: 3.76/4.00Management Information Systems GPA: 3.76/4.00
Annamalai University Chidambaram, IndiaComputer Science and EngineeringB.EComputer Science and Engineering
CEH Bedford, MAEthical HackingTrained
Publications
"The impact of Global Economic crisis on the American Workforce", (with Russo, L. Nancy.), Proceedings of the Global Financial Crisis, Bosnia. |(Sept 2010)
AWARDS & RECOGNITION
Won Excellence level awards for innovation, passion and key contribution at RSA year and again
"Exceeding" performance ratings at RSA year and again
*Won Pavlovic Scholarship - An award for Academic Excellence at NIU
Skills
streamline, automation, Big Data, Business Intelligence, Business Process, Content, data analysis, designing, DNS, DoS, features, firing, Functional, government, IDS, information systems, injections, IP, Linux, MA, market, MongoDb, network admin, Network, New Business Development, OLAP, Postgres, presentations, processes, project plans, Python, QA, reporting, SDLC, SMTP, SNMP, Software Development, SQL, SQL Server, Unix
