Skills
Experienced Multi Cloud Security Engineer skilled in Security Architecture, Cloud Security, DevSecops, Devops, Security Operations and Remote IT Infrastructure Management Services
SKILLS: Full stack security skill sets include:
● Benchmarking Standards: CIS, NIST & CSA
● Compliances: PCI DSS, SOC 2, GDPR & ISO 27001
● Solution Architecture frameworks: TOGAF, Azure Blueprints, AWS WA Framework
● Secure SDLC
o SAST & DAST & Software Composition Analysis Tools
Github dependabot, Checkmarx, SonarQube, Vera Code, IBM App Scan, BlackDuck, Codecy, OWASP ZAP & Dependency Tracker
o IAST - Contrast Security (Community edition), Checkmarx
o Frameworks - OWASP SAMM 1.1 & 2.0
● Cloud Security
o AWS
AWS WA framework, Security Hub (CSPM), Guard duty, Config, SCM, Trusted Advisor, Inspector, IAM Access analyzer, Macie
o AZURE
Microsoft Defender ,Cloud, Security Center (CSMP), Sentinel, AZSK Baselines, Log Analytics, WAF, Firewall, Network watcher, MCSB
o GCP
Cloud IDS, Security Command Center, Cloud Armor, VPC Flow Logs,
• Other Vendors - Paloalto Prisma (CSPM and CASB) Cloud Security Alliance (CSA) Frameworks, CIS & NIST Secure Design and Best Practices Guides
• Network, Web-applications, API’s & Mobile Apps Security Testing, Vulnerability scanning, Penetration Testing
o Tenable Nessus Scanner, Acunetix, Qualys, OpenVAS & Kali-Linux
o Burp Suite Professional
● Cloud Infrastructure Security Testing, Hardening (Infra, OS, Applications and Network), Container Security, Linux Security Modules
● IDS, IPS & endpoint Security – Alert logic, Fortigate, F5, PfSense, Snort & Suricata, CISCO AMP & Umbrella and CISCO Secure X
● WAF & Bot Protection – Cloud Flare, Perimeter X, AWS WAF, Azure WAF
● SIEM Solutions – AlienVault, OSSIM, Azure Sentinel, Splunk, LogRhythm
● Identity & Access Management: OKTA, AAD, OpenID, OAuth 2.0, SAML, PingFederate
● JAVA & PHP App Security & Hardening, Security Auditing
● Accustomed to OWASP top 10 Vulnerabilities, API Security, Cryptography, Threat Modelling (app centric, Data Centric & Asset centric)
● Big Data, BI & ML Apps/Tools Security:
o Working experience on secure designing of Big Data Infrastructure workloads hosting Apache Kafka, Apache Hadoop, Hive, Apache Spark & EMR Clusters
o Working experience in secure designing, hardening, and auditing of Data engineering Infrastructure, applications & data pipelines built on Azure & AWS Cloud services.
● Agile: Software Development Methodologies: SCRUM & ITIL.
● Project Management/Defect Tracking Systems: CQ, JIRA,
● Devops Tech Stack:
o Version Control Systems: SVN, Git, Gitlab, GitHub, BitBucket & Perforce
o CI/CD Tools: Jenkins, TeamCity
o Scripting: Shell and Python
o Build Tools: Ant, Maven, MS Build
o SCM & Infrastructure Automation Tools: Ansible, Puppet, Terraform, AWS Cloud formation
o Containerization: Docker, Traditional Kubernetes, Azure-AKS, AWS-EKS
o App Monitoring Tools: DataDog, New Relic, App Dynamics
o Log Monitoring Tools: Sumologic, ELK Stack, Azure Log Analytics
o Infrastructure Monitoring: Nagios, Zabbix, AWS & Azure Monitoring tools
o OS: Windows Server 2003, 2008 (R2), 2012 (R2) & 2019, 2022, CentOS, Redhat, Ubuntu, Kalilinux & Mac
● Programming Languages: JAVA & Python
● Database: PostgreSQL, MySQL, MSSQL, Document DB, MongoDB, DynamoDB
● Web & Application Servers: Apache, Nginx, IIS, Apache Tomcat, JBOSS
● Serverless: AWS Lambda & Steps Functions, Azure Functions
● Virtualization Tools: Citrix Xen-Server, Open-source XEN, Hyper-V
About
● Over 15 years of experience in IT sector with 10+ years of experience in the areas of Cloud Security, DevSecOps & Security Architecture domains handling Security Operations, Security Assessments, DevSecops and Devops Assignments in heterogeneous environments.
● Expertise in the areas of Multi-Cloud Security Design & reviews, Solution Architecture, Security Audits, Vulnerability Assessments, Risk Assessments, Web Applications, Serverless & API Security, Continuous Security Automation, Compliance and Source Code reviews.
● Proficient in Managing & Securing AWS & Azure Cloud Components and other Cloud Platforms
● An experienced DevSecOps architect integrating security into Agile/DevOps practices by using DevSecOps & S-SDLC principles, processes and tools enforcing security automation into CI/CD pipeline
● Working Experience on Securing & managing Dockers, Containers and Serverless Applications in traditional infrastructure and Managed Container based Cloud offerings.
● Working Experience with deploying, securing, managing & monitoring of Cloud Infrastructure, Web Applications, Application servers, DB Servers, Big Data Applications & BI Applications
● Agile development experience nesting security into SDLC and Solution Architecture life cycle and working in a fast-paced environment, managing multiple projects in collaboration with cross-functional teams
● Keeping up to date with knowledge of current standard security practices & technologies, trends, advisories, and vulnerabilities
● Work Authorization:
o Canadian Citizen and eligible for TN Visa
o Visited USA business units for few assignments
Profile Photo
