Home

kumar - CYBER SECURITY ENGINEER

[email protected]

Location: Cumming, Georgia, USA

Relocation:

Visa: H1B

MULTI-INDUSTRY CYBER SECURITY EXPERT | INFORMATION TECHNOLOGY | MITIGATION STRATEGIES Committed Senior Cybersecurity Leader with extensive experience of driving strategic security solutions across diverse industries. Specializes in aligning cybersecurity initiatives with business objectives to enhance compliance and mitigate risks. Key Skillset: GRC and Security Frameworks, Cybersecurity Strategy, Endpoint Protection, SIEM, Email Security, DLP, EUBA, IDS, Vulnerability Assessment, Threat Intelligence, Database Security, MFA, Certificate Management, AWS, Windows/Linux/MacOS, Powershell CAREER HIGHLIGHTS Increased client compliance by 18% (82% to 99.98%) and improved overall security posture by 35%. (Combines compliance and security improvement) Optimized agent upgrades (3 days vs. 2 weeks) and fixed issues impacting 9,000+ endpoints for better efficiency. Training programs (phishing simulations, tabletop exercises) led to a 30% rise in reported security incidents, enabling proactive threat detection. Migrated 1,000+ log sources to the cloud, integrated security solutions (Guardium-QRadar SIEM), and conducted a successful new SIEM PoC, enhancing security visibility and control. WORK EXPERIENCE World IT Center May 2020 Till Date Clients: Warner Media, ONB, LA County Internal Services Dept Sr. Security Consultant Planned, tested, and migrated security solutions (EDR, DLP, SIEM) for clients, ensuring successful implementation and exceeding compliance goals (PCI-DSS, HIPAA, NIST, Zero Trust). Spearheaded the development of a comprehensive DLP and incident response plans and facilitated tabletop exercises to ensure preparedness for security incidents. Implemented and architected robust endpoint security controls (SentinelOne, MS Defender, Cisco AMP) across diverse environments, ensuring compliance with security frameworks. Utilized cyber defense solutions to investigate data leakage, suspicious activities, identify root causes, and streamline response efforts. Led comprehensive cybersecurity exercises (scoping, development, evaluation) to identify improvement areas and strengthen client's incident response & coordination. Translated complex cyber threats and incident response for business & executive audiences, ensuring clear understanding for non-technical stakeholders. Established key performance and risk indicators (KPIs & KRIs) to measure the effectiveness of implemented security solutions. Continuously evaluated security solutions, leveraged threat intelligence, and adapted security strategies to proactively address emerging threats. Built a strong security culture by executing security projects end to end, training/mentoring teams, integrating vendor solutions, and creating a holistic security posture. Tapestry Oct 2019 May 2020 Sr. Cyber Security Analyst Led the cloud migration of QRadar Log Source, facilitating site decommission and optimizing resource utilization. Developed and optimized use cases for QRadar SIEM, minimizing false positives and streamlining the identification of suspicious activity. Utilized QRadar for security event analysis, historical data correlation, and threat investigation, yielding valuable insights into the organization's security posture. Ensured system performance, EPS/licensing compliance, and data retention; partnered with Windows/Network teams to optimize bandwidth and address security-impacting operational issues. WaveStrong Inc Jan 2019 Oct 2019 Clients: IBM, CMC, FIS, Equifax Sr. Security Engineer Administered and maintained IBM Infosphere Guardium, ensuring optimal database security through installation, configuration, patch management, and policy enforcement. Designed, implemented, and optimized Forcepoint Data Loss Prevention (DLP) policies to safeguard sensitive information, adhering to PCI-DSS regulations. Utilized Tenable to assess vulnerability risk levels and documented detailed findings, recommending appropriate remediation plans. Leveraged CrowdStrike to uncover threats, investigate incidents, and generate security awareness reports. Expertise in cyber kill chains, malware, and IOCs. Trisync Technologies Oct 2015 Jan 2019 Clients: Synchrony Financial, Stamford Health, AIG Cyber Security Specialist Streamlined multiple cybersecurity projects from inception to completion. Led regular meetings, provided status updates, and addressed challenges. Documented best practices for Cybereason EDR, Microsoft Defender, deployed new test packages, and performed gap analysis to optimize production environments. Identified and escalated key findings and issues related to Forcepoint DLP functionality. Effectively utilized Mimecast, Proofpoint to analyze suspicious emails, update security policies, and manage email filtering based on client requirements. Managed user access and permissions using Active Directory and implemented secure multi-factor authentication (DUO) for additional protection. Architected UEBA with Exabeam and configured secure medical apps (Airwatch) and ensured HIPAA compliance. Provided Level 2 analysis and triage of malware incidents via Splunk ES, analyzed email-based malware, and reported suspicious activity using various security tools. Deloitte Dec 2013 Oct 2015 Information Security Consultant HSBC Jan 2012 Dec 2013 Information Security Analyst Keywords: information technology microsoft Louisiana