MAGESH KUMAR

DevSecOps Engineer with extensive expertise in designing, implementing, and managing complex computer networks tailored to organizational needs. Proven track record in troubleshooting critical network issues, ensuring minimal downtime while enhancing operational efficiency through timely project delivery within budget constraints. Strong collaboration with cross-functional teams has led to innovative solutions for system security and resilience against cyber threats, safeguarding vital company data. Adept in managing cloud-based infrastructure services and proficient in scripting languages such as Python(basic), Bash. 

• Designed and implemented AWS infrastructure using Terraform templates for various environments, such as development, testing, staging, and production.
• Configured and managed AWS services such as VPC, EC2, Security Groups, IAM, ECS, CodeDeploy, CloudFront, S3, and SQS using Ansible playbooks and roles.
• Deployed and managed microservices-based applications on AWS using Docker and Kubernetes.
• Set up and maintained CI/CD pipelines using Jenkins to automate the build, test, and deployment processes.
• Secured AWS environments and ensured compliance with industry standards and best practices.
• Monitored and analyzed the performance and availability of AWS resources and applications using CloudWatch.
• Troubleshot and resolved issues related to AWS infrastructure, configuration management, containerization, CI/CD pipelines, and application deployment.
• Conducted regular vulnerability assessments and penetration testing to enhance the organization's security posture.
• Managed security incidents and investigations, effectively mitigating threats, and minimizing potential risks.
• Collaborated with cross-functional teams to design and implement security controls to meet compliance requirements.
• Provided security awareness training to employees to promote a culture of cybersecurity within the organization.
• Experienced Professional with years of experience as an IT Security Professional in IT Infrastructure, Risk security, Information Security, and Cyber Security.
• Information-security expert with a diverse technical background in enterprise networking, server infrastructure, database technologies, and system security, configuration management and policy implementation for various Cyber Industry leading security platforms.
• Completed 5 monthly audits by performing various network and operating systems simulation attacks to find vulnerabilities.
• Adapting tests in accordance with the latest methodology used by malicious actors - this helped prevent 35% more phishing schemes amongst staff.
• Extensive professional experience in SIEM operations and implementation, administration, implementation, and monitoring
• Working as a part of Threat Intelligence team performing malware analysis, advanced cyber threat detection & security advisory integration with QRadar and Splunk.
• Experience with network monitoring with SIEM Splunk Wireshark, Information Security & Network security configuration and functions.
• Help analyze findings in investigative matters, and develop fact-based technical reports detailing events over specified periods of time
• Prepare reports and documents case details, development and outcome
• Knowledge of proper forensic investigation techniques when working with compromised system images or files
• Global mind-set for working with different cultures and backgrounds
• Hands-on education and demonstration using: Linux (through a Virtual box), Nessus, Nmap, OpenVAS, Burp Suite, OWASP- ZAP, Wireshark, scripting in Bash, and Active Directory.
• Knowledge of distributed Splunk installation with Forwarders, Clusters, Search head cluster.
• Hands on experience with several vulnerability forms i.e., SQL injection, XSS, Tenable, Firewall, Hippa, Palo Alto, Security frameworks such as NIST, NIST SP A and NIST SP, HIPAA.
• Configured private and public facing AWS load balancers etc.
• ARP, SAST, DAST, IAST and RASP best practices and application security.
• Perform vulnerability scan with Nessus for improper configurations, missing patches, hosts, network, and insecure credentials and accounts, experience with HPE Fortify for code Vulnerability analysis reviews and Web Inspect scan.

Bachelor of Science (BSc) in Computer Science