Summary
Overview
Work History
Education
Skills
Websites
Certification
Timeline
Generic

Ashish Kumar

Hyderabad

Summary

Cloud & Security Engineer with 7+ years of experience securing AWS, GCP, and O365 environments. Supports Infrastructure Assurance by performing triage on security reviews and providing secure-by-design guidance to engineering and product teams. Skilled in security posture reviews, risk assessments, and using tools like SentinelOne and UpGuard to strengthen overall security posture.

Overview

7
7
years of professional experience
1
1
Certification

Work History

Security Engineer

New Relic
Hyderabad
10.2024 - Current
  • Serve as a technical resource for the Infrastructure Assurance and partner teams, providing subject-matter expertise on cloud and enterprise security controls.
  • Perform day-to-day operational tasks including triage of security reviews, JIRA ticket management, and maintaining documentation for team runbooks and processes.
  • Assist product and platform engineering teams in implementing security best practices across multi-cloud environments (AWS, GCP) and internal services.
  • Conduct security posture reviews for O365 and GCP Cloud, identifying misconfiguration, compliance gaps, and improvement opportunities.
  • Perform security design and architecture reviews for engineering, product, and design teams, providing practical recommendations for secure setup and identifying potential risks early in the development lifecycle.
  • Utilize tools such as SentinelOne (endpoint protection and threat detection) and UpGuard (attack surface and posture management) to assess vulnerabilities, analyze misconfiguration, and guide IT teams in remediation.
  • Provide security guidance to ensure a secure-by-design approach for infrastructure and services, aligning with internal security standards and best practices.
  • Collaborate cross-functionally with IT, Compliance, and Product Legal & Privacy teams to support security initiatives, audits, and risk assessments.
  • Contribute to continuous improvement of the organization’s overall security posture through process enhancements, policy updates, and proactive risk mitigation.

Cloud Operation Associate

Amazon Web Services
Remote
02.2022 - 09.2024
  • Managed continuous security monitoring and incident response across a complex AWS network infrastructure, ensuring compliance with industry standards.
  • Triage and investigation of all threat detection, refining analysis techniques to improve accuracy.
  • Conducted in-depth code reviews of IAM roles and policies, ensuring adherence to the principle of least privilege and reducing excessive permissions.
  • Engaged actively in incident response, improving response time during security events.
  • Implemented automation improvements, streamlining investigation procedures and enhancing operational efficiency.
  • Proficient in leveraging AWS CloudFormation for Infrastructure as Code (IaC) and implementing CI/CD pipelines to automate deployment processes and enhance development efficiency.
  • Operated Managed Service platforms, collaborating with internal service teams to tailor infrastructure solutions to meet unique customer needs.
  • Troubleshot complex infrastructure deployments, recreated customer issues, and developed proof-of-concept environments to follow cloud best practices.
  • Applied advanced troubleshooting techniques to deliver tailored solutions, enhancing customer satisfaction.
  • Streamlined AWS user access management, configured policies and MFA, and optimized EC2 and S3 bucket policies, improving overall security compliance.
  • Advised on secure configurations for various AWS services, including SGs, NACLs, WAF, VPC, CloudTrail, S3, RDS, ELB, and GuardDuty.
  • Resolved critical and complex customer issues involving multiple AWS services, achieving a high resolution rate on first contact.
  • Collaborated to develop internal tools and utilities, enhancing operational efficiency for AWS engineers at scale.
  • Provided feedback to internal AWS teams, representing the customer's perspective and driving improvements in service delivery.
  • Identified and drove process improvements, resolving technical issues and improving operational workflows.
  • Managed incidents, RFCs, service requests, and alerts covering a wide range of AWS services.
  • Enhanced network security and protected against OWASP top 10 web-based attacks, including DDoS, SQL Injection, XSS, and CSRF.
  • Configured AWS WAF rules to defend against DDoS and other Layer 7 attacks, strengthening the organization's security posture.
  • Undertook additional duties to uphold and enhance organizational security.
  • Www.aws.amazon.com

Sr Systems Engineer

Cognizant
Bangalore
09.2020 - 12.2021
  • Engineered, configured, and maintained Linux & Unix systems, ensuring reliable performance for critical production environments.
  • Automated server deployments using Ansible scripts (RHEL 7.x, 8.x), improving deployment efficiency.
  • Performed installations, patching, and system backups, including SRM configuration, safeguarding data integrity during updates.
  • Monitored systems and business-critical servers 24/7, enhancing stability and performance.
  • Handled on-call duties in a 24/7 production environment, resolving incidents within SLA timeframes.
  • Utilized cloud-based security management tools (IDS/IPS/SIEM) like Splunk to enhance threat detection capabilities.
  • Provided Unix & Linux incident and service request support, reducing downtime and ensuring system reliability.
  • Conducted thorough investigations of security events, implementing remediations that minimized future risks.
  • Authored comprehensive project and operational documentation, including runbooks and system manuals, to support knowledge transfer.
  • Managed VMware environments, including Snapshot, VLAN changes, vMotion, and resource allocation, optimizing virtual machine performance.
  • Installed, managed, and upgraded patches and packages using Ansible scripts, maintaining system security and stability.
  • Created and managed file systems using Logical Volume Manager (LVM), optimizing storage usage.
  • Led monthly/quarterly server patching across environments, ensuring consistent and secure system performance.
  • Decommissioned outdated servers and maintained an accurate inventory, improving asset management processes.
  • Verified and qualified newly built servers to ensure they met production standards.

Associate IT Developer

Medtronic
Bangalore
02.2019 - 09.2020
  • Automated server deployments using Ansible scripts (RHEL 7.x, 8.x), streamlining the deployment process.
  • Installed, managed, and upgraded patches and packages using Ansible scripts, ensuring system security and stability.
  • Led monthly server patching for production, development, and staging environments, maintaining system integrity.
  • Served as Subject Matter Expert for server retirement catalog via ServiceNow, overseeing the decommissioning process.
  • Created policies and managed computer groups in Active Directory (AD), enhancing user management efficiency.
  • Decommissioned old servers and maintained accurate inventory records, improving asset tracking for both virtual and physical servers.
  • Performed infrastructure activities, including patching multiple servers using Ansible scripts for AIX and Linux environments.
  • Created and managed file systems using Logical Volume Manager (LVM), optimizing storage solutions.
  • Set security policies for users and system administrators, ensuring compliance with organizational standards.
  • Adding/removing DNS records in InfoBlox.
  • Working knowledge of RHEL Satellite 6.
  • Physical server deployment and Puppet configurations.
  • Working knowledge of Nimsoft client.
  • Working with VMware - Snapshot, Change, V-Motion, CPU, Memory, and Storage addition.
  • Identifying potential threats and ensuring the security of systems.
  • Experience with installing and configuring Nagios for Linux and Windows.
  • Maintaining and updating various scripts for services (start, stop, restart, recycle, cron jobs) using shell, Perl.
  • Granting root permissions to users for performing certain activities.
  • Responsible for supporting Linux servers for production, development, and testing environments.
  • Verification of new build servers.

Education

PG Diploma - IT Infrastructure Systems & Security

Center For Development & Advance Computing
Pune
02.2019

Bachelor of Technology - Computer Science & Engineering

Meerut Institute of Engineering & Technology
Meerut
07.2017

Skills

  • Cloud Security (AWS, GCP, O365)
  • Security Posture Review
  • Operating System Administration(Linux/Unix)
  • AWS Cloud Infrastructures
  • Identity and Access Management
  • Vulnerability Management
  • Secure Architecture Review
  • Cross-Functional Collaboration

Websites

Certification

  • AWS Certified Security - Specialty (8JKLGRG26M411TG9G)
  • AWS Certified SysOps Administrator - Associate (ZGFEC8KKZE111LK5)
  • AWS Certified Developer - Associate (MZ3LS2NC7FF11D5J)
  • AWS Certified Cloud Practitioner (PJTT818LJMRE1HS9)
  • AWS Certified Solution Architect - Associate (G87K57ZBM2EQQV9M)
  • Certified Ethical Hacker(CEH) - EC - Council (ECC8734106529)
  • CompTIA Cybersecurity Analyst (CySA+) (COMP001021781845)
  • AWS Identity & Access Management Bar Raiser (Internal Accreditation)

Timeline

Security Engineer

New Relic
10.2024 - Current

Cloud Operation Associate

Amazon Web Services
02.2022 - 09.2024

Sr Systems Engineer

Cognizant
09.2020 - 12.2021

Associate IT Developer

Medtronic
02.2019 - 09.2020

PG Diploma - IT Infrastructure Systems & Security

Center For Development & Advance Computing

Bachelor of Technology - Computer Science & Engineering

Meerut Institute of Engineering & Technology

Similar Profiles

CREATE PROFILE
Ashish Kumar