Summary
Overview
Work History
Education
Skills
Certification
Skillssummary
Accomplishments
Timeline
Generic

JAYARAM ACHARYA

Bangalore

Summary

  • Goal-oriented IT professional with significant success in planning, analyzing and implementing of security plans and initiatives. Excel in developing comprehensive, secure network designs and systems.
  • Knowledgeable it security professional with several years of experience designing and implementing security solutions in high-availability environments. Skilled in threat detection and incident response, as well as adept at delivering strong risk management practices to safeguard sensitive information and systems integrity.
  • Seasoned Information Security Lead with a strong background in implementing and maintaining robust security systems. Possess deep knowledge of cybersecurity best practices, risk management, and regulatory compliance. Skilled at leading cross-functional teams and executing strategic initiatives to bolster system security. Demonstrated the ability to identify vulnerabilities and mitigate potential threats effectively in previous roles.
  • Resilient professional in cybersecurity, known for high productivity and efficient task completion. Possess specialized skills in threat analysis, incident response, and security policy development. Excel in critical thinking, problem-solving, and communication, ensuring robust security strategies are devised and implemented effectively.

Overview

17
17
years of professional experience
1
1
Certification

Work History

Senior Information Security Lead

Cisco
Bangalore
11.2024 - Current
  • Provided technical guidance to team members in relation to secure coding principles.
  • Investigated incidents related to data breaches or other malicious activities.
  • Performed vulnerability assessments and penetration tests on systems, networks and applications.
  • Developed and implemented information security policies, procedures, standards, guidelines and best practices.
  • Provided training sessions for employees on topics such as password protection, phishing scams and other security measures.
  • Managed user accounts including creation, deletion, suspension and resetting passwords as needed.
  • Developed strategies for responding to cyber attacks in a timely manner.
  • Maintained up-to-date knowledge of the latest security threats and vulnerabilities.
  • Evaluated existing IT security solutions for effectiveness against current threats.
  • Reviewed security bulletins and vulnerability patch releases.
  • Promoted security awareness among employees and clients to alleviate risks and breaches.
  • Used penetration testing tools to identify weaknesses in security systems.
  • Coordinated security updates to avoid outages and downtime.

Senior Information Security Lead

Cisco
Bangalore
01.2023 - Current
  • Recommended value-add initiatives and convinced the development team to implement CSDL and security program for safeguarding software from malware and cyber threats.
  • Led comprehensive CSDL/Security compliance certification for VVS 3.0 and VVS 4.0 releases, Sidekick Automation and Assessment Automation Platform.
  • Engaged in extensive discussions with stakeholders, customers, and product management on security.
  • Involved starting from Product Baseline Requirements, Design and Architecture, Data Privacy Assessment, Vulnerability Management, and Digital Image Signing, as well as closely working with the Development team to achieve compliance for the release.
  • Facilitated Security Review Meetings with Info-Sec Architects, Program Management, GM, and SVP for approval.
  • Collaborated with GM, Director, and VP to secure SRP approval.
  • Provided technical guidance to team members in relation to secure coding principles.
  • Implemented risk management processes to reduce exposure to security threats.
  • Created reports that outlined the current state of IT security infrastructure.
  • Performed vulnerability assessments and penetration tests on systems, networks and applications.

Senior Security Architect

Cisco
Bangalore
07.2024 - 11.2024
  • Performed risk analysis to evaluate potential risks associated with proposed changes or new initiatives.
  • Maintained knowledge of current threats, vulnerabilities and trends in information security.
  • Coordinated incident response activities to ensure timely resolution of issues.
  • Developed and implemented security policies, standards and procedures to protect organizational data from unauthorized access.
  • Directed vulnerability assessments or analysis of information security systems.
  • Conducted penetration tests to uncover security system weaknesses.
  • Directed risk assessment operations and system test execution.
  • Investigated information security breaches to identify vulnerabilities and evaluate damage.

Senior Information Security Lead

Cisco
Bangalore
11.2023 - 04.2024
  • Provided technical guidance to team members in relation to secure coding principles.
  • Implemented risk management processes to reduce exposure to security threats.
  • Created reports that outlined the current state of IT security infrastructure.
  • Performed vulnerability assessments and penetration tests on systems, networks and applications.
  • Developed and implemented information security policies, procedures, standards, guidelines and best practices.
  • Conducted regular reviews of system access rights and privileges for all users.
  • Provided training sessions for employees on topics such as password protection, phishing scams and other security measures.
  • Managed user accounts including creation, deletion, suspension and resetting passwords as needed.
  • Developed strategies for responding to cyber attacks in a timely manner.
  • Maintained up-to-date knowledge of the latest security threats and vulnerabilities.
  • Reviewed security bulletins and vulnerability patch releases.
  • Learned about latest security threats from blogs and online publications.

Lead CSDL Engineer and Release Manager

Cisco
05.2021 - 03.2024
  • Responsible for creating the Release Planning, Estimation, and Customer Release Strategy.
  • Maintain the Development and Deployment Plan, Schedule and publish it in advance to the PMO, Partner & Customer
  • Handle the Customer Escalations specific to the CSDL and Security Issues
  • Understand the Customer Security Requirements, Implement and Delivery
  • Driven Complete E2E CSDL Certification for Multiple Releases also Apache log4j Vulnerability Hotfix Delivery
  • Addressed the 400+ defects in Backlog including PSIRT scrubbed and Fixed the Defects
  • Handled the VP and Director Level PSIRT Escalations and Resolution in very minimal time
  • Contributed to Functional Testing for the Different Medical Devices and Particle Counters
  • Developed and implemented engineering strategies to improve production efficiency.
  • Documented all engineering activities according to established procedures.
  • Generated technical reports for customers.
  • Avoided data loss by creating back-ups of programs.

Information Security Lead and CSDL Consultant

Cisco
Bangalore
09.2021 - 07.2022
  • Executed thorough assessment aimed at enhancing security through NSO Vulnerability Scan Analysis.
  • Prepared robust test cases tailored for execution within ESOP.
  • Conducted scans for NSO Packages while mentoring junior resources on process.
  • Conducted thorough analysis of BPA PSB's.
  • Conducted threat modeling, analysis of threat reports, resolution processes, and recommendations.
  • Implemented and configured SAST and DAST for an onboarding solution in the ESOP platform.
  • Set up, installed, and tested Burp Suite, ZAP, and various other tools.
  • Installed Cloud Tenable Scan and set up configuration.
  • Provided technical guidance on secure coding practices for software development projects.
  • Conducted regular risk assessments and identified areas of improvement in the organization's IT infrastructure.
  • Maintained up-to-date knowledge on emerging threats in order to develop strategies that can mitigate them effectively.
  • Performed vulnerability scans, penetration tests, and malware analysis.
  • Analyzed business requirements to determine appropriate security solutions.
  • Developed and maintained information security policies, standards, and procedures.
  • Reviewed security bulletins and vulnerability patch releases.

Lead Dev-Ops Engineer

Rakuten
04.2020 - 04.2021
  • Understanding the CDAF and LMP implementation of Jenkins Pipelines Scripting and Testing and Integration with the LMP UI for HTTP and AWS S3 Pipelines
  • Helping and Resolving the Integration Issue with Development Teams
  • Setup a Development Environment for the Rakuten LMP Development Team
  • Setup and Installation as well as Troubleshooting the Issues in the Non-Prod and LMP Lab
  • Jenkins setup and creation of Development Pipelines for Build and Deployment
  • Code Migration from GitHub to GitLab in Rakuten LMP Environment
  • LMP Chatbot Requirements and Use-cases development for the AI Based Chatbot
  • LMP Testing - Functional and Regression and partially Contributed to CSDL
  • LMP Documentation
  • Provided support for web servers configuration and maintenance activities.
  • Coordinated with other teams for successful rollouts of new features or bug fixes.
  • Created CI and CD pipelines with Jenkins and Docker to automate the build process of applications.

Build and Packaging Lead Engineer

Cisco
01.2019 - 03.2020
  • Company Overview: CSPG - Hyperflex Data Platform
  • Worked on Critical PSIRT and CIAM Alerts Analysis of CVEs, coming up with a solution and fixing as well as Packaging it in the Build System in a Complicated SW Stack
  • Package the Security Fixes and Build & Testing
  • Fixed FasterXML Databinding Vulnerability Issues in UCS Software Stack
  • Nessus Security Scan Setup and Configuration
  • Handling Incident & Vulnerability Management (CIAM, PSIRT and Security Vulnerabilities)
  • Working on Rapid7 Nexpose Scan Setup & Configuration
  • Patched the Critical PSIRTs and CIAM Bugs in the HX Platform
  • Root causing the problem and providing the Solutions to Customer Escalations/cases
  • (Worked with Gold as well as Platinum Customers)
  • CSPG - Hyperflex Data Platform
  • Participated in weekly meetings with management teams to discuss progress on projects and address any concerns.
  • Supervised a team of up to 10 employees in the packaging department, providing guidance and instruction on tasks and processes.

Senior Dev-Ops Engineer

Cisco
01.2018 - 12.2018
  • Company Overview: Cloud – SDP
  • Was a part of Dev-Ops along with SRE/SOPD and implemented the CI/CD aspect for SDP Components Code Coverage for various Micro Services in Gradle-based Systems in K8 Cluster
  • Deployment of SDP Micro Services in AWS Environment
  • Created the Helm Chart and deployed it in Kubernetes Cluster
  • Apache Nifi Clusters Upgrade and Hotfix/patch updates in Prod and Non-Prod env
  • Enabling the Drone Pipeline Configuration for Build Jobs in Micro Services
  • Implemented Agile development methodologies by creating user stories, tasks and goals for each sprint
  • Cloud – SDP

Configuration Engineer/SRE

Cisco
09.2017 - 12.2017
  • Company Overview: SNTC API Framework
  • Implementing the SNTC APIs in NodeJS and involved in Configuration Management, Build, and Deployment of Node Modules in a SaaS-based environment and setting up the Jenkins Pipeline, Infra Provisioning and Monitoring
  • Setting up Jenkins Pipeline for Build Automation & No Downtime Deployment in Non-Prod and Prod Environment thereby reducing/minimizing the Downtime, especially in Production
  • Complete CSDL Security End-to-End Implementation for MIMIR API Framework
  • SNTC API Framework

Lab/Site Reliability Engineer

Cisco
11.2015 - 08.2017
  • SNTC System Team Played the role of overall provisioning the Cisco Hosted Platform SaaS env for different lifecycles starting from IT Procurement to App Hosting
  • Involved in End-to-End System Testing to ensure all levels of checks from OS to App
  • Supported the ESXi Administration in deploying the OVA template and Creating the CSPC Collector Images for Dev/QA Teams thereby reducing the turnaround time
  • Complete CSDL Security Implementation for SNTC
  • Enterprise Customer Problem Solving and Customer Engagement visited a few Customers Deployment for System Architecture Study, Deployment Model & case studies

Dev/Lab Engineer/SCM Engineer

Cisco
01.2008 - 10.2015
  • Involved in SmartCare Collector Development to support various Cisco Devices in SMB Market Space, Involved in Cisco Devices IPR, Devices Analysis and feature Implementation
  • Building Collector Images in various Linux Flavors and involved in Lab setup for Cisco Collectors and Dev/QA Testing
  • SmartCare Components Build and Release Activities including DB deployment (PVCS, Kintana)
  • HP Web-Inspect Jenkins Automation for Security Testing, BAVA/DAVA Scan for the Application
  • Involved in SMB Customer’s Issues Debugging & Finding the Solutions/Fix thereby pushing the same to Production environment in minimal duration

Education

BE - Information-Science

M.S. Ramaiah Institute of Technology

Diploma - Project Mgmt.

Institute of Business Management

Skills

  • Linux System Administration
  • Version Control Tools: SVN and GIT
  • Build Tools: Ant, Maven & Gradle
  • Build Management: Jenkins
  • Dev-Ops tools: Sonar, Artifactory, Nexus
  • Scripting: Shell scripting, Groovy, Python
  • Ethical hacking
  • Security operations
  • Penetration testing
  • Endpoint security
  • Security architecture
  • Security awareness training
  • Secure coding
  • Threat intelligence
  • Network security
  • Application security
  • Data protection
  • Incident response
  • Compliance management
  • Virtualization: ESXi
  • CSDL Security Best Practices
  • Threat Modelling
  • Vulnerability Management Tools: Qualys, Cloud Tenable, Nessus Scans
  • Penetration Testing - NMAP Scan, Solis Scan
  • SAST Tools: Checkmarx, SonarQube
  • DAST Tools: Rapid 7
  • SW Digital Image Signing
  • Threat landscape and security posture analysis
  • Security, Risk Assessment & Mitigation
  • Problem Management
  • RCA Management
  • Incident Management
  • Patch Management
  • Threat Analysis

Certification

  • Cisco Networking Academy: Ethical Hacker, Cyber Threat Management, Endpoint Security, Network Defense, Introduction to Cyber Security, Junior Cyber Security Analyst courses completed
  • Cisco Security Space Center Programs - Security Space Fleet, Security Flight Academy, Security Space Camp, Security Ground School
  • Cisco Generative Artificial Intelligence (AI) 2024 Green Badge Certification
  • Cisco Security Organization Ambassador (CSOA) - Security Prime, Partner Security Architect
  • Amazon Web Services (AWS) Certified Developer - Associate
  • Linux Professional Institute Certification Level 1 (LPIC-1)
  • IT Infrastructure Library (ITIL) V3 Foundation Certified Professional
  • Oracle Certified Java Programmer (OCJP) 1.6 and Oracle Certified Developer for Java Web Services (OCDJWS)

Skillssummary

Linux System Administration, Version Control Tools: SVN and GIT, Build Tools: Ant, Maven & Gradle, Build Management: Jenkins, Dev-Ops tools: Sonar, Artifactory, Nexus, Scripting: Shell-scripting, Groovy, Python, Infra Orchestration Tools: Ansible, Public Cloud Platform: AWS, Monitoring Tools: Prometheus, Grafana, Nagios & EMAN, Virtualization: ESXi, CSDL Security Best Practices for CX Platform Offers, Vulnerability Management Tools – Qualys, Cloud Tenable, Nessus Scans, SAST (Checkmarx, SonarQube) and DAST Tools (Rapid 7 and Solis Scan), Agile Methodology & Best Practices, Testing/QA/Rollout/Support, Build/Release Management, DevOps Automation and Design, Security, Risk Assessment & Mitigation

Accomplishments

  • Cisco Security Subject Matter Expert (SME) Awards for Multiple Offers, Cisco Software Development Lifecycle (CSDL) Certifications
  • Merck Connected Pharmaceuticals Security Certification
  • Cisco Achievement Programs (CAP) delivering high-quality security certifications to customers

Timeline

Senior Information Security Lead

Cisco
11.2024 - Current

Senior Security Architect

Cisco
07.2024 - 11.2024

Senior Information Security Lead

Cisco
11.2023 - 04.2024

Senior Information Security Lead

Cisco
01.2023 - Current

Information Security Lead and CSDL Consultant

Cisco
09.2021 - 07.2022

Lead CSDL Engineer and Release Manager

Cisco
05.2021 - 03.2024

Lead Dev-Ops Engineer

Rakuten
04.2020 - 04.2021

Build and Packaging Lead Engineer

Cisco
01.2019 - 03.2020

Senior Dev-Ops Engineer

Cisco
01.2018 - 12.2018

Configuration Engineer/SRE

Cisco
09.2017 - 12.2017

Lab/Site Reliability Engineer

Cisco
11.2015 - 08.2017

Dev/Lab Engineer/SCM Engineer

Cisco
01.2008 - 10.2015

BE - Information-Science

M.S. Ramaiah Institute of Technology

Diploma - Project Mgmt.

Institute of Business Management
JAYARAM ACHARYA