Priyanka Kumari
Cloud Analyst
Bangalore
Summary
- Cloud Security Engineer with 8+ years of Overall experience in IT industry.
- Having 5+ years of relevant experience in consistently working in the areas of Public Cloud Services mainly MS Azure and AWS.
- Skilled in deploying cloud instances using Terraform for streamlined infrastructure provisioning and management across AWS and Azure environments.
- Automated Sysdig vulnerabilities reporting using GitHub Actions.
- Developed custom Azure Policy for cost optimization.
- Experience in defining and customizing azure policy as per different regulatory compliance like HIPAA HITRUST, CSA CCM, and CIS Benchmark.
- Experience in enforcing cloud security controls for MS Azure-cloud environments.
- Experience in Compliance and Configuration Review of Server, Database, Operating System in the cloud environment.
- Performed cloud Security assessment in the MS Azure-cloud environment by on-boarding account with CSPM (PRISMA) tool.
- Experience in Functional Testing and API Testing.
Overview
8
8
years of professional experience
14
14
years of post-secondary education
2
2
Certifications
Work History
Cloud Security Engineer
Deloitte
01.2023 - Current
- Maintained the Terraform code to deploy AWS EC2 instances for security agents (Qualys, BigFix, Splunk, CrowdStrike, SCCM)
- Updated the variables in different workspaces as per the latest requirements
- Automated Sysdig vulnerability reporting using GitHub Actions
- Developed custom Azure Policy for cost optimization
- Fetched and downloaded cloud security misconfigurations reports to identify non-compliant resources
- Notified respective users of security vulnerabilities and provided support for remediation efforts
- Collaborated with users to remediate non-compliant resources, ensuring cloud security posture
- Addressed the rogue account creation by notifying the user's and applying netSkope to enhance data integrity and reduced the risk exposure from RAM
Cloud Governance Engineer
TCS
07.2019 - 10.2022
- Client: Third-party health benefits administrators
- Determining access to Current Policies, Standards, and controls in the client's environment
- Performed cloud Security assessment in all the subscriptions by on-boarding account with PRISMA tool
- Provided Gap Assessment Report against regulatory compliance like HIPAA HITRUST and CSA CCM
- Mapped the security Azure Policies in compliance with CSA CCM and HITRUST controls
- Develop the control objectives for all associated controls
- Wrote custom Azure Policies according to fulfill different use cases of security controls
- Conducted multiple workshops with different stakeholders for reviewing the security Azure ARM policies
- Deploy all the Azure Policies in all subscriptions with the help of Azure Blueprint
- Shared and Explained the Compliance Dashboard for different environment to the respective Stakeholders
- Build the remediation plan against the non-compliant resources on basis of Severity
- Discussed and shared the non-compliant resources list with the remediation plan
- Remediated the non-compliant resources in all the environments
- Designed and implemented custom RBAC roles for platform teams, ensuring least privilege access and enhancing security
Azure Compliance Engineer
TCS
02.2019 - 07.2019
- Client: One of the Telecom Industry in India
- Implemented Azure security best practices in various subscriptions with CIS regulatory compliance
- Used the open-source tool called Chef InSpec to implement all the CIS policies in multiple environments
- Shared and explained the compliance dashboard report and misconfiguration in Azure Services
- Suggested remediation recommendations for identified misconfiguration in the cloud environment
QA Engineer
Tène Agricultural Solutions Pvt. Ltd.
11.2016 - 11.2018
- Client: One of the Food processing Industry in USA
- Participated in Functional and API testing
- Identified test scenarios and derive test cases
- Proactively participate in test case execution, defect discussion, and defect logging
- Created and maintained test plans and TCR
- Prepared result reports, and defect status reports and documented all bug issues
Education
Computer Science
NM Institute of Engineering And Technology
Bhubaneswar 04.2001 - 01.2015
Skills
Microsoft Azure
AWS
Prisma
Azure Policy
JIRA
Certification
Microsoft Security, Compliance, and Identity fundamentals (SC-900) certified.
Accomplishments
- Received SPOT Award in appreciation of the dedication and willingness to go extra mile in Deloitte.
- Received Star Team Award in appreciation of the outstanding contribution to the organization in TCS.
Disclaimer
I hereby declare that the information provided is true to the best of my knowledge and belief.
Timeline
Cloud Security Engineer
Deloitte
01.2023 - Current
Cloud Governance Engineer
TCS
07.2019 - 10.2022
Azure Compliance Engineer
TCS
02.2019 - 07.2019
QA Engineer
Tène Agricultural Solutions Pvt. Ltd.
11.2016 - 11.2018
Computer Science
NM Institute of Engineering And Technology
04.2001 - 01.2015