Summary
Overview
Work History
Education
Skills
Websites
Accomplishments
Certification
Timeline
Generic
Salma Sheik H M

Salma Sheik H M

Bangalore

Summary

To utilize my expertise in information security to contribute to the growth and success of a forward-thinking organization while continuously advancing my professional skills.

Overview

6
6
years of professional experience
1
1
Certification

Work History

Information Security Analyst

Fossil Group
Bangalore
05.2022 - Current

Vulnerability Management: Rapid7 and Phosphorus IoT.

  • Working as a Nexpose IVM administrator, I assign vulnerability remediation tasks to the concerned teams and follow up with them until the remediation is completed.
  • Daily assessment of vulnerabilities identified by the infrastructure scan.
  • Prioritizing vulnerabilities discovered, along with remediation timeline(s).
  • Configuring, scheduling, and executing vulnerability scans, and delivering scan reports.
  • Establishing relationships with system owners and business process partners for the purposes of ensuring that identified vulnerabilities are remediated in accordance with established timelines.
  • Provides analysis of vulnerabilities to other team members to assist with overall vulnerability remediation efforts.
  • Proficient in updating SSL certificates by generating a CSR using OpenSSL commands.
  • Setting up a new scan engine for all the regions (NA, EMEA, APAC) for scanning all the assets.
  • Scanning internal IoT devices and generating biweekly vulnerability reports.
  • Keeping all the IoT devices up to date with current firmware updates and with no default credentials.

Tufin: Network Management Tool.

  • Managed and configured Tufin for network security policy management.
  • Conducted policy changes, analyzed network access, and ensured firewall rule optimization to maintain a secure infrastructure.
  • Performed regular monitoring and troubleshooting to ensure high availability and performance of Tufin systems.

Sky-high Web Gateway:

  • Monitored and reported web traffic activity, providing insights and incident response for potential security threats.

Associate Professional Information Security

DXC Technology
Bangalore
10.2019 - 05.2022
  • Monitored security events for 10+ clients using SIEM tools
  • Managed security technologies analyzed event data, and recommended remediation
  • Monitor and manage security technologies to prevent, detect, and respond to threats

Security Analyst

IBM India Pvt Ltd
Bangalore
07.2018 - 08.2019
  • Managed security technologies using Splunk SIEM; configured alerts and dashboards
  • Make sure the health of the SOC tools are always in green
  • Make sure internal incident tickets and vendor tickets for SOC tools are resolved

Education

B.E. - Mechanical Engineering

Kalpataru Institute of Technology
01.2018

High School Diploma -

S.A.V Composite P U College
Bhdravathi
03-2014

Skills

  • Operating Systems: Windows, Linux
  • EDR Tool: CrowdStrike
  • SIEM Tools: Splunk
  • Vulnerability Management: Rapid7 IVM, Phosphorus, IoT
  • Tufin Network Management
  • Skyhigh Web Gateway
  • Ticketing Tools: ServiceNow, 4Me

Accomplishments

  • Star Award Winner - 2023
  • Spot Award Winner - 2024

Certification

Crowdstrike Certified Falcon Administrator (CCFA)

· Rapid7 Vulnerability management Course

· Cybersecurity Essentials

· Splunk Fundamentals

· Cribl

· Sky-high Web gateway

Timeline

Information Security Analyst

Fossil Group
05.2022 - Current

Associate Professional Information Security

DXC Technology
10.2019 - 05.2022

Security Analyst

IBM India Pvt Ltd
07.2018 - 08.2019

B.E. - Mechanical Engineering

Kalpataru Institute of Technology

High School Diploma -

S.A.V Composite P U College
Salma Sheik H M