Summary
Overview
Work History
Education
Skills
Certification
Specializing in
Industry Lines
Personal Details
Timeline
Generic
Sandeep Sasi

Sandeep Sasi

Mavelikara

Summary

Professional with a robust background in cloud security engineering, adept at implementing and managing secure cloud architecture. Skilled in threat detection, incident response, and compliance management, ensuring robust protection of sensitive data. Strong collaborator focused on achieving results, adaptable to evolving project needs. Dependable team player with expertise in cloud platforms, encryption techniques, and risk assessment strategies.

Overview

15
15
years of professional experience
1
1
Certification

Work History

Senior Cloud Security Engineer

Cognizant
12.2021 - Current
  • Designing and Implementing Cloud Infrastructure and Security Configurations
  • Conducting Security Architecture Reviews
  • Consulting on Cloud Security Projects
  • Engineering and Implementing Security Solutions
  • Knowledge of compliance standards and regulatory requirements
  • Manage the security posture of the Azure Cloud subscriptions and bring in automation to continuously improve the security of the dynamic environment
  • Design and implement security architectures for Azure cloud environments, ensuring robust protection against threats
  • Applied the CIA Triad to protect sensitive information in Azure environments, ensuring data confidentiality, integrity, and availability through robust security controls
  • Implemented least privilege principles across Azure resources to minimize attack surfaces and reduce potential exposure to security breaches
  • Developed and executed defense-in-depth strategies, employing multiple layers of security to protect Azure workloads
  • Conducted risk assessments and managed risks through strategic mitigation planning in Azure environments
  • Expert in using Azure Security Center, and Azure Sentinel to monitor, detect, and manage security threats
  • Applied OWASP guidelines for securing web applications and services on Azure
  • Configured and managed Azure Network Security Groups (NSGs) and Azure Firewalls to enforce network traffic rules and protect resources from unauthorized access
  • Set up and managed security monitoring and logging solutions using Azure Monitor and Azure Log Analytics to ensure comprehensive visibility into the security posture of Azure environments
  • Developed and executed incident response processes using Azure tools to detect, respond to, and recover from security incidents
  • Knowledgeable in vulnerability management processes, including regular scanning, assessment, and remediation of vulnerabilities
  • Applied IAM best practices, including multi-factor authentication (MFA) and privileged access management
  • Performed regular security reviews and audits to identify and address vulnerabilities, ensuring ongoing security compliance
  • Familiarity with security frameworks like NIST, ISO27001, and CIS Controls
  • Experienced in using Azure Key Vault for managing secrets and encryption keys
  • Engaged in DAST (using OWASP ZAP tool) and Third-party Security Penetration testing activities
  • Troubleshooting and resolving technical issues related to cloud infrastructure, including network connectivity, server performance, and application deployment
  • Optimized WAF policies and rules to enhance security posture while minimizing impact on application performance
  • Conducted regular audits of existing security infrastructure, identifying areas for improvement and recommending solutions accordingly.

Senior Lead Consultant - Cloud and Infrastructure

EY GDS
07.2017 - 12.2021
  • Scoping, designing, and end-to-end cloud infrastructure deployment and managing
  • Act as an escalation point
  • Led and managed Team, People, and Project Management
  • Troubleshooting and resolving technical issues related to cloud infrastructure, including network connectivity, server performance, and application deployment
  • Designed scalable, secure, and highly available Azure cloud infrastructure solutions tailored to business requirements, optimizing for performance and cost
  • Collaborating with development teams to optimize applications for cloud deployment, including scalability, reliability, and cost-efficiency
  • Ensuring compliance with security policies, regulatory requirements, and industry best practices in cloud operations
  • Utilized Azure Monitor, Application Insights, and Log Analytics to monitor performance, identify bottlenecks, and optimize resource utilization for cost efficiency
  • Conducted regular assessments and audits to ensure compliance with industry standards and regulatory requirements
  • Cloud security (Azure), Cloud Infra Operations, Monitoring, IaaS, PaaS, NSG, Application Gateway, Azure Firewall, Microsoft Entra ID, MFA, Microsoft Defender for Cloud
  • Delivered successful outcomes for clients by identifying process improvement and cost reduction opportunities.
  • Increased project efficiency by streamlining processes and implementing best practices in consultation.
  • Developed effective improvement plans in alignment with goals and specifications.

Senior Linux Systems Engineer - Linux Hosting Servers Administration

VIPoint Solutions
05.2011 - 07.2017
  • Managing troubleshooting activities for key clients & ensuring customer satisfaction by achieving delivery & service quality norms
  • Administration and Management of Linux servers and respective Control panels
  • Resolving core technical issues & providing remote support for production servers
  • Performing Kernel Up-gradation
  • Remote Server Application Setup and configuration in Linux servers
  • Network Load Monitoring /Balancing of servers
  • Server Management and troubleshooting the server issues with the help of the chat/ticket system
  • Virtualization, Linux, cPanel, Plesk, Storage
  • Optimized server efficiency through virtualization techniques and capacity planning.
  • Conducted regular system audits to ensure compliance with industry best practices and regulatory requirements.

Junior Linux Systems Engineer - Linux Hosting Servers Administration

Armia Systems
12.2009 - 05.2011
  • Attending to clients (individuals/corporate clients) concerns & complaints and undertaking steps for effectively resolving them
  • Implementing and configuring Production Environment, Infrastructure Support, Production Support/Maintenance, Incident Management, Technical Trouble Shooting, Critical Application Support, and Client interaction combined with analysis and administration tasks on multiple platforms
  • Linux, cPanel, Plesk, Firewalls, Storage
  • Managed and monitored installed systems for highest level of availability.

Education

B-Tech - Computer Science and Technology

CUSAT University
College Of Engineering, Adoor
06.2009

Skills

  • Cloud Security
  • Azure security
  • Linux
  • Security incident response
  • Vulnerability assessment
  • Identity and Access management
  • Compliance management
  • Firewall management
  • Cloud security architecture
  • Cloud security monitoring
  • Cloud architecture design
  • Monitoring tools
  • Incident response
  • Cloud computing
  • Technology support
  • Network security
  • Patch management
  • Penetration testing
  • Container security
  • Data encryption
  • Network configuration
  • Security Protocols
  • Troubleshooting
  • Data migration
  • Security issues troubleshooting
  • Risk assessment
  • Security needs assessment
  • Regulatory compliance
  • Security assurance

Certification

  • Microsoft Certified: Azure Administrator Associate (AZ-104)
  • Microsoft Certified: Azure Solutions Architect Expert (AZ-305)
  • Microsoft Certified: Azure Security Engineer Associate (AZ-500)
  • Security, Compliance, and Identity Fundamentals (AZ900)
  • Microsoft Certified: Cybersecurity Architect (SC-100)
  • Microsoft Certified: Security Operations Analyst Associate (SC-200)
  • Microsoft Certified: Microsoft Security, Compliance, and Identity Fundamentals (SC-900)

Specializing in

  • Cloud Infra Security
  • Cloud Security Operations
  • Cloud Infra Architect
  • Azure
  • Linux

Industry Lines

  • Rail Transport
  • Healthcare Services
  • E-commerce
  • IT Services
  • Retail Business
  • Media

Personal Details

  • Citizen: Indian
  • Gender: Male
  • Marital Status: Married
  • Notice Period: Serving Notice Period


Timeline

Senior Cloud Security Engineer

Cognizant
12.2021 - Current

Senior Lead Consultant - Cloud and Infrastructure

EY GDS
07.2017 - 12.2021

Senior Linux Systems Engineer - Linux Hosting Servers Administration

VIPoint Solutions
05.2011 - 07.2017

Junior Linux Systems Engineer - Linux Hosting Servers Administration

Armia Systems
12.2009 - 05.2011
  • Microsoft Certified: Azure Administrator Associate (AZ-104)
  • Microsoft Certified: Azure Solutions Architect Expert (AZ-305)
  • Microsoft Certified: Azure Security Engineer Associate (AZ-500)
  • Security, Compliance, and Identity Fundamentals (AZ900)
  • Microsoft Certified: Cybersecurity Architect (SC-100)
  • Microsoft Certified: Security Operations Analyst Associate (SC-200)
  • Microsoft Certified: Microsoft Security, Compliance, and Identity Fundamentals (SC-900)

B-Tech - Computer Science and Technology

CUSAT University

Similar Profiles

  • ROOHI BASHEERA

    ROOHI BASHEERAROOHI BASHEERA

    Sr. IT Developer / Supply Chain Business Analyst at CognizantSr. IT Developer / Supply Chain Business Analyst at Cognizant

    View Profile
  • Ryhana Khatoon

    Ryhana KhatoonRyhana Khatoon

    Associate at CognizantAssociate at Cognizant

    View Profile
  • Meghana Murthy

    Meghana MurthyMeghana Murthy

    Associate at CognizantAssociate at Cognizant

    View Profile
Sandeep Sasi