Santhosh Phanindar Kambhampati

• Working experience in logging, Monitoring and managing end to end Security Operations.
• Own and manage Cloud Security programs like Application security testing (DAST, SAST, following OWASP top 10), Vulnerability assessments on Cloud infrastructure and Internal IT and track findings to closure.
• Enough expertise working with VAPT tools and penetration testing methodologies.
• Experience in handling Security Incident Management, Bug bounty program, performing Risk Assessments and Business Impact Analysis
• Good understand of application security assessment standards/frameworks and regulations such as NIST, PCI-DSS, CWE/SANS, ISO etc.
• Demonstrated experience in handling Vendor Risk Assessments, RFP's, RFQ's
• Define, Implement and Manage Policies, Procedures, Processes, and controls.
• Track and monitor risk treatment plans, coordinate with various Business Functions and perform BCP Testing, and Business Impact Analysis.
• Handle Security Incident Management, Reporting and performing RCA with detailed analysis of incident that includes working with all stakeholders both internal and external.
• Document audit process, (including evidence ), and ensure all audit issues are tracked to closure.
• Perform Business Continuity Plan & Disaster Recovery Testing on both Internal IT and cloud Infrastructure.
• Work independently with teams across organization.
• Respond to all internal and external security questionnaires.

• Lead Tier 1 support team, responsible for application and infrastructure monitoring of Zenoti product.
• Actively monitor and administer Zenoti applications and hosted environment to increase efficiency and improve reliability.
• Manage build and deployment processes.
• Improve and harden security of AWS instances as per policies.
• Maintain customer sites with 99.9% uptime
• Identify/troubleshoot and track events of all application and infrastructure related issues.
• Drive regular release and performance meetings to ensure site issues, action items, and risks are tracked to closure.
• Build and manage release dashboards and project metrics to track release activity and performance issues.
• Conducting frequent security analysis of cloud production environment using Zenoti's security requirements and cloud security best practices.
• Manage security incidents and track issues to closure with detailed root cause analysis.

Responsibilities:

• Primary role is to deploy Virtual Machines with OS and Install/configure/Maintain SumTotal Application with any available Hot fixes/patches to replicate customer environment.
• Creating, configuring and deploying VM’s through vSphere Client and vCenter.
• Monitoring & Maintenance of Infrastructure (Virtual Management Server (VCMS), ESX Servers & VM Images, Storages (SAN & NAS)) and Troubleshoot Issues with ESX and VM and vcenter.
• Maintains and support VMware Lab manager which helps internal users to deploy there own Virtual Machines.
• Experience in setting up and managing database systems such as SQL Server/Oracle and have hands-on experience on Backup and Restore Management which includes in restoring of Customer databases in test environments.
• Experience in Database Replication. Having good knowledge on configuring and troubleshooting Transactional Replication.
• Had configured BCP for databases in production environment using logshipping and DB mirror.
• Installing/configuring SumTotal Products (Learning Management System, Talent Management, Analytic, Aspen, Performance Management, SumTotal portal) and knowledge on IBM COGNOS 10.2 configuration.
• Experience in handling Oracle Database importing & exporting, Cold Backup technique involving database maintenance.
• Configuration / troubleshoot IIS, SSL, NT Auth, LDAP for SumTotal Application.
• Create and implement network shares, assign respective file and share permissions to employees.
• Installing, configuring and troubleshooting Windows 7/XP/NT/2000, Windows server 2003/2008, Active Directory services, DNS, DHCP.
• Install, maintain and manage cat 5e cabling, switches, hubs, routers, and services that make up network backbone.
• Perform server maintenance, schedule daily & weekly backup jobs using NTBackup to backup company data.
• Solid understanding of VMWare, ESX, SAN, Active Directory, GPO, DNS, DHCP, Firewalls, VPN, SSL, switches and network design.

Responsibilities:

• Perform system configuration, software installation and upgrades of Win2003 and Win2008 systems acting as web servers and application servers.
• Respond to customer requests for program loads, and system customization specific to SumTotal System’s industry leading product(s). Handling customer support requests via ticketing system Salesforce.
• Process incoming requests within defined SLA and follow change management process. Document all the changes made to data center infrastructure in Salesforce for efficient change tracking.
• Software installation and configuration, applying modules and patches, network security.
• Extensive hands on experience in IIS 6.0/7.0 and strong troubleshooting skills in IIS.
• Perform database administration duties on SQL server 2000/2005/2008 servers. Strong knowledge in implementing/configuring/troubleshooting SQL server Reporting Services (SSRS), SQL 2008 replication and ETL.
• Handle escalated Tier-2 (L2/L3) issues and provide RCA for them and suggest, implement preventive measures. SME/POC for escalated customer accounts.
• Optimizes system availability, security, and performance for selected systems.
• Perform all backups and recovery for hosted environment using LiveVault, handling large SQL databases.
• Capacitive planning: Monitor system performance and capacity to provide input for needed expansion or alternative configurations to support additional storage, database capacity, or web server capacity needs.
• Experience working with F5 Load Balancer and making necessary configuration changes.
• Strong documentation and record keeping skills, with extreme attention to detail.
• Experience in 24X7 environment. L2/L3 On-call rotation.

Train new hires in understanding data center environment and give on-job training.