Looking for a challenging lead position in Information security space to utilize as well as enhance my skill in information security and to provide exceptional support to clients maintaining a positive corporate work culture.
* Developed and implemented processes, tools, and techniques for ongoing security assessments and central tracking of enterprise vulnerabilities, resulting in a month-on-month reduction through consistent follow-ups and remediation.
* Collaborated with Cyber Security and Line of Business Information Risk management teams to resolve and mitigate issues, identify false positives in assessments, and enhance overall security posture.
* Managed the end-to-end vulnerability management workflow, utilizing tools like Rapid7 and Tenable SC, and ensured seamless data presentation to application and infrastructure teams for effective action.
* Led the change management process, coordinating with business stakeholders, infrastructure teams, and technical towers to remediate critical vulnerabilities and obtain necessary approvals for execution.
* Increased process improvement initiatives, organized technical and customer meetings to strengthen relationships, and analyzed security reports using Power BI to identify areas for continuous improvement and functionality enhancement.
* Managed end-to-end vulnerability and patch lifecycle across 500+ servers & 600 VDI's
* Conducted weekly scans using Tenable & WIZ and created actionable remediation plans prioritized by CVSS scores.
* Deployed OS and 3rd-party patches using Bigfix reducing critical vulnerabilities by 87% in 6 months.
* Created monthly dashboards/reports to track patch compliance, SLA adherence and exposure trends.
* Coordinated with infrastructure, application, and database teams for patch testing and change window planning.
* Responded to zero-day vulnerability alerts.
Managed the vulnerability and compliance lifecycle using Qualys and CCS tools.
Infrastructure Security, Web application security testing, Vulnerability Management
Security Scanning Tools: Qualys/Tenable, TenableSE/IO, Java, Tanium Comply