Sasikanth K

• Leading Vulnerability Projects & Deploying Patches, supporting Infrastructure Security Vulnerability Management Operations, operating risk assessments.
• Conduct regular security audits and assessments to identify potential weaknesses in existing security measures and make recommendations for improvements.
• Evaluate the effectiveness of existing security controls and suggest improvements.
• Conduct network risk assessments to identify potential security risks and vulnerabilities.
• Analyze and interpret network security logs, incident reports, and other relevant data to identify potential breach areas or patterns, problems where analysis of situation requires an in-depth evaluation of various factors.
• Supporting Infrastructure Security Vulnerability Management Operations
• Monitor risk landscape and identify emerging and future risks.
• Establish and maintain information security policies to guide the development of standards, procedures and guidelines in alignment with enterprise goals and objectives
• Prepare monthly dashboards, statistics, and executive reports for the management.
• Develop business cases to support investments in information security
• Identify internal and external influences to the organization (e.g., emerging technologies, social media, business environment, risk tolerance, regulatory requirements, third-party considerations, threat landscape) to ensure that these factors are continually addressed by the information security strategy
• Ensures all IT equipment complies with industry and regulatory standards
• Troubleshoots, analyses, and resolves faults in operational networks
• Ensures routine preventative maintenance and license compliance is performed
• Consulting with IT and information security staff to ensure that an implementation plan is established.
• For any new 3rd party technology, need to inform higher management
• Develop risk assessment reports, presenting findings and recommendations to management and other stakeholders.
• Evaluate new technology/ project implementation or upgrade on existing technologies
• Define rating for risk and control and calculate inherent risk in the services (as per the defined rating methodology)
• Coordinate with other Teams to achieve objective and vendors
• Reviewing the policy and establish and/or maintain the information security program in alignment with the information security strategy
• Reviewing and implementing Policy Standard & coordinating with GRC Team/Stake holders & amp; pro-actively
• contribute to the security risk management program
• Develop and implement processes to ensure the timely identification of information security incidents that could impact the business
• Documenting, auditing & designing LLD & HLD as per project
• Investigate NIST National Vulnerability Database (NVD) and CVE, CVSS and mitigate the threat and take
• Corrosive action after vulnerability analysis.

* Developed and implemented processes, tools, and techniques for ongoing security assessments and central tracking of enterprise vulnerabilities, resulting in a month-on-month reduction through consistent follow-ups and remediation.

* Collaborated with Cyber Security and Line of Business Information Risk management teams to resolve and mitigate issues, identify false positives in assessments, and enhance overall security posture.
* Managed the end-to-end vulnerability management workflow, utilizing tools like Rapid7 and Tenable SC, and ensured seamless data presentation to application and infrastructure teams for effective action.
* Led the change management process, coordinating with business stakeholders, infrastructure teams, and technical towers to remediate critical vulnerabilities and obtain necessary approvals for execution.

* Increased process improvement initiatives, organized technical and customer meetings to strengthen relationships, and analyzed security reports using Power BI to identify areas for continuous improvement and functionality enhancement.
* Managed end-to-end vulnerability and patch lifecycle across 500+ servers & 600 VDI's
* Conducted weekly scans using Tenable & WIZ and created actionable remediation plans prioritized by CVSS scores.
* Deployed OS and 3rd-party patches using Bigfix reducing critical vulnerabilities by 87% in 6 months.

* Created monthly dashboards/reports to track patch compliance, SLA adherence and exposure trends.

* Coordinated with infrastructure, application, and database teams for patch testing and change window planning.

* Responded to zero-day vulnerability alerts.

• Conducted security audits to identify vulnerabilities.
• Developed plans to safeguard computer files against modification, destruction, or disclosure.

Managed the vulnerability and compliance lifecycle using Qualys and CCS tools.

• Conducted application vulnerability assessments and produced actionable insights.
• Developed and maintained compliance processes per changing customer needs.
• Reported on operational and executive KPIs for vulnerability management.
• Coordinated with global teams for evidence management, remediation, and risk reduction.

• Scheduling and scanning various client infrastructures using Qualys/Nessus to identify existing vulnerabilities and providing the remediation report with respect to servers, switch, router, internet facing devices and firewall to ensure they are protected from the external world.
• Risk Assessment: Conducting technical and non-technical evaluations to identify vulnerabilities in networks, applications, and systems.
• Threat Analysis: Monitoring emerging threats and analyzing their potential impact on an organization's security posture.
• Remediation Planning: Collaborating with IT teams to develop strategies for mitigating identified vulnerabilities.
• Compliance & Reporting: Ensuring adherence to security policies and regulatory requirements while maintaining detailed reports on vulnerabilities and remediation efforts.
• Security Tool Management: Configuring and managing vulnerability scanning tools to detect security weaknesses.
• Stakeholder Communication: Providing insights to executives and security teams to align vulnerability management with business objectives.
• Checking and analyzing the vulnerability scan report and segregating them on the basis of Patchable and Configurable vulnerabilities and coordinate with all technical teams to remediate active vulnerabilities and drive them to closure.
• Interact with client to explain them about threat scan reports, latest vulnerabilities.
• Create remediation process for clients with onsite team co-ordination.
• Documenting the process manual with latest information, runbook and sharing to teams.
• Perform specific outbreak VA scans to identify latest vulnerabilities in the environment.
• Manage Qualys configuration for Azure/AWS as per client’s requirement.
• Qualys scanner deployment on On-prem and AWS Infrastructure.
• Worked on Qualys cloud agents and troubleshooting the issues on agents at servers and endpoints to check and monitor real time threat.
• Performing Web application scans on the applications using Qualys WAS to find the application related vulnerabilities and recommending remediation actions and false positive analysis.
• Continuous Monitoring: Regularly scanning systems and networks to detect new vulnerabilities.
• Patch Management: Coordinating with IT teams to apply security patches and updates promptly.
• Incident Response Support: Assisting in investigations when vulnerabilities lead to security breaches.
• Security Policy Development: Contributing to the creation and enforcement of security policies and best practices.
• Automation & Optimization: Implementing automated tools to streamline vulnerability detection and remediation.
• Training & Awareness: Educating employees and stakeholders on security risks and preventive measures.
• Nessus scanner upgradation, troubleshooting and maintaining security services and equipment’s activity.
• Assisting the support teams on remediation of reported vulnerabilities.
• Preparing weekly and monthly summary reports on the scan activities.
• Problem escalation to concerned vendors in case of any issues.
• Working with different teams to Automate reports and dashboards using macros as per project requirement
• Active participation in audit and represent the client information are 100% secure and compliant as per SLA.
• Worked on ticketing Tools like, JIRA, ServiceNow.
• TOOLS USED:
• Qualys Guard for vulnerability scans and policy compliance scans.
• Nessus Security center and Nessus professional for vulnerability scans.
• Tenable SC for vulnerability scans.
• ServiceNow, Jira, GCC and BMC remedy tools for service management.