SUBHAN MOHANTY
Summary
Highly skilled DevSecOps Engineer with 6.8 years of experience in integrating security practices.Proficient in automating security testing, implementing security best practices, and enhancing the security posture of applications and infrastructure. Adept at collaborating with crossfunctional teams to ensure seamless integration of security measures in CI/CD pipelines. Passionate about driving secure software development practices and reducing risks in fast-paced environments..
Overview
10
10
years of professional experience
1
1
Certification
Work History
Sr Infrastructure Engineer
Tech mahindra
05.2023 - Current
- Conducted analysis for EOS/EOL of packages and libraries for smooth mitigation of vulnerabilities
- Conducted Review meetings for terraform code review for various checks like bootstrap,IAM, Tags for crowdstrike etc.
- Good understanding of exploit mechanisms using CVE's for web services and microservices.
- Integrated SAST tools like Aqua plugin to CI/CD.
- Developed and maintained Infrastructure as Code (IaC) using Terraform and Ansible, ensuring secure and compliant cloud infrastructure.
- Implement regular vulnerability scanning using tools like Qualys to identify potential security weaknesses in the platform's infrastructure and software components.
- Implement a robust patch management process to quickly apply security patches and updates to operating systems, applications, and infrastructure components.
- Used Hashicorp Vault to store secrets and certificates
- Ensure that logs and audit trails are collected and stored securely to support forensic analysis in case of a security breach.
- Provide regular vulnerability management reports to stakeholders, highlighting key metrics such as the number of vulnerabilities detected, time to remediation, and compliance status.
- Used cloud trail and Guardduty to track and monitor AWS instances.
- Monthly review of AWS artifacts for compliance and governance.
- Worked in Agile and continuous software integration model
Sr Digital Engineer
CONNEQT BUSINESS SOUTION PVT LTD
01.2022 - 03.2023
- Developed CI/CD pipelines using Jenkins and Implemented containerization strategies using Docker and Kubernetes, reducing deployment times by ‘X’%
- Managed cloud infrastructure on AWS/Azure/GCP, ensuring high availability and security of applications
- Automated infrastructure provisioning and configuration management using Terraform
- Collaborated with security teams to integrate security checks and compliance controls into the development lifecycle
- Install and use software, such as firewalls, IPS/IDS, WAF and data encryption programs, to protect sensitive information
- Prepare reports that document security breaches and extent of damage caused by breaches
- Research latest information technology ‘IT’ security trends
- Recommend security enhancements to management or senior IT staff
- Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs
- Work with network team to perform tests and uncover network vulnerabilities
Product Developer
HNI India
05.2021 - 01.2022
- Deliver the project from design to testing, including new programs, enhancements, and modifications
- Monitor the performance and test the server Participate in estimation and planning sessions
- Work closely with the Product team to deliver quality features in high-quality code and best practices
- Drive major architectural changes as we scale to improve our engineering velocity
Senior Engineer
Tech Mahindra
11.2017 - 04.2021
- Designing and deploying AWS solutions using EC2, S3, Elastic Load balancer ‘ELB’, auto scaling groups
- Launching Amazon EC2 Cloud Instances using Amazon Web Services ‘Linux/ Ubuntu) and configuring launched instances with respect to specific applications
- Defined AWS Security Groups which acted as virtual firewalls that controlled the traffic allowed reaching one or more AWS EC2 instances
- Working on Multiple AWS instances, set the security groups, Elastic Load Balancer ‘ELB’ and AMIs, Auto scaling to design cost effective and highly available systems
- Configuring and Networking of Virtual Private Cloud ‘VPC’
- Creating S3 buckets and also managing policies for S3 buckets and Utilized S3 bucket and Glacier for storage and backup on AWS
Engineer
TeamLease Services Limited
04.2017 - 10.2017
- Enhanced product functionality by customizing features to meet client specifications
- Responsibilities include preparation of technical specification, developing customizations, unit testing and system testing
- Performing Enhancement/Bug Fixing in Windchill Automation
Design Engineer
Pioneer CAD and Design Solutions Pvt
03.2016 - 04.2017
Skills
- Vulnerability Assessment
- Github Actions
- Cloud security
- Patch management
- RBAC
- Splunk ,Crowdstrike ,Dynatrace ,Qualys etc
- Penetration testing
- Governance
- BashScript
- RHEL
- Docker& Kubernetes
- SAST/DAST
- OWASP top 10
- AWS Cloud
- Rally
Certification
- Certified AWS Solution Architect Associate
- Certified AWS security speciality
- Certified Hashicorp Terraform Associate
- Certified Qualys-VDMS
- Cloud security professional- CCSP
University:BPUT
- B.Tech Mechanical-2013
Timeline
Sr Infrastructure Engineer
Tech mahindra
05.2023 - Current
Sr Digital Engineer
CONNEQT BUSINESS SOUTION PVT LTD
01.2022 - 03.2023
Product Developer
HNI India
05.2021 - 01.2022
Senior Engineer
Tech Mahindra
11.2017 - 04.2021
Engineer
TeamLease Services Limited
04.2017 - 10.2017
Design Engineer
Pioneer CAD and Design Solutions Pvt
03.2016 - 04.2017