Summary
Overview
Work History
Education
Skills
Certification
Personal Information
Key Domain And Technical Knowledge
Timeline
Generic

SivaRamaRaju Uddaraju

Herndon

Summary

Dynamic Cyber Security Senior Consultant with extensive experience at British American Tobacco, specializing in infrastructure vulnerability management and security analytics, delivering a 35% increase in threat detection rates through innovative vulnerability scanning tool implementation.

Overview

14
14
years of professional experience
1
1
Certification

Work History

Cyber Security Senior Consultant

British American Tobacco
Herndon
02.2024 - Current
  • Conduct comprehensive vulnerability assessments on cloud infrastructure to identify and remediate security weaknesses
  • Implement and manage security controls to protect cloud resources, ensuring compliance with regulatory standards
  • Collaborate with development teams to integrate security practices throughout the software development lifecycle (SDLC)
  • Monitor security alerts and incidents, performing root cause analysis and coordinating incident response efforts
  • Led a project to implement a vulnerability scanning tool across cloud environments, resulting in a 35 % increase in threat detection rates
  • I had conducted a project assessing security configurations in Azure, identifying vulnerabilities, and providing recommendations to enhance security posture
  • Developed a basic cloud security policy framework for Azure environments, focusing on data protection and access management best practices
  • Completed hands-on labs on Azure Security through platforms like Microsoft Learn, gaining practical experience in configuring security features and monitoring tools
  • Conduct thorough vulnerability assessments, prioritize risks, and deliver actionable reports to stakeholders, enhancing overall security posture
  • Experience measuring data and Key Process Indicators (KPI) to drive continual process improvement
  • Developed and executed vulnerability management programs, including scanning and reporting on cloud environments
  • Worked closely with cross-functional teams to enhance cloud security practices and mitigate risks
  • Assisted in the design and implementation of automated security monitoring solutions to ensure continuous compliance
  • Coordinate and support Vulnerability Management processes, including patch and remediation management
  • Manage tracking and remediation of vulnerabilities, facilitating meetings to address high-severity issues
  • Analyze vulnerability findings, report impacts, and propose solutions to stakeholders, ensuring risk prioritization
  • Deliver vulnerability executive summaries and key risk indicator reports to security leadership
  • Automated task processes with VBA scripts, improving efficiency in reporting vulnerabilities
  • Streamline Vulnerability Management processes, leading to improved patch management and faster remediation of high-severity vulnerabilities within SLAs
  • Develop VBA scripts to automate excel file splitting and email reporting, significantly boosting efficiency in vulnerability communication
  • Facilitate cross-functional meetings to address remediation challenges, fostering a culture of proactive security across business groups
  • Drive continuous improvement in scan coverage and authentication, contributing to a more robust and comprehensive security infrastructure

Cyber Security Senior Consultant

Backcountry
Park City
05.2022 - 10.2023
  • Used Qualys tool integrated with Kenna Securities extensively and effectively in this project for evaluating security risk of the Client’s environment
  • Responsible for analyzing the vulnerability findings and its impact and report them to stakeholders with feasible solutions and risk prioritization
  • Provided vulnerability executive summary related to VM metrics, key risk indicators, trending, and exploitable vulnerability reports to Security leadership and management
  • Point of contact for status updates regarding vulnerabilities across multiple platforms and multiple business groups
  • Refined the Vulnerability Management (VM) process, coordinate, monitor and support activities in the areas of the VM program, security patch and remediation management
  • Managed tracking and remediation of vulnerabilities by leveraging and facilitating meetings with various remediation stakeholders to identify the challenges and plan of action for fixing the high severity vulnerabilities within defined SLA
  • Proposed feasible ideas for reducing the overall risk such as hardening golden images and grouping of vulnerabilities with common solution
  • Participated in knowledge-sharing and write technical articles based on investigative analysis performed for internal knowledge bases
  • Spearheaded executive reporting on VM metrics and trends, driving informed decision-making
  • Facilitated cross-functional meetings to address high-severity vulnerabilities within SLAs
  • Proposed novel risk reduction strategies, including hardening golden images and grouping vulnerabilities with common solutions
  • Contributed to VM roadmap development, enhancing operational schedules for maximum coverage

Cyber Security Consultant

LittelFuse
Chicago
05.2019 - 05.2022
  • Had created High level Architecture Diagrams, Deployed and maintained the Tool from scratch
  • Used Nexpose tool extensively and effectively in this project for evaluating security risk of the Client’s environment
  • Responsible for analyzing the vulnerability findings and its impact and report them to stakeholders with feasible solutions and risk prioritization
  • Utilized the ServiceNow incident management service for raising the Vulnerability incident ticket to the concern team and tracking them till they are remediated
  • Provide vulnerability executive summary related to VM metrics, key risk indicators, trending, and exploitable vulnerability reports to Security leadership and management
  • Point of contact for status updates regarding vulnerabilities across multiple platforms and multiple business groups
  • Refining the Vulnerability Management (VM) process, coordinate, monitor and support activities in the areas of the VM program, security patch and remediation management
  • Manage tracking and remediation of vulnerabilities by leveraging and facilitating meetings with various remediation stakeholders to identify the challenges and plan of action for fixing the high severity vulnerabilities within defined SLA
  • Proposing feasible ideas for reducing the overall risk such as hardening golden images and grouping of vulnerabilities with common solution
  • Strive towards complete scan coverage and authenticated scans as applicable
  • Participate in knowledge-sharing and write technical articles based on investigative analysis performed for internal knowledge bases

Cyber Security – Process Lead

Ryna Technologies Pvt Ltd
Hyderabad
06.2014 - 04.2019
  • To Identify and communicate the technical requirements to the client for assessments
  • To Identify vulnerability points of the client organizations in public and private network to undergo the proposed cyber security assessments
  • To analyze using various scanning tools and foot printing techniques including google search strings to identify the exposure and to design the network and system data flow
  • To create and formalize the pre-assessment documentation with milestones to accomplish the task
  • Instrumental to drive the process of cyber security assessments spear heading the team involved
  • Coordination and to communicate with clients on the requirements to take up the assessment tasks
  • To prepare the findings report in network, System and Data auditing
  • To prepare the complete assessment documentation for task specific or periodical jobs as per the client contract
  • Correlation of analysis report on the anomalies and malwares as per the findings with impact level
  • Maintaining the internal CVE and IOC database and correlation of vulnerabilities, findings, impacts and remediation processes
  • Working on project planning and constraints based on the client requirement
  • Communication of any identified project risks and issues to the delivery/project along with delivery dates

System and Networking administrator

VEGA Entertainment Pvt Ltd
Hyderabad
06.2011 - 05.2014
  • Configuration and management of network devices including watch guard firewall
  • Configuration of VPN connectivity
  • Configuration of firewall rules and modification of the rules time to time
  • Configuration of REDIS server for CMS integration
  • Administration of Ubuntu 16.10 and Centos 7 servers
  • Event log capturing and monitoring to ensure the server and process uptime
  • Management of CMS platform form on you tube and compiling the insights report
  • Management of Facebook postings of the new releases and celebrity pages
  • Ensuring the connectivity of servers to the remote OTT and DTH platforms for content Streaming
  • Periodic backups to the cloud related to management file server and accounting platform
  • Managing the software and hardware inventory of the organization
  • Administration of antivirus and patch management across the physical and cloud platforms
  • Configuration of new VM instances on the cloud
  • Designed, deployed and implemented organization’s own apache cloud stack platform
  • Documentation of configurations and performance reports time to time
  • Involved in deployment of automation in users environment
  • Repetitive task analyzing and understanding the process
  • E-books and apps publication on Samsung mobile platform
  • Client interactions on issues and reports
  • Converting physical books to Digital books through OCR conversions
  • Deploying the books in digital platforms like Web, mobiles, note pads in Epub, Pdf formats
  • Applying Html coding and CSS styles Converting PDF/InDesign Document into Word/XMLo Re- flowable & Fixed layout Epub & Mobi format
  • Verification of Created Comics and Designing of the page layouts, book cover page, index (total designing and layout of books)

Education

Bachelor of Technology -

JNTU
Hyderābād, India
05.2011

Skills

  • Infrastructure vulnerability management
  • Networking and systems administration
  • Windows, Mac OSX, and Linux
  • Firewall management (Juniper SRX, Watchguard)
  • Vulnerability assessment tools (Qualys, InsightVM, Nexpose, Tenableio)
  • Security analytics (Kenna Security)
  • Network scanning (NMAP, Advanced IP Scanner)
  • Traffic analysis (Wireshark, Packetizer, TCP Dump)
  • IT service management (ServiceNow)
  • Data visualization (Tableau)

Certification

  • Microsoft certified professional
  • Microsoft certified systems administrator
  • Cisco certified network associate
  • Certified Ethical Hacker (CEHv9)
  • QualysGuard Certified Specialist in Vulnerability Management
  • Rapid7 InsightVM Certified Administrator
  • Rapid7 Nexpose Advance certified

Personal Information

Title: Cybersecurity Analyst/Consultant

Key Domain And Technical Knowledge

Infrastructure Vulnerability Management and Networking, Windows, Mac OSX, Linux, Juniper SRX, Watchguard, Qualys, InsightVM & Nexpose, Tenable.io, Kenna Securities, NMAP, ADVANCE IP SCANNER, WIRESHARK, PACKETIZER, TCP DUMP, ServiceNow, Tableau, Ivanti

Timeline

Cyber Security Senior Consultant

British American Tobacco
02.2024 - Current

Cyber Security Senior Consultant

Backcountry
05.2022 - 10.2023

Cyber Security Consultant

LittelFuse
05.2019 - 05.2022

Cyber Security – Process Lead

Ryna Technologies Pvt Ltd
06.2014 - 04.2019

System and Networking administrator

VEGA Entertainment Pvt Ltd
06.2011 - 05.2014

Bachelor of Technology -

JNTU

Similar Profiles

CREATE PROFILE
SivaRamaRaju Uddaraju