Naveen J Sstty

Vulnerability Assessment
Cloud Security Assessment
Web Application Test
Network Penetration Test
Cyber Threat/Incident Analysis
Security Control GAP Analysis
Security Risk Assessment
Secure Configuration Review

Vulnerability Assessment
Cloud Security Assessment
Web Application Test
Network Penetration Test
Cyber Threat/Incident Analysis
Security Control GAP Analysis
Security Risk Assessment
Secure Configuration Review

 Successfully delivered legacy and cloud based audit to 850+ global clients across various industries including 50000+ servers around 26 data centers
 Performed an audit in security compliances, vulnerability and web scans on Windows, AIX, Linux, Database (Oracle, SAP Hana, DB2) and application platforms
 Configuring, managing and troubleshooting of client systems, data collectors, communication and policy deviation issues in TSCM
 Scheduling maps, vulnerability scans, reports and managing assets, remediation tickets in Quays guard
 Configuring and scanning of web URLs in Appscan and sharing scan results to apps team to fix the deviations
 Review and approval of security waivers and performing suppression for scan violation exceptions
 Coordinating with patch team to perform vulnerability scans and validating the systems are compliance
 Generating and sharing scan reports of TSCM, Qualys and Appscan to respective teams for remediation
 Worked with controls team to assist and testing in regulatory compliances like HIPAA, FFIEC, PCI, FISMA and FDA for audit evidence request
 Monitoring, analyze and escalate of privileged log security events in QRadar SIEM to AIX, Linux, Windows and Network teams for validation
 Extracting and manage reports from QRadar SIEM to present weekly status to management regarding issues, compliance and progress
 Proactively identify and analyze threat information, latest trends from security news, communities, X-Force Exchange and SANS threat intelligence

Managing of SEPM around 18 data centers including 1000+ clients and 45000+ servers to ensure that virus definitions are up to date and online
•Managing of TMDS for anti-malware, firewall, IPS and integrity monitoring protection to 450+ customers around 5 data centers including 8000+ servers
•Monitoring dashboards of SEPM and TMDS for activity alerts, events and ensure to take appropriate actions
•Configuring of alerts, scheduled scans, reports, signature updates, exceptions, live updates and file exclusion policies in SEPM and TMDS
•Troubleshooting of endpoint offline, signature out of date, auto protect disabled and virus alerts issues in Symantec and deep security
•Proactively identify and analyze latest malware threats from Symantec and Trend micro threat intelligence
•Generating and sharing compliance and malware detection reports of SEPM and TMDS to stakeholders
•Monitoring dashboard of MaaS360 for non-compliance devices and reporting to respective device users
•Extracting and manage reports from Maas360 to present weekly status to management regarding issues, metrics and compliance
•Performed user ON boarding and OFF boarding requests in LDAP master server
•Validate the user details and providing, modifying, removing access for host list, group, net group in LDAP
•Creation, modification and deletion of user IDs, accounts and groups in Active directory
•Worked as a central team and creating task for providing, modifying and removing access to applications
•Review, manage and revalidation of all users and all type of accounts on semi annual basis