I am an experienced IT Security professional, with Master's in Cyber Security from Wright State University Ohio. I am self-motivated and dedicated security engineer with diversified domain experiences in the field of Information technology, Banking, Utilities, Airlines, and Retail sector. With my 6 years of professional experience, I got the opportunity to work with some of the fortune 500 companies like Citi, Southwest Airlines, NiSource, DSW and Accenture. I have worked on various security tools and technology for identifying security threats and vulnerabilities, and helped companies to evaluate and fix security threats, and other risks in their IT infrastructure. I have also contributed in automating various manual processes, thus increasing the overall team productivity. I do believe that hard work is the foundation to creating value and success, but I also believe that it should be balanced with a passion for other parts of life including family and recreation. I enjoy playing Badminton and love watching movies and hanging out with friends.
Master in Cyber Security, GPA- 3.88 • August 2015 - July 2017
Coursework Completed: Cyber Network Security, Trust Network Security, Information Security, Advanced Wireless Network, Cloud Computing, Security Attacks & Defense.
Capstone Project: Building application to educate people about their cyber presence in public internet.
Academic Project: Internet Packet Analyzer and DOS detection tool, Android Weather forecast mobile application, Motion detection android application.
Campus Job: Java Programmer Assistant in Computer Science department, for assisting undergrad student with their programming projects.
Bachelor of technology, GPA- 3.5 • April 2012
Organized and coordinated "Q-Chem" event under Aarrush National Technical Fest in 2013 .
Security Operations Engineer• Jul 2019 - PresentResponsible for continuous monitoring, detection, and response against anomalous behavior or threat for securing Amazon GO and Book stores infrastructure. Build and scaled security operations team’s visibility and capability by implementing EDR solution, onboarding logs to the SIEM platform, and created IRP documents to standardize response procedure. Designed, built, and implemented NSM (network security monitoring) solutions frugally using open source technology (Snort, Bro, and AWS SSM) for Amazon retail stores. Took ownership for designing and running Threat Hunting program for Amazon Go and Book stores and published daily reports.
Sr. SOC Analyst • Oct 2017 - Jun 2019
Working as a SOC security analyst in Global SOC team and responsible for monitoring the security incidents in Citi IT networks. Perform monitoring, research, assessment and analysis on Intrusion Detection and Prevention tools, Anomaly Detection systems, Firewalls, Antivirus systems, and proxy devices.Responsible for handling of SOC interaction with other groups within Citi during shift hours such as providing analysis of any possible security incident, coordinating with other groups for threat research and incident response.
Cyber Security Intern, Utilities Sector • May 2017 - July 2017
Optimization of checkpoint firewall by cleaning up the unwanted firewall rules by using Firemon Security Manager tool.
Performed threat analysis by using Palo Alto next generation Firewall (PA 5050 series).
Cyber Security Intern, Airlines Sector • January 2017 - April 2017
Enhanced security of server to server communication by remediating 50K weak SSH keys with 2048 bits SSH keys.
Improved security of PKI SSL implementation across various applications by replacing SHA-1 certificates with SHA-256 certificates.
Performed daily task of rotating, issuing and managing SSH keys and SSL certificates in Venafi Trustworthy tool. Coordinated with application owners to understand their requirements regarding SAML integration for user authentication on 3rd party application and implementation of SSO and MFA on third party application using SecureAuth IAM tool.
Automated various manual processes for generating weekly metrics using Excel Macros and PowerShell, which helped in increasing the overall productivity of the team. Shadowed Threat Intelligence team for learning the standard operating procedure for handling the incidents detected by ArcSight SIEM.
Cyber Security Intern, Retail Sector • May 2016 - August 2017
Documented standard operating procedure (SOP) for Qualys vulnerability assessment tool, Tripwire FIM tool, TrendMicro antivirus, CyberArk, and Proofpoint email spam scanner.
Coordinated with IT operations team for the patching of Severity 5 & 4 level system vulnerabilities, thus enhancing the overall IT infrastructure security.
Performed daily task of Ad-hoc vulnerability assessment using Qualys tool, and file integrity management using Tripwire FIM tool. Investigated incidents detected by Symantec DLP tool and coordinated with respective application teams for resolving the incidents.
Automated Tripwire FIM to automatically generate the tickets for unauthorized changes with respective applications teams which reduced the manual effort for raising the tickets by 85%.
Software Engineering Analyst, Banking Sector• April 2012 - August 2015
Developed a TATC framework for testing of middleware web services using Parasoft SOA test tool, which became the standardized framework for SOA testing within the team.
Performed vulnerability assessment of a web application for JPMC client by using Nessus tool and Burp Suite Proxy and helped them in improving the security of the application.
Managed a team of 4 quality analysts and trained new team members on SOA middleware testing using Parasoft tool. Received the “Accenture Financial Services Zenith Propel Award” at Accenture India Delivery Center level in 2014 and “Performer of the Quarter” award in 2013.
Along with Cyber Security and Network Security, I do have a good knowledge of Python and Java. I continuously try to enhance and improve my skills by learning new technologies in the field of IT Security.
Tool created in Python to inspect the each layer of Internet packet for chekcing failed TCP 3-Way handshake connection.IT Security
Collects all the personal information from public internet for particular individual. Purpose of the tool is to educate user with their cyber presence.Social Reconnaissance
Detect the change in the coordinates of android mobile using geolocation sensor and updates that information to sqllite database.Android
Display the real time weather forecast based on the current location.Android
In my short time working with Survya, I quickly learned that he was very intelligent & self-motivated, & is awesome at scripting (Thank Goodness!!!!) I believe that Survya's Career will go very far.Lornice Herring
It’s rare that you come across standout talent like Survya. I have known him since he joined Accenture in 2012. He worked as an SOA Web service tester and security tester and was one of the most dedicated and promising team member. He was involved in designing, various process and framework for testing SOA web services and took the responsibility for training the new team members. I would say he is an intelligent and self-motivated person who is always on the hunt of learning new technologies in his domain and is greatly focused on improving the current processes. He has always out-performed and has received numerous service excellence awards at Accenture. With his great attitude, dedication, potential and technical expertise, I can definitely say that he will be a great addition to any team. I wish him success in his academic pursuits and career.Seema Kaushal
I have worked with Survya for nearly three years and he is very dedicated at what he does. He is always looking to grow his knowledge base and is a team player. He has always worked towards improving the company's processes and has automated many cyber security reports and has always been an asset. Survya will be a great addition to any team and will be a great asset wherever he goes.Sayali Sheode
Survya is a bright and talented individual with a positive attitude. During my time working with Survya I found him to be a quick learner, he was detail oriented and could follow direction well but also had the ability to work well independently. Survya would be a great addition to any team and I am confident he will go far in his career.Ed Von Dolln
Survya has been a keen learner of the script programming languages and has sound skills on security testing. A very detailed oriented guy. He developed some of the tools which helped a lot to the team.Rakesh Padhiary
Survya was a pleasure to work with. He has a good understanding and knowledge on Hacking. He is a very knowledgeable guy and have worked on different platforms. He is outstanding in terms of Penetration Testing and Security Testing. Got to learn many things from him like OWASP, Tamper Data, Orbot and so on.Vijay Mishra