I am an experienced IT Security professional, with Master's in Cyber Security from Wright State University Ohio. I am self-motivated and dedicated security engineer with diversified domain experiences in the field of Information technology, Banking, Utilities, Airlines, and Retail sector. With my 6 years of professional experience, I got the opportunity to work with some of the fortune 500 companies like Citi, Southwest Airlines, NiSource, DSW and Accenture. I have worked on various security tools and technology for identifying security threats and vulnerabilities, and helped companies to evaluate and fix security threats, and other risks in their IT infrastructure. I have also contributed in automating various manual processes, thus increasing the overall team productivity. I do believe that hard work is the foundation to creating value and success, but I also believe that it should be balanced with a passion for other parts of life including family and recreation. I enjoy playing Badminton and love watching movies and hanging out with friends.
Survya Singh
Seattle, WA 98119 US
(469)-493-6829
[email protected]
Master in Cyber Security, GPA- 3.88 • August 2015 - July 2017
Coursework Completed: Cyber Network Security, Trust Network Security, Information Security, Advanced Wireless Network, Cloud Computing, Security Attacks & Defense.
Capstone Project: Building application to educate people about their cyber presence in public internet.
Academic Project: Internet Packet Analyzer and DOS detection tool, Android Weather forecast mobile application, Motion detection android application.
Campus Job: Java Programmer Assistant in Computer Science department, for assisting undergrad student with their programming projects.
Bachelor of technology, GPA- 3.5 • April 2012
Organized and coordinated "Q-Chem" event under Aarrush National Technical Fest in 2013 .
Security Operations Engineer• Jul 2019 - Present
Responsible for continuous monitoring, detection, and response against anomalous behavior or threat for securing Amazon GO and Book stores infrastructure. Build and scaled security operations team’s visibility and capability by implementing EDR solution, onboarding logs to the SIEM platform, and created IRP documents to standardize response procedure. Designed, built, and implemented NSM (network security monitoring) solutions frugally using open source technology (Snort, Bro, and AWS SSM) for Amazon retail stores. Took ownership for designing and running Threat Hunting program for Amazon Go and Book stores and published daily reports.
Sr. SOC Analyst • Oct 2017 - Jun 2019
Working as a SOC security analyst in Global SOC team and responsible for monitoring the security incidents in Citi IT networks. Perform monitoring, research, assessment and analysis on Intrusion Detection and Prevention tools, Anomaly Detection systems, Firewalls, Antivirus systems, and proxy devices.Responsible for handling of SOC interaction with other groups within Citi during shift hours such as providing analysis of any possible security incident, coordinating with other groups for threat research and incident response.
Cyber Security Intern, Utilities Sector • May 2017 - July 2017
Optimization of checkpoint firewall by cleaning up the unwanted firewall rules by using Firemon Security Manager tool.
Performed threat analysis by using Palo Alto next generation Firewall (PA 5050 series).
Cyber Security Intern, Airlines Sector • January 2017 - April 2017
Enhanced security of server to server communication by remediating 50K weak SSH keys with 2048 bits SSH keys.
Improved security of PKI SSL implementation across various applications by replacing SHA-1 certificates with SHA-256 certificates.
Performed daily task of rotating, issuing and managing SSH keys and SSL certificates in Venafi Trustworthy tool.
Coordinated with application owners to understand their requirements regarding SAML integration for user authentication on 3rd party application and implementation of SSO and MFA on third party application using SecureAuth IAM tool.
Automated various manual processes for generating weekly metrics using Excel Macros and PowerShell, which helped in increasing the overall productivity of the team.
Shadowed Threat Intelligence team for learning the standard operating procedure for handling the incidents detected by ArcSight SIEM.
Cyber Security Intern, Retail Sector • May 2016 - August 2017
Documented standard operating procedure (SOP) for Qualys vulnerability assessment tool, Tripwire FIM tool, TrendMicro antivirus, CyberArk, and Proofpoint email spam scanner.
Coordinated with IT operations team for the patching of Severity 5 & 4 level system vulnerabilities, thus enhancing the overall IT infrastructure security.
Performed daily task of Ad-hoc vulnerability assessment using Qualys tool, and file integrity management using Tripwire FIM tool.
Investigated incidents detected by Symantec DLP tool and coordinated with respective application teams for resolving the incidents.
Automated Tripwire FIM to automatically generate the tickets for unauthorized changes with respective applications teams which reduced the manual effort for raising the tickets by 85%.
Software Engineering Analyst, Banking Sector• April 2012 - August 2015
Developed a TATC framework for testing of middleware web services using Parasoft SOA test tool, which became the standardized framework for SOA testing within the team.
Performed vulnerability assessment of a web application for JPMC client by using Nessus tool and Burp Suite Proxy and helped them in improving the security of the application.
Managed a team of 4 quality analysts and trained new team members on SOA middleware testing using Parasoft tool.
Received the “Accenture Financial Services Zenith Propel Award” at Accenture India Delivery Center level in 2014 and “Performer of the Quarter” award in 2013.
Along with Cyber Security and Network Security, I do have a good knowledge of Python and Java. I continuously try to enhance and improve my skills by learning new technologies in the field of IT Security.
Tool created in Python to inspect the each layer of Internet packet for chekcing failed TCP 3-Way handshake connection.
IT SecurityCollects all the personal information from public internet for particular individual. Purpose of the tool is to educate user with their cyber presence.
Social ReconnaissanceDetect the change in the coordinates of android mobile using geolocation sensor and updates that information to sqllite database.
Android