AJAY NELLURI
Summary
Cybersecurity Consultant with over 7 years of expertise in Application Security and incident response. Proficient in SIEM tools such as QRadar and Splunk, with good hands-on experience in Splunk ESM. Managed vulnerability management programs, ensuring effective remediation through a risk-based approach. Specialized in enterprise-level Application Security, utilizing DAST and SAST techniques to identify vulnerabilities across DEV, PRE-PROD, and PROD environments.
Overview
9
9
years of professional experience
1
1
Certification
Work History
Sr. Security Engineer
Wells Fargo
Irving, TX
11.2023 - Current
- Performed the Application Security program (DAST and SAST) at the enterprise level to identify, report, and remediate security vulnerabilities from applications deployed in DEV, PRE-PROD, and PROD environments.
- Responsible for the vulnerability management program, reviewing reports, and working with respective teams to remediate issues, following a risk-based approach, and implementing strategies for continuous vulnerability assessment and management using Tenable solutions.
- Integrated BI tools with cloud data sources for AWS S3, Redshift, and BigQuery to support scalable reporting pipelines.
- Developed Python scripts for automated security scanning and vulnerability detection.
- Implementation of the Symantec Endpoint Protection and Data Loss Prevention on Non-Prod(testing)/Prod Environments, Creating Policies, configuring setting, Testing, Troubleshooting, and solving the issue.
- Designed and deployed Helm charts for Kubernetes applications, improving deployment efficiency. Optimized Kubernetes clusters using Helm charts and monitoring tools.
- Created visually compelling dashboards in Tableau Desktop, enabling real-time insights into customer behavior and operational metrics.
- Built telemetry pipelines using Fluentd and Cribl to normalize, enrich, and route logs from cloud and on-premises sources to SIEM and SOAR platforms.
- Integrated The Hive with Cortex XSOAR to enable bidirectional case mirroring and automated incident enrichment using CTI feeds.
Application Security Engineer
USAA
Plano, Texas
10.2022 - 09.2023
- Actively Involved in Dynamic Application Security Testing (DAST) for the Web and Mobile Applications.
- Performed Automated Dynamic, and static Scans for java applications using IBM Appscan and Oversee tuning of the Barracuda Web Application Firewall (WAF), security controls, etc.
- Worked extensively with software development teams to review the source code, triage the security vulnerabilities generated by Checkmarx, and eliminated false positives.
- Created Confluence playbooks for incident response procedures and forensic investigation guidelines.
- Implemented edge analytics and buffering strategies to ensure telemetry resilience during SIEM outages and attack volume spikes.
- Automated security patching and compliance checks using Azure Policy and Implemented Azure Firewall and DDoS Protection to safeguard cloud environments.
Technology Analyst (Cybersecurity)
Infosys
Hyderabad, India
10.2018 - 07.2021
- Responsible for security incidents as L2/L3 analyst using the Resilient tool, and Responsible for analysis of Splunk and Sentinel offenses.
- Worked extensively with software development teams to review the source code, triage the security vulnerabilities generated by IBM Appscan, Burp Suite.
- Developed custom XSOAR playbooks for phishing, malware, and insider threat scenarios, reducing manual triage time by 70%.
- Hands-on experience in investigating CrowdStrike detections to identify malicious processes and malware families and take appropriate actions to remediate.
- Ensured adherence to relevant security standards and guidelines, such as ISO 27001 or NIST, as part of the risk management process.
- Automated incident response workflows using Playbooks and Logic Apps in Azure Sentinel and Integrated Azure Sentinel with third-party security tools like Splunk, Palo Alto, and CrowdStrike.
- Developed Python scripts for packet analysis and intrusion detection using Scapy and automated firewall rule validation and security policy enforcement using Python.
- Used Helm to deploy Prometheus, Grafana, for monitoring and logging. Conducted Helm security audits to identify misconfigurations and vulnerabilities.
Security Analyst
Value Labs
Hyderabad, India
05.2016 - 09.2018
- L1, L2 support of an application, troubleshooting and analysis of Application issues.
- Monitoring and Investigating SIEM Offenses. (QRADAR – L1)
- Performing a vulnerability scan using NESSUS and OpenVAS. Creating reports and remediation steps for vulnerabilities detected.
- Evaluated threats and vulnerabilities to identify security risks, aligning strategies with organizational goals and industry standards.
- Worked alongside cross-functional teams to perform TARA activities, ensuring cohesive risk reduction across departments.
- Installation and Configuration of Symantec Endpoint Protection Product and scanning the network Machines, discovering the weaknesses (vulnerabilities), calculating the risks associated with it.
- Worked as DLP analyst, perform policy creation, policy tuning, users & roles creation as well as remediate the incidents.
- Installation and Configuration of Symantec Encryption product, Support activities as well.
- Participated in information security spot check audits.
Education
Masters - Applied Computer Science
Northwest Missouri State University
USA08-2022
B. Tech - Computer Science and Engineering
Jawaharlal Nehru Technological University
India05-2015
Skills
● Programming and Scripting Languages:C, Java, Bash, JavaScript, Python
● Protocols: HTTP, HTTPS, SSL/TLS, SSH, SMTP, IPSec, Secure FTP, DNS, TCP/IP, PKI, VPN, Digital Certificates, HIDS/NIDS, Cryptography, Firewalls
● Cloud: AWS, AZURE
● DAST and SAST tools: IBM Appscan, Burp suite, Qualys Guard, Web Scarab, HP Fortify, Checkmarx, BigFix, AppSpider, Cortex Nmap, Wireshark, Metasploit Kali Linux
● Vulnerability Assessment: Nessus, Tenableio, OpenVAS
● SIEM: IBM QRadar, Splunk, Sentinel
● EDR: CrowdStrike, Carbon black
● Antivirus: Symantec, CrowdStrike, McAfee & Sentinel
● Issue Tracking/Ticketing Tools: JIRA, Confluence, Service-now, Trim Soft
● Operating Systems: LINUX, Windows
● Other: vpc, Git, Vectra, Sysdig, pyspark, cloudera, PISHME, Docker, Power BI, Tableau, windbg, Palo Alto, Juniper, Helm, CloudTrail
Certification
Certified Ethical Hacking (CEH)
Information Technology Infrastructure Library (ITIL v3)
Timeline
Sr. Security Engineer
Wells Fargo
11.2023 - Current
Application Security Engineer
USAA
10.2022 - 09.2023
Technology Analyst (Cybersecurity)
Infosys
10.2018 - 07.2021
Security Analyst
Value Labs
05.2016 - 09.2018
Masters - Applied Computer Science
Northwest Missouri State University
B. Tech - Computer Science and Engineering
Jawaharlal Nehru Technological University
Similar Profiles
PATRICIA M. SCHERERPATRICIA M. SCHERER
Regional Bank Private Banker II at Wells Fargo Bank / Wells Fargo AdvisorsRegional Bank Private Banker II at Wells Fargo Bank / Wells Fargo Advisors
Andrew S. HollenbachAndrew S. Hollenbach
Collateral Valuation Analysis at Wells Fargo Home Mortgage and Wells Fargo Bank NACollateral Valuation Analysis at Wells Fargo Home Mortgage and Wells Fargo Bank NA
Laxmikanth ChittampallyLaxmikanth Chittampally
Senior Operational Processor at Wells Fargo India Solution PVT Ltd, Wells FargoSenior Operational Processor at Wells Fargo India Solution PVT Ltd, Wells Fargo
Mayank OberoiMayank Oberoi
Financial Accounting Associate/ Alteryx SME at Wells Fargo International Solutions Private LTD (Wells Fargo)Financial Accounting Associate/ Alteryx SME at Wells Fargo International Solutions Private LTD (Wells Fargo)
Ruby Alexis RoseRuby Alexis Rose
Sr. Security Engineer at RobinhoodSr. Security Engineer at Robinhood