Archana Rajpalem
Minnesota,MN
Summary
With over 10 years of experience in Infrastructure Management and AWS Security Cloud Services. My experience includes: Leadership & Supervision: 4 years leading and supervising infrastructure operations, managing cybersecurity frameworks, and ensuring regulatory compliance for large scale projects. Cybersecurity Expertise: Extensive experience in vulnerability management, threat management, and risk assessment across high performing cloud and on-premise environments. Vendor & Third-Party Management: Experienced in managing relationships with security vendors and third-party service providers. Negotiated contracts, evaluated service levels, and ensured that external services aligned with organizational security requirements and compliance standards
Overview
12
12
years of professional experience
1
1
Certification
Work History
Infrastructure Security Engineer
Amazon Web Services (AWS)
08.2021 - Current
- Managed the complete lifecycle of identifying, assessing, and remediating vulnerabilities within the global AWS networking infrastructure
- Configured and maintained cloud security tools to automate vulnerability detection, risk assessments, and security compliance checks, resulting in reduced exposure to potential threats
- Experience in devsecops, applied secure coding practices throughout the software development lifecycle to identify and mitigate security vulnerabilities during design, coding, and testing phases
- Led the deployment of SIEM solutions, to monitor and detect potential security incidents, including unauthorized access attempts, malware infections, suspicious network traffic, and other anomalies
- Implemented long-term security strategies aligned with business objectives and compliance aligned with security frameworks and standards
- Developed and managed security tools, including Intrusion Detection Systems to detect potential threats and vulnerability scanners to identify and assess security weaknesses within the network
- Coordinated staff augmentation efforts to support security initiatives, ensuring a smooth integration of external staff into security teams to meet project deadlines and objectives
- Led incident response teams during critical events, performed root cause analysis, and managed post-incident reviews
- Collaborated with the Red Team on penetration testing to identify and address vulnerabilities
- Developed Monthly business review reports to communicate technical information to all stakeholders.
Cloud Security Lead
Ameriprise Financial
08.2019 - 10.2022
- Supported various AWS and Google Cloud services, including data storage and protection solutions for network infrastructure
- Performed risk analysis to evaluate the potential business impact of unaddressed vulnerabilities and assisted in developed effective mitigation strategies
- Managed cloud and on-premise infrastructure, including implementing standard security measures aligned with NIST, ISO 27001 and SOC
- Performed regular security audits and assessments using security tools and technologies to evaluate the effectiveness of security measures and identify opportunities for improvement
- Utilized SIEM platforms to aggregate, analyze, and correlate security data from multiple sources, enabling proactive threat detection and response
- Integrated security into DevOps pipelines by incorporating automated security testing tools, such as static and dynamic application security testing (SAST and DAST), to identify and address vulnerabilities early in the development process
- Diagnosed and resolved data availability issues, performed root cause analysis, and provided support to users, application developers, and IT operations
- Developed and managed RFPs for cloud security services, ensuring competitive vendor selection and contract negotiations that aligned with the company's long-term security strategies
- Performed risk assessments on third-party services to identify potential security vulnerabilities and ensure they met internal security standards
- Developed and implemented comprehensive incident response plans, coordinating response efforts across multiple departments to ensure effective and timely resolution of security incidents.
- Collaborated closely with vendors to assess their products'' compatibility with organizational security guidelines before implementation into the company''s IT ecosystem.
- Assessed vendor proposals for new technology solutions or equipment upgrades, making informed decisions that balanced cost-effectiveness with desired results.
Infrastructure Engineer
Cardinal Healthcare
05.2015 - 08.2019
- Managed and maintained high critical 24/7 storage infrastructure including storage devices like storage area networks (SANs), network-attached storage (NAS)
- Configured and optimized storage arrays, SAN fabrics, NAS devices, and other storage components for performance, reliability, and scalability
- Implemented and managed secure data protection strategies, including backup, replication and disaster recovery solutions, to ensure the integrity, availability, and recoverability of critical data
- Performed and participated in code reviews with a focus on identifying and fixing security flaws and ensuring adherence to secure coding standards
- Collaborated with vendors to plan and implement break fix activities, hardware issues, and vulnerability concerns
- Designed and implemented business continuance and disaster recovery plans
- Implemented robust change management process to ensure that outages are scheduled to minimize impact on clients.
- Reduced downtime by proactively identifying and addressing potential issues in the IT infrastructure.
- Collaborated with cross-functional teams to develop comprehensive IT strategies aligned with business goals.
System Storage Admin
IBM
06.2012 - 01.2014
- Budget and license planning implemented detection and alerting on security, operational and availability issues
- Performed system administration tasks such as user management, access control, security configuration, and system monitoring to ensure the health, availability, and security of IT systems.
Education
Master of Science (M.S.) in Computer Science -
Norfolk State University
05.2012
Skills
- AWS / Google Cloud
- SIEM
- Rapid Incident response and Risk management
- Vulnerability Detection and Remediation
- Network Monitoring
- Vendor management and Cross-functional Collaboration
- Security tools ( IDS, Splunk, Nessus)
Certification
- Amazon Web Services (AWS) Certified Solutions Architect
- Certified Cloud Security Professional (CCSP)
Timeline
Infrastructure Security Engineer
Amazon Web Services (AWS)
08.2021 - Current
Cloud Security Lead
Ameriprise Financial
08.2019 - 10.2022
Infrastructure Engineer
Cardinal Healthcare
05.2015 - 08.2019
System Storage Admin
IBM
06.2012 - 01.2014
Master of Science (M.S.) in Computer Science -
Norfolk State University
Similar Profiles
Francisco Javier Chavero, Jr.Francisco Javier Chavero, Jr.
Environmental Program Manager (EPM) at Amazon Web Services (AWS), Amazon Data Services, Inc.Environmental Program Manager (EPM) at Amazon Web Services (AWS), Amazon Data Services, Inc.
Nicolas GrossNicolas Gross
Data Center Technician at Amazon Web Services (AWS)Data Center Technician at Amazon Web Services (AWS)
SIYANDA JAMCESIYANDA JAMCE
Technical Account Manager (TAM) L5 at Amazon Web Services (AWS)Technical Account Manager (TAM) L5 at Amazon Web Services (AWS)
Prudhvi YalamanchiliPrudhvi Yalamanchili
Software Development Engineer at Amazon Web Services (AWS)Software Development Engineer at Amazon Web Services (AWS)
Mada FallMada Fall
Business Technology Analyst 2 at US Bancorp InvestmentsBusiness Technology Analyst 2 at US Bancorp Investments