Pradeep Param
Oakland,CA
Summary
Accomplished Application Security and DevSecOps Engineer with over 8 years of experience in managing and securing cloud environments. Skilled in a variety of tools and technologies for infrastructure automation, application security, and compliance. Proven ability to implement security best practices and automate complex processes.
Overview
8
8
years of professional experience
Work History
Application Security Engineer
US Bank
Oakland, CA
07.2021 - Current
- Implemented security policies, procedures, and automated deployment processes using Jenkins and IML files, effectively managing CI/CD pipelines
- Managed Linux and RHEL servers, performed vulnerability assessments, and applied patches; utilized tools like Putty and WinSCP for secure server management and file transfers
- Automated certificate generation processes using Let's Encrypt and integrated with DNS management for streamlined deployment
- Configured and deployed applications on Azure cloud, transitioning from Rancher private cloud, using Terraform and ARM templates for infrastructure provisioning
- Conducted container security scans using Snyk, and integrated security testing into CI/CD pipelines using tools like OWASP Dependency-Check.
DevSecOps Engineer
USAA
San Antonio, TX
04.2018 - 06.2021
- Specialized in secure deployment workflows using Docker and IBM UrbanCode Deploy, maintaining robust CI/CD pipelines for automated deployment and security testing
- Automated server configurations and deployments with Ansible and managed RHEL servers using Terraform for compliance and security
- Conducted vulnerability scans and integrated Snyk and OWASP Dependency-Check into the SDLC for early detection of vulnerabilities
- Utilized Putty and WinSCP for remote server access and file management, ensuring secure connections and data integrity during deployments.
DevSecOps Engineer
CVS Health
Woonsocket, RI
10.2016 - 03.2018
- Managed internal cloud infrastructure on OpenStack; developed automated logging and monitoring solutions using Elasticsearch, Logstash, and Kibana (ELK stack)
- Automated deployment scripts using Jenkins and Bash, and configured RHEL servers with security hardening measures
- Designed DNS configurations using Bind for internal and external DNS, automating record updates through scripts
- Conducted comprehensive security assessments and implemented secure file transfer protocols using WinSCP and Putty for Linux server management.
Education
Master of Science in Information Technology -
Wilmington University
DE05-2016
Skills
- Azure
- AWS
- OpenStack
- Docker
- Elasticsearch
- Kibana
- Grafana
- Kubernetes
- PowerShell
- Bash
- Python
- Putty
- WinSCP
- Snyk
- OWASP Dependency-Check
Timeline
Application Security Engineer
US Bank
07.2021 - Current
DevSecOps Engineer
USAA
04.2018 - 06.2021
DevSecOps Engineer
CVS Health
10.2016 - 03.2018
Master of Science in Information Technology -
Wilmington University