Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Rajesh Sabbani

Lutz,FL

Summary

As a seasoned Security Architect with over 15+ years of experience, My expertise extends across various industries, with a primary focus on Banking, Investment Banking, Retail, Ecommerce and Biotechnology sectors. My expertise extends across various industries, with a primary focus on Banking, Investment Banking, Retail, Ecommerce and Biotechnology sectors. My core responsibilities have centered around security architecture, safeguarding digital assets, and fortifying the resilience of IT infrastructures and data center operations. While also being able to implement upgradable, scalable, Hyper-Converged infrastructure to help Clients achieve business agility, scalability, high availability and flexibility within a strong AWS ecosystem of high efficiency.

Overview

15
15
years of professional experience
1
1
Certification

Work History

AWS Cloud Security / Solutions Architect

Nielsen Holdings
Tampa, FL
09.2018 - Current
  • Drafted visual representations of software architecture design for presentation to stakeholders.
  • Mentored team, sharing skills and expertise and encouraged each member to bring forward ideas and suggestions for improvement.
  • Worked with customers or prospective customers to develop integrated solutions and lead detailed architectural dialogues to facilitate delivery of comprehensive solution.
  • Established robust security management protocols with Wiz monitoring, and Exposing Critical/High Vulnerabilities within AWS/Azure and GCP ecosystems to uphold operational continuity
  • Managed project planning, resource allocation, scope, schedule, status and documentation.
  • Successfully conducted Proof of Concept (POC) assessments on various security agents, including Devo, Splunk, and Symantec security Manger a range of other cutting-edge security tools, staying abreast of the latest industry trends. Managed the implementation of selected and refined security solutions.
  • Threat modeled web applications and work with development team throughout the agile SDLC process for the customer.
  • Perform web application vulnerability assessments and penetrations tests while also providing security and compliance requirements for software development projects.
  • Provided technical requirements and enterprise solution design for global data encryption and key management solutions for all key lifecycle and regulatory use cases and worked with global technology teams to help them understand and integrate the data encryption and key management requirements into their tools to support the encryption and key management solutions.
  • Architected and operated solutions built on AWS Platform. While also delivering multiple multi-million dollar migration projects securely, efficiently and within budget.
  • Created business continuity/disaster recovery, fail-over and runbook documentation.
  • Ensured security is integrated into all cloud architecture solutions built.
  • Responsible for creating VPCs for Dev/test team, simulating a production environment for web/application servers and database traditional servers in public and private subnets, respectively.
  • Built VPCs from scratch and with CloudFormation to automate the infrastructure as code build out process, created private and public subnets in specific regions such as U.S East 1, U.S East 2 where customers resources are mostly deployed, creating security groups and network access lists, configuring internet gateways, OpenVPN, creating AMI, understanding of user access management/role based access/multi factor authentication and API access, configuration of auto scaling and elastic load balancer for scaling services if a configured threshold has been exceeded, configuration of SNS to send notifications and Cloud Watch to collect logs and metrics.
  • Participated in deep architectural discussions to build confidence and ensure customer success when building new and migrating existing applications, software, and services on the AWS platform.
  • Proactively monitored resources and applications using AWS CloudWatch including creating alarms to monitor metrics such as EBS, EC2, ELB, RDS, S3, SNS and configured notifications for the alarms generated based on events defined.
  • Facilitated third Party Vendor engagement and coordination to customer site for Demo and POC.
  • Ensured that solution meets availability requirements and mitigates any new operational risks introduced using encryption or centralized key management solution.
  • Advised and supported the program director on the state of the market of encryption and key management technology.
  • Advised and supported the program manager on the enterprise solution implementation approach in concert with input from technology engineering and operational teams.
  • Strong cross silo Enterprise Security Architecture experience. Examples: enterprise identity & access management, enterprise key management and data encryption, enterprise logging, and security incident and event monitoring.
  • As a member of the customers Engineering and Operations team within their Global Security, I was responsible for engineering, developing, and maintaining tooling and processes for the team and other team within the enterprise.
  • I was responsible for strategic Design and Engineering within The Global Security team with duties not limited to defining, developing, and implementing security controls for cloud ecosystems and supporting the enterprise global security initiatives promoting "Software as a Service" - "Platform as a Service" adoption and transformation.
  • I collaborated with multiple engineering and development teams to ensure the highest security standards are developed, applied, and maintained across project scope.
  • Championed the security processes and mentored colleagues eager to work collaboratively as a team to drive change, create security tools and services, and to solve problems. Igniting passion for security, technology, and innovation within the customers global enterprise teams.
  • Analyzed system services, operating systems, networks, and applications from a security perspective in a presentation style to higher ups.
  • Communicated with partners and clients to update product and implementation status at technical or functional level.
  • Provided support during customer implementations and applied industry best practices.
  • Successfully led a team of Clouds security and Managed a Cloud Reliability Engineering initiative aimed at significantly reducing operational costs aligned with specific business targets.
  • Developed and delivered technical training designed to enable and educated software implementation partners
  • Analyzed system solutions proposed to meet diverse business requirements
  • Managed and delivered advanced customization and configuration for Architecture solutions
  • Worked with developers and engineers to realize technological solutions

AWS Cloud Architect/AWS Security Engineer

Biogen
Cambridge, MA
09.2017 - 09.2018
  • Monitored daily customer's cloud security infrastructure, security logs and administration of security related services/products/tools in their enterprise environment.
  • Reviewed system designs and architectures and made security-related recommendations.
  • Reviewed, Developed, executed, and maintained security policies and procedures.
  • Led the build out of Cloud security control catalog, security policies and procedures and assisted in enforcing them.
  • Successfully delivered multiple cloud migration projects securely.
  • Analyzed existing cloud structures and created new and enhanced security methods.
  • Helped Define, Developed, and Implemented a framework to deliver "Security as a Service" for the customer.
  • Stayed abreast with emerging cloud technologies and their AWS implementations, as well as their impact on the security landscape.
  • Coached, mentored, and developed team members in AWS and other life skills.
  • Supported and led security incident response in a cross-functional collaboration environment driving towards incident resolution.
  • Developed incident response initiatives that improved our capabilities to respond and remediate security events faster.
  • Performed analysis of logs from a variety of sources (e.g., individual host logs, network traffic logs) to identify and investigate potential threats.
  • Built automation for identification, response, and remediation of malicious activity.
  • Experience “threat hunting”, i.e., using threat intel to proactively and iteratively investigates these potential risks and finding suspicious behavior in the network.
  • Collaborated with the Security Operations Center (SOC) to evaluate vulnerabilities discovered during scans and effectively communicate them to the appropriate remediation team.
  • Managed customers enterprise scale solutions that leverage the following AWS Services: EC2, S3, EBS, SSM, Dynamo DB, EMR, CloudFormation, RDS, CloudFront, VPC, Route53, IAM, CloudWatch, Elastic Beanstalk, Lambda, etc.
  • Hands-on experience in performance tuning, including the following: (load balancing, web servers, content delivery Networks, Caching (Content and API).
  • Responsible for planning, designing, and developing cloud-based applications, managing cloud environments in accordance with security guidelines.
  • Proactively monitored resources and applications using AWS CloudWatch including creating alarms to monitor metrics such as EBS, EC2, ELB, RDS, S3, SNS and configured notifications for the alarms generated based on events defined.
  • Third Party Vendor engagement and coordination to customer site for Demo and POC.
  • Worked cross-functionally with customers Product and Engineering teams to ensure security vulnerabilities are properly understood, prioritized, remediation plans developed to address the risk, and remediated in a timely manner.
  • Performed validation of security vulnerability remediation activities.
  • Designed Enterprize AWS architecture with lucid Chart.
  • Implemented, configured, and troubleshot security tools and devices.
  • Identified any gaps in security tool coverage of full environment (corporate and cloud) and managed vendor selection process for new tools needed.
  • Evaluated and partnered with vendors to implement security solutions that drove enterprise goals and objectives.
  • Developed and published metrics and dashboards demonstrating security posture and event activity.
  • Facilitated the design of configuration baselines and identifed gaps and created detailed recommendations to the customer.
  • Advised and contributed to the development of architectural security policy and procedures that supported the company's commitment to protect the integrity and confidentiality of systems and data.
  • Guided and influenced existing partners on recommended upgrades and enhancements to integrated solutions.
  • Worked with customers or prospective customers to develop integrated solutions and lead detailed architectural dialogues to facilitate delivery of comprehensive solution.

Information Security Consultant

Barclays
New York, NY
12.2015 - 08.2017
  • Performed risk analyses to identify appropriate security countermeasures.
  • Conducted security audits to identify vulnerabilities.
  • Monitored computer virus reports to determine when to update virus protection systems.
  • Reviewed violations of computer security procedures and developed mitigation plans.
  • Monitored use of data files and regulated access to protect secure information.
  • Recommended improvements in security systems and procedures.
  • Researched and developed new computer forensic tools.
  • Developed plans to safeguard computer files against modification, destruction or disclosure.
  • Engineered, maintained and repaired security systems and programmable logic controls.
  • Prepared a variety of different written communications, reports and documents to ensure smooth operations.
  • Encrypted data and erected firewalls to protect confidential information.
  • Developed and maintained courteous and effective working relationships.
  • Conducted research, gathered information from multiple sources and presented results.
  • Actively listened to customers' requests, confirming full understanding before addressing concerns.
  • Devoted special emphasis to punctuality and worked to maintain outstanding attendance record, consistently arriving to work ready to start immediately.
  • Worked with the Sr. Manager of Information Security to aid in development of a security program and security projects that address identified risks and business security requirements.
  • Assisted in development of ELT reporting, cyber briefing, and committee white papers and presentations.
  • Assisted in the process of gathering, analyzing, and assessing the current and future threat landscape, as well as providing leadership with a realistic overview of risks and threats in the enterprise environment.
  • Monitored and reported on compliance with security policies, as well as the enforcement of policies within the IT department.
  • Assisted compliance team, resource owners and IT staff in understanding and responding to security audit failures reported by auditors.
  • Aided with messaging security communication, awareness, and training for audiences, which may range from senior leaders to field staff.
  • Translated the emerging threat landscape and our organizations evolving cyber risk posture into clear, relevant, and actionable items for a variety of audiences.
  • Worked as a liaison with vendors and the legal and purchasing departments to establish mutually acceptable contracts and service-level agreements.
  • Worked with various stakeholders to identify information asset owners to classify data and systems as part of a control framework implementation.
  • Served as an active and consistent participant in the information security governance process.
  • Worked with the CISO and IT and business stakeholders to define metrics and reporting strategies that effectively communicate successes and progress of the security program.
  • Provided support and guidance for legal and regulatory compliance efforts, including audit support.
  • Consulted with IT & Security staff to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications, and software.
  • Recommended and coordinated the implementation of technical controls to support and enforce defined security policies.
  • Worked with the enterprise security infrastructure & engineering team to ensure that there is a convergence of business, technical and security requirements; liaised with IT management to align with existing technical installed base and skills with future architectural requirements.
  • Developed a strong working relationship with the security infrastructure & engineering team to develop and implement controls and configurations aligned with security policies and legal, regulatory and audit requirements.

Cloud Solution Engineer

Walgreens
Chicago, IL
06.2011 - 12.2015
  • Led design and operations of cloud services using AD, DNS, DHCP on VMware Confidential -I virtualization on laaS/SaaS.
  • Maintained AD/DNS services windows management with new initiative to grow business unit and vendor support and adoption of cloud services
  • Led all aspects of laaS, SaaS, PaaS, platform from building technology strategy, roadmap to delivery of platform with AD/DNS, VMware integration.
  • Spearheaded the Data Center and Enterprise initiative to migrate existing and build new products on API platform and integrated, partners, and developers to platform
  • Lead several Dev/Ops team to implement PaaS solutions on cloud architecture for private and public automation and orchestration services.
  • Led delivery and implementation of customer applications for services and account management of PaaS, SaaS and laas.
  • Delivered next generation Data center and Enterprise platforms with high availability and multi tenancy architecture.
  • Built out award winning Platforms for laaS, SaaS and PaaS using best of breed and latest Cloud technology offerings with Agile methodology supported across all form factors.
  • Led initiative to deliver Mobile and tablet network security posturing using ISE for tablets and mobile devices.

Network Capacity Engineer

HCL Technologies
Chennai, Tamilnadu
02.2010 - 06.2011
  • Drive network utilization assessment for network upgrades on Confidential switch and routers for Internet access and customer experience.
  • Create enhance service models for greater speed and network utilization for customer.
  • Lead refresh of legacy network models and components for greater speed, reliability and higher customer satisfaction
  • Provide engineering documents to outline migration upgrades of circuits, and network components to enhance network speed and drive customer experience up.

Infrastructure Engineer

PRO Ennovate Labs
Hyd, Telangana
05.2009 - 01.2010
  • Design, configure and provide 3rd level support on Applications, Compute, Network, Storage, OS's and DB's for enterprise customers on their Data Center stacks.
  • Design and deploy AD/DNS services enterprise wide for application integration with windows using AD/FS and SSO.
  • Support production, development and backups teams as needed in the Enterprise.

Education

Bachelor of Science - Computer And Information Sciences

Jawaharlal Nehru Technology of University
Hyderabad, India
05.2008

Skills

  • Cybersecurity Framework, Cryptography familiarity
  • Team leadership/Security Awareness Readiness, Team Motivation / Self-motivator, Information Protection and Analysis
  • Governance, Risk & Compliance (GRC) AWS, Azure, Google Cloud, BCP & DRP, PKI, Database Querying Languages; MySQL, NOSQL/DynamoDB, Palo Alto Prisma, Cortex, Twist lock, Norton, Wiz, Kubernetes, Docker Containerization
  • Palo Alto BPA, Prisma AWS Firewall (Security Group and NACL)
  • AWS WAF, Control Tower, AWS Security Guardrails, AWS Landing Zones, Security Hub,
  • Amazon Web Services (EC2, EBS, S3, IAM, AMI, VPC, VPC Peering, NACL, Security Groups, Route53, Auto Scaling Group, ELB, SNS, Cloud-Watch, Terraform, Elastic Beanstalk, Cloud-Formation)
  • Cloud Passage, F5, Barracuda Security Guardian, Jira, Aviatrix, F5, Arista CVP / vEOS Palo Alto Panorama, Expedition, Guardrails Configuration, IAM, Lambda, AWS Amplify, AWS Resource Manager etc
  • Cloud Security Visibility and Compliance; Checkpoint Dome9, AWS Guard-Duty, VPC Flow logs

Certification

  • CKA - Kubernetes Certified Professional - Jan 2024
  • PMP - Project Management Certified Professional - Sep 2023
  • AWS Certified Security Specialty - March 2021
  • AWS Certified Solutions Architect Associate - June 2019
  • Oracle Solaris 10 Systems Administrator Certified professional - July 2016
  • ITIL v3.0 EXIN ITIL V3 Foundation Certification - Jan 2012
  • AWS Certified Solutions Architect Professional (In-View)

Timeline

AWS Cloud Security / Solutions Architect

Nielsen Holdings
09.2018 - Current

AWS Cloud Architect/AWS Security Engineer

Biogen
09.2017 - 09.2018

Information Security Consultant

Barclays
12.2015 - 08.2017

Cloud Solution Engineer

Walgreens
06.2011 - 12.2015

Network Capacity Engineer

HCL Technologies
02.2010 - 06.2011

Infrastructure Engineer

PRO Ennovate Labs
05.2009 - 01.2010

Bachelor of Science - Computer And Information Sciences

Jawaharlal Nehru Technology of University
  • CKA - Kubernetes Certified Professional - Jan 2024
  • PMP - Project Management Certified Professional - Sep 2023
  • AWS Certified Security Specialty - March 2021
  • AWS Certified Solutions Architect Associate - June 2019
  • Oracle Solaris 10 Systems Administrator Certified professional - July 2016
  • ITIL v3.0 EXIN ITIL V3 Foundation Certification - Jan 2012
  • AWS Certified Solutions Architect Professional (In-View)

Similar Profiles

  • Wen Zuo

    Wen ZuoWen Zuo

    Intern (CI Finance Group) at Nielsen HoldingsIntern (CI Finance Group) at Nielsen Holdings

    View Profile
  • Taher Tay Bou Dargham

    Taher Tay Bou DarghamTaher Tay Bou Dargham

    Data Acquisition Leader – Retail Services (MENP) at The Nielsen Company – AC NielsenData Acquisition Leader – Retail Services (MENP) at The Nielsen Company – AC Nielsen

    View Profile
  • Elizabeth D. Vance-Miller

    Elizabeth D. Vance-MillerElizabeth D. Vance-Miller

    Field Sales Representative (Membership) at The Nielsen CompanyField Sales Representative (Membership) at The Nielsen Company

    View Profile
Rajesh Sabbani