UMAMAHESWARA BANDI
Fort Lauderdale,FL
Summary
A Security a Professional with 5 years of experience in top-tier financial company, aligning information and cyber security with business goals. I specialize in AppSec, Vulnerability Assessments and Issue remediation based on standards like OWASP and In-depth knowledge of DevOps management methodologies, cloud infrastructure and Automation.
Overview
4
4
years of professional experience
6
6
years of post-secondary education
Work History
Info Sec Tech Sr. Analyst
CitiBank
, N.A.
05.2020 - Current
- Track the Applications for SAST scan integrated in earlier stages of application development lifecycle Manage centralized SAST program (CheckMarx Enterprise) and CVM (Blackduck) integrated with
- CI/CD pipeline Contribute to security policy, standards, and guidelines related to Information Security
- Responsible for day-to-day management of all CITI app components/microservices deployed artifacts
to get scanned by SAST tool and sync the scan results to downstream systems - Confer with business owner and development team to discuss assessment results and assist in remediation
- Evaluate and operationalized new technologies for securing the organization
- Provide engineering support to App teams to remediate critical security bugs
- Participate in research of CVEs and perform proof of concept to assess impact on enterprise systems Assisted in analysis of Security Incidents on flagship CITI applications
- Reviewed application design, requirements & organization security policy to identify business threats
- Work closely with security architects & application teams to implement SSDLC program Evaluate security tools & developed custom scripts and plugins to automate security assessment of web applications Successfully managed end-to-end activities of security projects which includes onboarding, test planning, threat model, effort estimation, execution, vulnerability management & reporting
- Engaged with project stakeholders to discuss security assessment approach, vulnerability risks & remediation
- Involved in analysis of various Security Incidents on CITI flagship applications
Software Engineer
Miracle Software Solutions, Inc
09.2019 - 05.2020
- Developed project status dashboard application using MVC framework and used HTML5, CSS3
- JavaScript, AngularJS, and Bootstrap to create interactive web pages
- Maintaining the version control system (branching model, security), creation and maintenance of build definition scripts, and the setup of work item areas and iterations
- Created WAR and JAR files and deployed on Nexus using Maven build
- Managed Maven project dependencies by creating parent-child relationships between projects
- Resolved merging issues during Build and Release by conducting meetings with developers and managers Implemented a Continuous Delivery pipeline with Docker, Jenkins and GitHub
- Experience working on Docker Hub, creating Docker images and handling multiple images primarily for middleware installations and domain configurations
- Worked on Amazon API gateway in creating endpoints for the application
- Associating virtual MFA tokens for IAM users for security
- Creating environment for user-acceptance testing and facilitating Integration and User
- Acceptance Testing with JUNIT
- Experience in integrating Unit Tests and code quality analysis tools like Junit and Selenium
- PROJECTS
- Host Multi-Tier Application
- Designed virtual private cloud by hosting web and application servers on public subnet and database server on private subnet
- Setup access between inbound and outbound server packets by accessing network control lists and security groups [AWS]
- Continuous Integration and Continuous Deployment Pipeline
- Designed and Implemented CI/CD pipeline for Java based Applications using Jenkins with Git, Maven
- Nexus Plugin’s
- Developed Cloud Formation template and Ansible roles to automate the Deployment Process
- Git
- Jenkins, AWS, Ansible, Nexus & Tomcat]
Education
Master of Science - Business Information Systems
University of Memphis
Memphis, TN 01.2017 - 12.2018
Bachelor of Technology - Information Technology
Gitam University
Visakhapatnam 06.2011 - 05.2015
Skills
Security Tools: CkeckMarx, Blackduck, Burp Suite, AppScan & RSA Archer
undefinedTimeline
Info Sec Tech Sr. Analyst
CitiBank
05.2020 - Current
Software Engineer
Miracle Software Solutions, Inc
09.2019 - 05.2020
Master of Science - Business Information Systems
University of Memphis
01.2017 - 12.2018
Bachelor of Technology - Information Technology
Gitam University
06.2011 - 05.2015
Similar Profiles
Destiny FieldsDestiny Fields
Fraud Operations Specialist at CitibankFraud Operations Specialist at Citibank
Zachary PedenZachary Peden
Fraud Operations Specialist at CitibankFraud Operations Specialist at Citibank
Karina MerzKarina Merz
Fraud Analyst at CitibankFraud Analyst at Citibank
Nikhil BhendeNikhil Bhende
Lead Technology Business Analyst at CitibankLead Technology Business Analyst at Citibank
Jaime UrbinaJaime Urbina
Warehouse Worker at Invicta Watch GroupWarehouse Worker at Invicta Watch Group