Venkateswararao Velpula

• Working on the IBM Q RADAR and Log Rhythm, (console & web console) providing operations support at the Security Operations Centre for different firms
• Troubleshooting SIEM dashboard issues when there are no reports getting generated or no data available
• Managed and resolved high-priority L3 (Level 3) tickets in an ITSM environment, ensuring timely resolution aligned with SLAs
• Conduct Vulnerability assessments of Network and Security devices using various tools like NMAP and Burp Suit
• Map out a network, discover ports and services running on the different exposed network and security devices
• Experience on Office365 into Email gateway security to overcome phishing attacks
• Handling the complete incident management framework cycle right from incident identification, incident containment, performing root cause analysis, suggestion and implementation of preventive and corrective controls and perform network analysis as needed on a case-to-case basis
• Analyzing Phishing and Spam related mails using header analysis, Body analysis using various tools and block them in O365
• Preparing Weekly and Monthly reports
• Will document the tickets with all the action taken for the incident and update it on frequent basis and maintain ticket quality by documenting it with all the required information
• Conducted and managed Vulnerability scans using Qualys tool
• Identifying critical weaknesses across diverse IT environments
• Collaborating with IT teams for patch management and ensures timely deployment of patches and reduce system vulnerabilities
• Generating detailed security reports and dashboards, summarizing findings for senior management and stakeholders
• Worked with cross-functional teams to address complex issues, including software bugs, infrastructure failures, and security vulnerabilities
• Ensured all firewalls, security devices, systems, databases and applications reported data to SIEM and resolved any reporting issues while performing regular health checks
• Block listing and whitelisting the Domains, Emails in Email security tool Proof point
• Block listing the malicious IPs in Firewalls
• We have deployed EDR agent for all the servers and it is communicating continuously 24
• 7 to EDR server
• Providing USB access request for specific users for business requirement through the requests in the ITSM ticketing tool
• Purging the host name if any one leaves the organization in the sentinel one
• Blocking the malicious Hash values in the EDR tool
• Exposure to Ticketing tool Service Now
• Installation and Configuration SSH, FTP, TELNET AND NFS, DNS, DHCP & IPAM (DDI)
• Expertise on different file systems like ext3, ext4, XFS and NFS
• Expertise in server troubleshooting and hardening
• Coordinating with customers for change management
• Installing & removing packages using RPM & YUM; contributing to kernel patching by using satellite server
• System Administration, maintenance and monitoring various day-to-day operations
• Adding route entries for accessing servers from different zones & executing system administration, maintaining & monitoring various day-to-day operations

Performing patch upgradation and OS upgradation as per vendor or customer requirements & automating job for various tasks using CRON & AT

• Securing the servers as per organization’s policies & providing L1, L2 & L3 level support to the customer on all Linux server issues as per SLA
• Installing software, patching, upgrading, & maintaining operating system & implementing RHEL Pacemaker cluster setup
• Worked as data center operator for configuring rack setup of physical server’s induction (HP, Cisco, Lenovo, and Dell) and storage cable’s connectivity of servers
• Resolving the hardware issues (DIMM, Hard disk) on data center for physical servers
• Expertise in user & group management, disk partitioning (LVM) and working experience in large-scale enterprise development environment
• In-depth knowledge on different file systems like ext3, ext4, XFS and NFS; experience on Kubernetes & Samba configuration
• Managed KVM hypervisors on Linux servers, deploying virtual machines (VMs) running various guest OSes including Linux, Windows, and BSD
• Tuned KVM host systems and guest VMs to ensure optimal CPU, memory, and I/O performance, achieving enhanced VM density and reduced latency
• Monitored KVM system performance and utilized monitoring tools like virt-top, top, and iostat to ensure high system availability
• Installed, configured, and maintained VMware ESXi hypervisors and vSphere clusters to host multiple virtual machines
• Managed VMware vCenter for centralized management of ESXi hosts, including VM provisioning, migration, and resource management
• Contributed to cost savings efforts by identifying opportunities for infrastructure optimization and resource consolidation in a Linux environment.
• Implemented version control systems such as Git for better collaboration among team members and more efficient code management.
• Managed multiple projects concurrently while adhering to strict deadlines, prioritizing work effectively to ensure successful delivery in a fast-paced environment.

• Worked on the IBM Q RADAR and LogRhythm, (console & web console) providing operations support at the Security Operations Centre for different firms
• Troubleshooting SIEM dashboard issues when there are no reports getting generated or no data available
• Managed and resolved high-priority L3 (Level 3) tickets in an ITSM environment, ensuring timely resolution aligned with SLAs
• Conduct Vulnerability assessments of Network and Security devices using various tools like NMAP and Burp Suit
• Map out a network, discover ports and services running on the different exposed network and security devices
• Experience on Office365 into Email gateway security to overcome phishing attacks
• Handling the complete incident management framework cycle right from incident identification, incident containment, performing root cause analysis, suggestion and implementation of preventive and corrective controls and perform network analysis as needed on a case-to-case basis
• Analyzing Phishing and Spam related mails using header analysis, Body analysis using various tools and block them in O365
• Preparing Weekly and Monthly reports
• Will document the tickets with all the action taken for the incident and update it on frequent basis and maintain ticket quality by documenting it with all the required information
• Conducted and managed Vulnerability scans using Qualys tool
• Identifying critical weaknesses across diverse IT environments
• Collaborating with IT teams for patch management and ensures timely deployment of patches and reduce system vulnerabilities
• Generating detailed security reports and dashboards, summarizing findings for senior management and stakeholders
• Worked with cross-functional teams to address complex issues, including software bugs, infrastructure failures, and security vulnerabilities
• Ensured all firewalls, security devices, systems, databases and applications reported data to SIEM and resolved any reporting issues while performing regular health checks
• Blocklisting and whitelisting the Domains, Emails in Email security tool Proofpoint
• Blocklisting the malicious IPs in Firewalls
• We have deployed EDR agent for all the servers and it is communicating continuously 24
• 7 to EDR server
• Providing USB access request for specific users for business requirement through the requests in the ITSM ticketing tool
• Purging the hostname if any one leaves the organization in the sentinel one
• Blocking the malicious Hash values in the EDR tool
• Exposure to Ticketing tool Service Now
• Installation and Configuration SSH, FTP, TELNET AND NFS, DNS, DHCP & IPAM (DDI)
• Expertise on different file systems like ext3, ext4, XFS and NFS
• Expertise in server troubleshooting and hardening
• Coordinating with customers for change management
• Installing & removing packages using RPM & YUM; contributing to kernel patching by using satellite server
• System Administration, maintenance and monitoring various day-to-day operations
• Adding route entries for accessing servers from different zones & executing system administration, maintaining & monitoring various day-to-day operations
• Performing patch upgradation and OS upgradation as per vendor or customer requirements & automating job for various tasks using CRON & AT
• Securing the servers as per organization’s policies & providing L1, L2 & L3 level support to the customer on all Linux server issues as per SLA
• Installing software, patching, upgrading, & maintaining operating system & implementing RHEL Pacemaker cluster setup
• Worked as data center operator for configuring rack setup of physical server’s induction (HP, Cisco, Lenovo, and Dell) and storage cable’s connectivity of servers
• Resolving the hardware issues (DIMM, Hard disk) on data center for physical servers
• Expertise in user & group management, disk partitioning (LVM) and working experience in large-scale enterprise development environment
• In-depth knowledge on different file systems like ext3, ext4, XFS and NFS; experience on Kubernetes & Samba configuration
• Managed KVM hypervisors on Linux servers, deploying virtual machines (VMs) running various guest OSes including Linux, Windows, and BSD
• Tuned KVM host systems and guest VMs to ensure optimal CPU, memory, and I/O performance, achieving enhanced VM density and reduced latency
• Monitored KVM system performance and utilized monitoring tools like virt-top, top, and iostat to ensure high system availability
• Installed, configured, and maintained VMware ESXi hypervisors and vSphere clusters to host multiple virtual machines
• Managed VMware vCenter for centralized management of ESXi hosts, including VM provisioning, migration, and resource management

• Served as Senior Associate in SOC operations for real-time monitoring, analysing logs from various security/Industrial appliances
• Administered various incidents/security alerts triggered in the SIEM tool
• Carrying out log monitoring and incident analysis for various devices such as Firewalls, IDS, IPS, databases, web servers, and so forth
• Security event analysis and intrusion detection by review and analysis of events generated by various components including IDS/IPS, firewalls, Routers, DB, and various types of security devices
• Performed Real-Time Monitoring, Investigation, Analysis, Reporting, and Escalations of Security Events from multiple log sources
• Preparing RCA documents and daily/weekly/monthly Reports
• Support security incident response processes in the event of a security breach by providing incident reporting
• Conducting penetration tests and launch exploits using Burp Suit
• Review software posture and work with operations to plan code version upgrade requirements of supported security and network devices
• Automating routine responses to security events to reducing the human intervention
• Responsible for managing all aspects of the Vulnerability Risk Management Program including vulnerability identification, analysis, remediation coordination and reporting
• Coordinate with Admin team to report vulnerabilities by explaining the exploitation and the impact of the issue
• Managing permissions and access to the product
• Performing authenticated and unauthenticated vulnerability scanning
• Assisting teams with vulnerability resolution, including providing assistance researching vulnerabilities solutions and addressing false positives to reduce system workloads, performing confirmation scans when appropriate, meeting regularly with remediation team, and building reports to provide teams with necessary data
• Understanding the incident based on to determine whether it’s false or true positive
• Worked on Sentinel one EDR tool
• Expertise in LINUX / UNIX system builds, administration, Installations, Upgrades, Troubleshooting on different distributions such as Ubuntu, CentOS, RHEL
• Resolving the hardware issues (DIMM, Hard disk) on data center for physical servers
• In-depth knowledge on different file systems like ext3, ext4, XFS and NFS
• Installation and Configuration SSH, FTP, TELNET AND NFS, DNS, DHCP & IPAM (DDI)
• Utilize tools like top, htop, iostat, and vmstat to monitor CPU, memory, disk I/O, and network usage
• Developed custom shell scripts for system monitoring and automation, improving response times to incidents
• Provided 24/7 support for critical production systems, reducing average incident resolution time by 40%
• Collaborated with development teams to optimize CI/CD pipelines, enhancing deployment frequency by 25%
• Spearheaded a migration project to RHEL 8, resulting in enhanced system security and performance
• Recognized for leading a team in a successful data center consolidation, reducing operational costs by 15%
• Analyze output to identify bottlenecks, such as high CPU load or excessive swapping
• Adjust kernel parameters using sysctl to optimize performance
• Use tune2fs to adjust filesystem parameters, such as enabling journaling or optimizing block sizes based on application needs
• Implement RAID configurations (e.g., RAID 0, RAID 1, or RAID 10) to improve disk performance and redundancy
• Use ulimit to manage resource limits for users and processes
• Tune caching parameters for applications (e.g., database caching) to reduce disk I/O
• Adjust read_ahead settings for block devices to enhance performance for read-intensive applications
• Collect historical performance data to identify usage patterns using tools like SAR or collectl
• Analyze CPU, memory, and storage trends to forecast future needs
• Identify thresholds for CPU, memory, and disk I/O before performance degradation occurs
• Evaluate applications for horizontal vs
• Vertical scaling options, determining the best approach to meet increasing demand
• Plan for adding more servers (horizontal scaling) versus upgrading existing hardware (vertical scaling)
• Establish key performance indicators (KPIs) such as response times, throughput, and error rates to evaluate performance against expectations
• Set thresholds for resource utilization (e.g., CPU usage consistently above 80%) to trigger scaling or optimization actions
• Maintain documentation of capacity planning processes and decisions for future reference
• Regularly report on system performance and capacity forecasts to stakeholders for informed decision-making