Summary
Overview
Work History
Education
Skills
Certification
References
Timeline
Generic

Venkata Gullapudi

Phoenix,USA

Summary

Dynamic Sr. Security Engineer with a proven track record at Charles Schwab, enhancing infrastructure performance by 20% through automation and advanced risk assessment. Proficient in Zscaler and Splunk, I excel in security analytics and cross-functional collaboration, driving impactful security solutions while fostering team engagement and innovation.

Overview

10
10
years of professional experience
1
1
Certification

Work History

Sr. Security Engineer

Charles Schwab
Phoenix, AZ
05.2022 - Current
  • Developed security policies, standards, guidelines and procedures to ensure the protection of information assets.
  • Actively participated in cyber threat intelligence sharing initiatives with peers in similar industries.
  • Provided technical support for the implementation of security solutions across multiple platforms.
  • Analyzed system logs to identify malicious behavior or attempts at unauthorized access.
  • Determined possible breach of company proprietary data to unauthorized resources and analyzed past performance data to enhance operations.
  • Audited networks and security systems to identify vulnerabilities.
  • Built firewalls and encrypted data to secure confidential information.
  • Investigated security breaches, evaluated risk factors, and developed remediation plans.
  • Drafted technical documentation including diagrams outlining the logical structure of the organization's Secure Web Gateway infrastructure.

Security Engineer

Charles Schwab
Phoenix, AZ
01.2020 - 04.2022
  • Development and maintenance of Incident Response Plans (IRPs), Standard Operating Procedures (SOPs), and Playbooks for Automation.
  • Upgrade security systems with the latest rule sets by monitoring the security environment, identifying security gaps, and evaluating and implementing enhancements.
  • Engage in threat hunting for vulnerable applications, and map it to the MITRE ATT&CK Framework.
  • Prepare system security reports by collecting, analyzing, and summarizing trends for stakeholders.
  • Work cross-functionally with various Network, Security, and Application teams (NOC, SOC, TI, VM, Network, and Security Architects) to address the WAF upgrades and rule enhancements.
  • Working with the CDN providers to design, test, and enable the custom rules catered to APIs, web, and mobile applications on Cloud WAF.
  • Managing and evaluating proof of concepts of various security solutions vendors.
  • TIER-2/3 support for the Security Operations Center for the WAF, and Perimeter Security.
  • Assisting in organizing the Purple Team activity for SOC analysts to improve engagement and information sharing.
  • Proactive analysis and content development for protecting infrastructure from Layer 7 attacks.
  • Analyzed system risk to identify and implement appropriate security countermeasures.

Sr. Cyber Security Specialist

Charles Schwab
Phoenix, AZ
09.2018 - 12.2019
  • Improved the infrastructure performance in the areas of response, throughput, and availability related to the distributed denial of service field by 20% through automation and adapting the security frameworks.
  • Collaborated with the Network Operations Center, ITO, Network and Security Engineering, and Incident and Problem Management teams to address security incidents in evaluating risk.
  • Developed an in-house graph database using R language and compared it with the industry leader, Neo4j, which made the visualization of hierarchical and connected data very efficient.
  • Developed the road maps and process flow diagrams for asset management, which are client-facing to access, manage vulnerability, and risk.
  • Maintaining security records of monitoring and incident response activities.
  • Monitoring and implementing compliance with information security policies and procedures.

Cyber Security Specialist

Charles Schwab
Phoenix, AZ
09.2017 - 08.2018
  • Developed and managed content for the security use cases in WAF, firewalls, and proxies.
  • Administering Information Security Software and Controls.
  • Analyzing security system logs, security tools, and data, and communicating across all levels of the organization.
  • Creating, Modifying, and Updating Intrusion Detection Systems (IDS).
  • Performed vulnerability scans using automated tools such as Nessus or QualysGuard to detect any weaknesses in the system that could be exploited by attackers.
  • Configured routers and switches according to industry best practices for securing networks from external threats.

Network Engineer

Expedent Corp
Dallas, TX
01.2016 - 08.2017
  • Configured system, network, and application security using various tools, including firewall policies and security configurations.
  • Traffic anomaly analysis of trending security vulnerabilities, DNS environments, proxy environments, and performing network and security (DDoS) testing.
  • Configured mitigation systems such as Palo Alto, Arbor, F5 ASM, and creating, manipulating load balancers (NetScaler, F5) iRules and policies.
  • Developed the content for monitoring infrastructure using Splunk and other real-time operational intelligence platforms.
  • Developed analytics and visualizations using Lancope StealthWatch NetFlow data.
  • Configured the settings of Cisco (routers, switches), Juniper (firewalls), and Bluecoat (proxies) for setting up and analyzing packet captures, and automation using Python and Bash.
  • Performed and documented runbook network operations using step-by-step decision trees.

Associate RF Engineer

Verveba Telecom
St Louis, MO
01.2015 - 12.2015
  • Gained expertise in understanding various cellular networks and the utilization of control testing software.
  • Developed analytical data on network coverage and quality for LTE, and located it in the Drive Testing Tool.
  • Configured and implemented various Cisco routers and L2/L3 switches in enterprise networks.
  • Configured STP for switching loop prevention and VLANs for data and voice, along with configuring port security for users connecting to the switches.
  • Worked on the commissioning and decommissioning of the MPLS circuits for various field offices.
  • Monitored network performance metrics such as throughput, latency, signal strength and noise levels.

Education

Master of Science - Managing IT and Security

Sullivan University
Kentucky, USA
12.2018

Master of Science - Electrical Engineering

Missouri S&T
Missouri, USA
12.2014

Skills

  • Zscaler Platform (ZCC, ZIA, ZPA)
  • Security/Data Analytics
  • Machine learning
  • Cloud computing
  • Reports
  • Automation
  • Risk Assessment
  • OWASP
  • UBA (User Behavioral Analytics)
  • Python
  • Splunk
  • MITRE ATT&CK
  • NIST 800-53
  • NIST
  • IDS/IPS
  • Security Information and Event Management (SIEM)
  • R Language
  • Stealthwatch
  • Akamai WAF
  • Qualys Guard
  • F-5 LTM
  • F-5 ASM
  • Azure ML
  • MySQL
  • RiskIQ EDF
  • Netskope CASB

Certification

  • ZIA Professional
  • ZPA Professional
  • ZDX Professional
  • AWS - Solutions Architect Associate
  • AWS - Security Specialist
  • Data Science Dojo - Full Data Science Workshop
  • Machine Learning and Deep Learning by Andrew Ng from Coursera

References

References available upon request.

Timeline

Sr. Security Engineer

Charles Schwab
05.2022 - Current

Security Engineer

Charles Schwab
01.2020 - 04.2022

Sr. Cyber Security Specialist

Charles Schwab
09.2018 - 12.2019

Cyber Security Specialist

Charles Schwab
09.2017 - 08.2018

Network Engineer

Expedent Corp
01.2016 - 08.2017

Associate RF Engineer

Verveba Telecom
01.2015 - 12.2015

Master of Science - Managing IT and Security

Sullivan University

Master of Science - Electrical Engineering

Missouri S&T
Venkata Gullapudi