syed s.

What I Bring to the Table • Security Testing: Conduct penetration tests on APIs and apps using Burp Suite and OWASP ZAP to identify and resolve vulnerabilities like those in the OWASP Top 10. • Cloud & Kubernetes Security: Harden AWS and Kubernetes (EKS, Kubeadm) environments with tools like Tracee, Falco, and CloudSploit to prevent runtime threats and misconfigurations. • Threat Monitoring: Deploy and manage Wazuh SIEM and Snort IDS for centralized security monitoring, real-time threat detection, and compliance with standards like GDPR. • Automation: Streamline CI/CD pipelines with Jenkins, Ansible, and Terraform to ensure secure, scalable, and repeatable deployments. • Database Management: Optimize MongoDB and MySQL clusters for performance, scalability, and secure access control. • System Monitoring: Use ELK Stack and New Relic to track system performance, ensuring high availability and minimal latency. • Compliance & Audits: Support security audits to meet industry standards like SOC 2 and HIPAA through proactive vulnerability scans and policy enforcement. --- Professional Experience • Secure CI/CD pipelines by integrating SAST and DAST tools to reduce deployment risks. • Perform penetration testing on production APIs and secure Kubernetes clusters with runtime security tools. • Implement Wazuh SIEM and Snort IDS across QA, UAT, and production environments for comprehensive threat visibility. • Automate infrastructure provisioning with Ansible and Terraform, and manage Jenkins for efficient CI/CD workflows. • Maintain MongoDB and MySQL databases, ensuring data integrity and performance. • Monitor system health with ELK Stack and New Relic to maintain low latency and high availability. Let’s connect to discuss how I can help strengthen your team’s security and DevOps practices!