Mahesh Bandi
Education:
Master of Science (M.S.)
Electrical and Electronics Engineering
University of South Alabama
Bachelor of Technology (BTech)
Electrical, Electronics and Communications Engineering
Jawaharlal Nehru Technological University
Experience:
2022 : Present
Deloitte US
Information Security Manager
· Installation and configuration of the Snort Intrusion Detection System (IDS) or Sourcefire Intrusion Prevention System (IPS) on Linux Sensor devices.
· Upgradation and configuration of IBM QRadar 7.3 Security Intelligence application.
· Experience using and configuring HCL AppScan Enterprise and Standard to conduct dynamic Analysis scans.
• Performs analysis, design, and development of signature for the IDS sensors.
• Automation of repeatable tasks using Ansible
· Define process and workflow on critical servers and storage migration involving complex high availability configuration, using High Availability Cluster Service (HA) on IBM Linux servers while making sure all security guidelines for internal and external access of servers have been strictly implemented using DISA STIG compliance.
· Work closely with the Security Operations Center (SOC) Team to set up rules in SIEM to fire offenses.
· Installed and maintain SpaceWalk application - system management solution to Install and Update system packages on CentOS Linux hosts.
2016 : 2023
Lumen Technologies (formerly CenturyLink)
Lead Information Security Engineer
· Installation, Configuration and Upgrade of RHEL 7.0/6.8, Oracle Enterprise Linux 5.x & 6.x on HP ProLiant Physical servers, Virtual servers VMs on Vblock, VMware ESX/vSphere platform.
· Worked as Lead System Admin for Hardware Refresh Project and successfully migrated over 30+ servers onto new hardware and Virtual instances in less than 4 months.
· Extensively worked on building a standard Linux image master template as per company policies.
· As a part of Implementation process attend walk through meetings to review project road maps with IT Project Teams and discuss Project Impact, UAT, Go No Go readiness assessments, correct build version to deploy, task dependencies, review of back out plans, identifying risks and review test plans ensuring that the initiatives adhere to the release process and procedures.
· Fixing security vulnerabilities on newly build servers before release and project go-live.
· As part of high demand upgrade project, successfully built 140+ Oracle Linux VMs in a span of one week.
2016 : 2016
McGraw-Hill Education
Unix/Linux Systems Engineer
Installed, configured and monitoring Veritas Cluster Server (VCS) on RHEL servers.
Worked with Product Engineer Team to standardized RHEL Image as per Client Requirements.
Automated post-build scripts for Linux server hardening and additional configuration steps.
Worked on Configuring Control LDOMs, Guest LDOMs from scratch on brand new servers.
Configured Solaris IPMP and Linux Bonding and also worked on EMC PowerPath multi-pathing
Implemented cloud designs for high availability using Amazon Web Services (AWS)
Experience in working with AWS Elastic Compute Cloud (EC2) and Elastic Block Store (EBS)
Experience in working with AWS Virtual Private Cloud (VPC), subnets, security groups
Experience with AWS AMI creation, S3 storage, EBS LVM arrays, and EBS optimization
Experience with performance monitoring solutions like Nagios, HP OpenView
2012 : 2016
Atos@Standard and Poors Global Inc.
Solution Implementation Engineer
• Installation, Configuration and Upgrade of Solaris 10, Red Hat Linux RHEL 5.x & RHEL 6.x
• Installation and Configuration of Veritas Volume Manager, Veritas File system and Veritas Cluster Server.
• Disk and File system management through Logical Volume Manager and Veritas Volume Manager.
• Configure and administering NetBackup clients, SAN Devices & Other Storage solutions like EMC PowerPath.
• Monitor server performance and resolve security incidents
• Troubleshooting hardware, software and configuration problems for various protocols and provide technical assistance where necessary relating to Unix and software running on UNIX/Linux platforms
• Involved in maintenance and Configuration of DNS, NFS, FTP, BIND on Redhat Linux boxes & Solaris servers.
• As a Build team Release Manager helped to identify any flaws in system design and troubleshoot issues during implementation phase and ensured timely delivery & smooth Go-live for Project success.
• As a release Manager for few Projects I manage, review and prioritize all solution Implementation according to release management processes, polices and procedures
• Managed and update the release management documents which consist of software release polices, procedures, processes and standards.
• As a part of Implementation process attend walk through meetings to review project road maps with IT project teams. Such project road maps as; Project Impact, UAT, Go No Go readiness assessments, correct build version to deploy, staging location creation, task dependencies, review of back out plans, identifying risks and reviewing of test plans ensuring that all initiatives adhere to the release process and procedures.
2011 : 2012
The McGraw-Hill Companies
Unix/Linux Systems Administrator
Company: Deloitte US
Years of Experience: 15
Spoken Language: English, Hindi, Telugu
Rich experience in cybersecurity disciplines: SIEM technology (IBM QRadar), CP4S SOAR platform, Snort IDS, Application Vulnerability Scans DAST, Endpoint detection and response (EDR), Threat Intelligence, SOC Operations.