Archana H.

Results-driven and highly skilled Security Professional with over 12+ years of comprehensive experience in Application Security. Adept at implementing robust security measures across diverse platforms, I specialize in Web Application Firewall (WAF) management, CDN configuration, DAST, Vulnerability Management, threat modelling, DDoS testing & mitigation, Zero Day Attack analysis & mitigations, incident & change management, and CI/CD pipeline security. Key Competencies: 1. Web Application Firewall: Extensive experience in the end-to-end implementation of WAF, specializing in leading CDNs such as Akamai, Fastly, and Verizon – Edgio. Proficient in configuring WAF rules, creating exclusion and custom rules using regex, and analysing live HTTP traffic for false positives. 2. Dynamic Application Security Testing (DAST): Proven expertise in conducting DAST using tools like AppScan, BurpSuite, Webinspect, and Qualys. Skilled in analysing scan results, performing false positive analysis, and providing actionable insights to development and application teams. 3. Web Application Security: Extensive experience in performing Automated and Manual Security testing on Applications. Proficient in creating Security Testing report, work with Dev/App team to implement security controls for securing the applications and infrastructure. 4. Vulnerability Management: Advanced knowledge of Vulnerability Management, including risk analysis, risk scoring, and scheduling vulnerability scans using Qualys. Proficient in security exception processes and troubleshooting scan issues. 5. Threat Modelling: Demonstrated proficiency in threat modelling by collaborating with app/dev teams for information gathering, educating teams, creating Data Flow Diagrams (DFD), and reviewing network architecture and infrastructure. 6. DDoS Testing and Mitigation: Sound experience in performing Layer 3/4/7 DDoS testing, implementing security controls, and accelerating application performance. Successful in mitigating Layer 3/4/7 DDoS attacks and Zero-Day Attacks. 7. CDN Onboarding: Expertise in onboarding web applications into CDNs, configuring caching mechanisms, and optimizing last mile and first mile acceleration. Well-versed in DNS configuration for efficient traffic routing through CDN. 8. Incident and Change Management: Proficient in incident and change management, handling tickets escalated by L1 & L2 and SOC teams. 9. Collaborate closely with SOC teams to address security attacks, zero-day attacks, DDoS attacks, and perform Root Cause Analysis (RCA) and log analysis. 10. CI/CD Pipeline Security: In-depth knowledge of implementing security in CI/CD pipelines, including the integration of security plugins in Jenkins CI/CD Pipeline. 11. Security Standards: Excellent knowledge of OWASP Top 10 and SANS 20. 12. Proficient in triaging potentially malicious events and conducting log analysis using Splunk and Kibana.