Summary
Overview
Work history
Education
Skills
Websites
Certification
Custom
Timeline
Generic

Chinna Tellapati

London,UK

Summary

Proactive and detail-oriented Expert Defensive Security Engineer with 19 years of experience in safeguarding enterprise networks, detecting threats, and developing advanced security protocols. Demonstrated expertise in threat detection, vulnerability management, incident response, and designing defense-in-depth strategies. Adept at using industry-standard tools to fortify networks, monitor traffic, and respond to potential breaches. Committed to maintaining confidentiality, integrity, and availability of information systems while ensuring compliance with cybersecurity regulations.

Overview

19
19
years of professional experience
1
1
Certification

Work history

Defensive Cyber Security

Free Launcer
London, UK
04.2024 - Current
  • Conduct comprehensive threat assessments for Invisage Althub Platform and vulnerability analyses, resulting in a 23% reduction in security incidents
  • Design and implement secure network architectures, including firewalls, IDS, and VPNs, enhancing overall security posture
  • Develop and execute incident response plans, leading investigations into security breaches and coordinating remediation efforts
  • Monitor network traffic and security alerts, generating detailed reports on incidents and vulnerabilities for senior management
  • Collaborate with IT teams to integrate security measures into existing systems, ensuring compliance with security policies.
  • Implemented secure network architectures for enhanced data protection.
  • Improved overall network safety by conducting routine vulnerability testing and risk analyses.
  • Reviewed firewall configurations, enhancing system's resistance against intrusions.

Cyber Security Consultant

Extreme Networks
London
12.2021 - 04.2024
  • Designed, reviewed, and implemented Cloudflare Web Application Firewall (WAF) policies, including rate limiting, bot management, and DDoS protection
  • Deployed Nessus Pro, Nmap, Tenable, Qualys, and OpenVAS for vulnerability scanning, integrating these tools with JIRA for effective issue tracking and remediation
  • Conducted regular vulnerability assessments and penetration testing (both on-premises and in the cloud) to identify and address potential security risks within the organization’s network infrastructure
  • Monitored, detected, and responded to security incidents within the organization, focusing on the Security Operations Center (SOC) environments
  • Designed and reviewed access control measures and Data Loss Prevention (DLP) techniques to enhance data security
  • Regularly reviewed Business Continuity Plans (BCP) and Disaster Recovery (DR) plans, performing ongoing assessments of data center operations
  • Conducted code reviews, application security assessments, secure architecture design, and threat modeling to ensure robust application security
  • Provided security training and outreach initiatives to internal development teams, promoting best practices in security
  • Worked with external vendors to conduct penetration testing of web applications and APIs, identifying vulnerabilities and remediation strategies
  • Facilitated tabletop exercises to establish action plans for continuous improvement of the organization's emergency response plan
  • Utilized Prisma Cloud for deployment and cloud posture management, implementing Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST)
  • Developed an Incident Response Plan using Slimane diagrams to enhance response processes
  • Expanded penetration testing, vulnerability scanning, and application security services across all divisions under SecEng, strengthening the organization’s internal security capabilities
  • Reviewed BitSight scores and formulated an action plan to mitigate risks and enhance the overall security score
  • Collaborated with cross-functional teams to implement targeted security features, processes, and programs aimed at improving the organization’s security posture.

Principle Cloud security Engineer

Extreme Networks
07.2015 - 11.2021
  • Designed, validated, and deployed an Extreme Cloud IQ Zero Trust Network Access (ZTNA) solution tailored to meet customer requirements
  • Designed, validated, and deployed an Extreme Cloud SD-WAN solution, customizing it to address specific customer needs
  • Led the cloud security architecture and design for over one hundred AWS accounts within a multinational, multi-brand organization
  • Investigated and delivered solutions that enhanced visibility of our AWS security posture using CIS Benchmarks and AWS best practices
  • Oversaw the Cloud Security roadmap and budget, ensuring alignment with organizational goals
  • Led the Extreme Networks XiQ vulnerability management project, designing and operationalizing the solution for both on-premises assets and the CI/CD pipeline
  • Developed and installed advanced Network Access Control (NAC) technologies, guest services, BYOD solutions, captive portals, and wireless systems for sectors including healthcare, NFL stadiums, education, retail, and e-commerce
  • Created customer lab models, validated solutions in-house, and guided customers through production network roll-out upgrades, including necessary back-out plans.

Endpoint Security

Pulse Secure LLC
India
01.2015 - 06.2015
  • Deployed companywide EDR (Endpoint Detection and Response) including actively managing and streamlining all end devices in compliance with CIS Benchmark & NIST security hygiene
  • Endpoint posture and compliance and Antivirus and Antimalware analysis with OPSWAT Agent
  • Verify the capabilities of IPSEC and SSL VPN and their deployments across the organization.

Identity Service Engines/NAC Specialist

Cisco Systems
04.2010 - 12.2014
  • Design and Deploy Cisco Identity Services Engine (ISE) in distributed deployment modes (PSN, PAP, Mnt)
  • Implement network authentication for Wired and Wireless Network Access Control - 802.1X (PEAP, EAP-TLS, EAP-TTLS...etc
  • And MAB
  • Define and implement RADIUS authentication, Authorization, Account Policies and Change of Authorization (COA)
  • Remote user, VPN Inline Posture using iPEP ISE and ASA – Cisco.

Application Security Engineer

Avaya Inc
03.2009 - 04.2010
  • Performed risk assessments and produced detailed reports on findings and recommendations with OWASP Top 10 Framework, MITRE CWE etc
  • Performed risk assessments and produced detailed reports on findings and recommendations
  • Conducted training & giving mentorship for fresh recruited Cyber Security Engineers
  • Skilled in performing both manual and automated security testing for web, mobile applications based on OWASP and CWE/SANS publications
  • Working Knowledge in Windows and Linux (Kali Linux) operating system configuration, utilities, and programming.

Network Security Engineer

Satyam Computers
11.2007 - 04.2009
  • Dealt with Nokia IP Security Platforms like (Nokia IP290, 390, 690)
  • Responsible for Functional, Sanity, Regression, testing of the firewall products with respect to the IDS/IPS features and functionality
  • Prepare daily incident report using the following security tools: Net Forensics, Bro (IDS), Argus (IDS), Snort (IDS), Stealth Watch (Advanced Threat Management), Peakflow X (Network Management Threat tool), ISS Real Secure (IDS), and Remedy (Reporting).

VoIP Security Engineer

Sipera Systems
12.2005 - 11.2007
  • Sipera Systems IP Communication Security (IPCS) is a SIP proxy sitting in the DMZ and protects the VOIP server from DoS attack, malformed packet which crashes the VOIP server
  • Area of work - SIP, SCCP, VoIP, Security, Remote Enablement, HA & Clustering Session Border Gateway/Controller (SIP, SCCP), secure transport (TLS), Secure media (SRTP)
  • IP Trucking, Topology Hiding, High Availability, IDS/IPS, DOS, etc.

Education

M.Tech - Master of Technology in Software Engineering

Birla Institute of Technology and Science

B. Tech - Bachelor of Technology in Electronics and Communications

Jawaharlal Nehru Technological University

Skills

  • Vulnerability Management
  • Risk Management
  • Incident Response
  • Penetration Testing
  • Cloudflare WAF and Bot Management
  • DISA STIG Compliance (Chef in Spec) and FIPS Certification
  • Cloud Security Posture Management (CSPM), Workload Protection, and Container Scanning
  • Enterprise Wireless Solutions
  • Endpoint Security Solutions
  • Prisma Cloud Management
  • Virtualization Technologies (VMware, ESXi)
  • Identity and Access Management (Active Directory, SAML, Kerberos, NTLM)
  • Containerization Platforms (Docker, Kubernetes)
  • Information Security and Privacy Practices
  • Cloud Security and Data Loss Prevention (DLP)
  • Regulatory Compliance
  • BitSight Security Ratings
  • Email Security (Mimecast) and SIEM (Splunk Cloud)
  • Security Tools (Burp Suite, Metasploit, Nmap, Nikto, Wireshark, Hping, Tcpdump)
  • BYOD Policies, Mobile Device Management (MDM), and Identity Access Management (IAM)
  • Networking Technologies (ZTNA, SD-WAN)
  • Azure Entra ID Management
  • Network Testing Solutions (SmartBits, IXIA, Spirent SPT)
  • DevSecOps Practices
  • Business Continuity Planning and Disaster Recovery (BCP/DR)
  • Cloud Platforms (AWS, Azure, GCP)
  • Compliance Standards (GDPR, PCI DSS, HIPAA)
  • Security Standards (ISO/IEC 27001, SOC 2, NIST CSF)
  • Application Security Testing (DAST/SAST, SonarQube, Veracode)
  • Network Security Protocols (8021X - EAP-TLS, PEAP)
  • Single Sign-On (SSO), SSL/TLS, RADIUS, and IPSec

Websites

Certification

  • IS2 - Certified in Cybersecurity (CC) from ISC2
  • CCNA - Cisco Certified Network Associate (CCNA)
  • AWS - AWS Certified Solutions Architect – Associate

Custom

  • Travelling and making connections
  • Volunteering and community involvement
  • Photography

Timeline

Defensive Cyber Security

Free Launcer
04.2024 - Current

Cyber Security Consultant

Extreme Networks
12.2021 - 04.2024

Principle Cloud security Engineer

Extreme Networks
07.2015 - 11.2021

Endpoint Security

Pulse Secure LLC
01.2015 - 06.2015

Identity Service Engines/NAC Specialist

Cisco Systems
04.2010 - 12.2014

Application Security Engineer

Avaya Inc
03.2009 - 04.2010

Network Security Engineer

Satyam Computers
11.2007 - 04.2009

VoIP Security Engineer

Sipera Systems
12.2005 - 11.2007

B. Tech - Bachelor of Technology in Electronics and Communications

Jawaharlal Nehru Technological University

M.Tech - Master of Technology in Software Engineering

Birla Institute of Technology and Science

Similar Profiles

  • JACOB STERN

    JACOB STERNJACOB STERN

    Warehouse Manager at Gluten Free Palace - Gluten Free ShoppingWarehouse Manager at Gluten Free Palace - Gluten Free Shopping

  • Baila Love

    Baila LoveBaila Love

    Online Editor-in-Chief at Free State Free PressOnline Editor-in-Chief at Free State Free Press

  • Nicholas Bailes

    Nicholas BailesNicholas Bailes

    OWNER, RESTAURANT & NUTRITIONAL PRODUCTS RETAIL at Free State Management, LLC/ Free State NutritionOWNER, RESTAURANT & NUTRITIONAL PRODUCTS RETAIL at Free State Management, LLC/ Free State Nutrition

  • Mariette MIRO

    Mariette MIROMariette MIRO

    Midwife at King's College NHSTrustMidwife at King's College NHSTrust

  • JANJA KOVACEVIC

    JANJA KOVACEVICJANJA KOVACEVIC

    Senior Software Engineer at Pollinate International LimitedSenior Software Engineer at Pollinate International Limited

Create profile
Chinna Tellapati