Profiles search

Rashmi Singhal

Ethical hacker / Pentester
Dallas, TX, United States

Details

Experience: 2021 : Present

Bank of America

Cybersecurity Expert/ Information security specialist

2016 : 2021

Charles Schwab

Software Applications Engineer/ Info security specialist

The purpose of the project is to perform the analysis on the Effectiveness and validity of controls and to store terabytes of log information generated by the source providers as part of the analysis and extract meaningful information out of it. The solution is based on the open source Big Data software Hadoop. The data will be stored in Hadoop file system and processed using Map Reduce jobs, which inturn includes getting the raw data, process the data to obtain controls and redesign/change history information, extract various reports out of the controls history and Export the information for further processing.

Roles and Responsibilities

• Involved in Design and Development of technical specifications using Hadoop technology.

• Involved in moving all log files generated from various sources to HDFS for further processing.

• Written the Apache PIG scripts to process the HDFS data.

• Created Hive tables to store the processed results in a tabular format.

• Monitoring Hadoop scripts which take the input from HDFS and load the data into Hive.

• Created external tables in Hive.



Environment : Hadoop, Apache Pig, Hive, Sqoop, Flume and Linux.

2015 : 2016

Vasiyat

PF EDM (Process Factory Enterprise Data Model)

Vasiyat.com is a portal to make a living will, it provides an easy interface to create electronic will in few easy steps. It has several features like Will Creation Wizard / Default Will Format those are designed in such a way so that user doesn’t have to hunt down for legal help in order to make a simple will. Along with that it also provides the tool to setup Email Notifications which will be delivered to the nominee after an individual departs. More info about the portal can be found here http : //vasiyat.com/about.aspx.

Responsibilities :

Was responsible for developing several modules for the portal. It was build using Visual Studio 2013, Sql server 2012, subversion, Rally, Microsoft enterprise library, several other design patterns and client side scripting. Some of the modules I worked on includes login page, registration page, will creation wizard and contact page. It was a small scrum team so I was involved in product conceptualization, requirement analysis, defining and sizing user stories, design and development, QA (testing, bug fixing, and vulnerability scanning). We had daily stand up meetings, release planning and scoping, iteration planning, release demos etc. Rally was used to manage the project. Product was successfully delivered on time. This project gave me an opportunity to get hands on experience in every aspect of SDLC and great exposure to a truly Agile team.

Environment : .Net Framework 3.5, ADO.NET, Visual Studio.NET, Web services, SQL Server-2010.

2011 : 2015

Vasiyat

Programmer Analyst

At Affinion Group, I work as part of Web Systems Support Group. My responsibilities are to support all the projects handled by AfinionGroup(PrivacyGuard, Autovantage, CompleteHOme, IdSecure, IdentitySecure, PrivacyGuardUK, Travelers Advantage, Great Fun). During my tenure I also worked on Projects as stated below.

Project Title : HSBC and BarclayCard (PrivacyGuard UK)

The objective of the project titled “Privacyguard UK” is to provide protection from Credit and identity theft for people of UK.

Product Features

• Credit report from one of the UK's leading credit report agencies

• ONGOING monitoring of your credit report

• Credit score access from one of the UK's leading credit report agencies

• Up to £10,000 reimbursement for certain expenses you incur if your identity is stolen

Responsibilities :

• Was involved in Coding of the part of project where we had to link over to Card Cops for credit security. Card Cops is one of the partners of Affinion Group (Card Cops protects consumers from Identity Theft by providing the means of determining whether their personal and/or financial information has been used by someone else or not.).

• Handled enhancements, defect fixes and partner integrations for Affinion Group Websites using .NET C#, Classic ASP and XML. Assisted Content developers and business partners with troubleshooting website issues. Organized and chaired weekly meetings with the business to discuss current support tickets. Developed and implemented the Weekly Web Support RFC documentation process in a series of wiki pages.

2008 : 2011

Affinion Group

Programmer Analyst
Company: Bank of America
Spoken Language: English, Hindi

About

Over 12 years of professional IT experience with complete understanding of entire software development lifecycle using agile methodologies with focus on security/penetration testing/ secure code development practices. Goal-oriented web developer with strong commitment to collaboration and solutions-oriented problem-solving approach.



Cybersecurity Experience

Vulnerability Analysis using tools like Burp Suite Pro / Chekmarx / AppScan / Qualys to find vulnerabilities and explore ways to exploit vulnerabilities in software systems so that they can be mitigated / patched / configured properly, have good knowledge of OWASP Top 10 / Sans 25 (SQL Injection , Security Misconfiguration, Cross-Site Scripting XSS, Cross-site request forgery (CSRF), Sensitive Data Exposure, Broken Access Control, Using Components with Known , vulnerabilities , Clickjacking , Denial of service etc), threat modeling, perform code reviews and work with dev teams to remediate findings.



Development Experience

• Secure development lifecycle advocate.

• Full stack developer using C# , .Net, SQL, Python, REST API, Angular, Bootstrap etc.

• Understands business requirements, functional and technical specifications, use cases and screen mockups.

• Create test plans, test data and execute the test plans, tracking the defects for the closure.

• Has knowledge of Postman, SOAPUI, ReadyAPI and Swagger for testing Restful APIs.

• Agile development –Experience in managing release backlog, release planning, iteration planning, tracking release burn down, conducted daily scrum, iteration retrospectives.

• Experience with JIRA, Bitbucket, Bamboo.

• Excellent problem solving skills, good interpersonal skills, committed, result oriented, a quick learner and self-motivated.

• Participated in all stages of Software Development Life Cycle (SDFC)

• Strong written and verbal communication skills.

• Ability to effectively manage diverse tasks and correctly prioritize multiple deadlines.

• Good organizational and time-management skills.

• Demonstrated ability to self-motivate and be flexible within a fast-paced environment.

• Highly motivated team player, handles multiple tasks, and work independently as well as in a team.

• Excellent problem solving skills, good interpersonal skills and communication skills, committed,

result oriented, good team player, quick learner and self-motivated.

• Has passion to learn new applications and technologies, hard-working, attention to detail, and able

to adapt to any environment.