Kaleel Rahman Email and Phone Number

- [ ] Highly skilled and motivated DevSecOps engineer designing, implementing, and securing CI/CD pipelines- [x] Strong background in software configuration management and extensive experience in testing, deploying, automating, and evaluating systems aimed at ensuring security and compliance- [x] Proficient in troubleshooting and detailed problem analysis, with a track record of effectively resolving issues- [ ] Experienced in managing and leading cross-functional teams, with a focus on technical product design and development- [ ] Possess a deep understanding of DevOps principles and practices, with a strong emphasis on security and continuous integration and delivery- [ ] Proven ability to collaborate with stakeholders, including developers, operations teams, and security professionals, to ensure the successful implementation of DevSecOps practices- [ ] Strong knowledge of industry best practices and standards related to security, compliance, and risk management

Development of an architecture for application and implementation of monolithic services, microservices and cloud-based services.Identifying security weaknesses and recommending remediation actions. Collaborated with development teams to integrate security practices into the software development lifecycle,ensuring the delivery of secure applications.I completed around 109 DevSecOps application integration in check Marx, white source and burp suite.Develop and enforce security policies, standards, and procedures to maintain compliance with relevant regulations and industry frameworks (e.g., GDPR, ISO 27001).Design and implement cloud security architectures and solutions, leveraging industry best practices and standards (e.g., AWS, Azure, GCP).Conduct code reviews and provide guidance to development teams on secure coding practices and application security principles.Hands-on Experience LDAP integration of our security tools and TLS/SSL certificate to implement.OnPremisesDevOpsimplementationcoveringsecuritytoolchainintegrationincluding credential scanner, SAST & SCA, DAST and container image scanners with CI build pipeline such as SonarQube, Chekov, Trivy, and Anchor Engine to identify vulnerabilities.Reviewed and implemented identity & access including RBAC design per business processes, data encryption & key management, cloud infrastructure and cloud-native services security and audit configurations reducing the security risk by 60%.

Creating a secure SDLC for DevSecOps lifecycleImplementation of SBOM generator, SCA, SAST, DAST Technology to SDLC lifecycleConsulted on the agile-based AWS, Azure & On-Premises DevOps implementation covering security toolchain.Building a secure Branching strategy for DevOps pipelineIntegrating pipelines including Credential scanner, SAST & SCA, DAST and container Security with CI build pipelines such as SonarQube, Black duck, Snyk, Trivy, Falco Anchore, Burp suite, Check Marx, White Source Engines to identify vulnerabilities.Using helm chart to manage the Kubernetes resources to reduces the intricate of deployment.Using Service mesh like Istio Inserting security, dedicated infrastructure layer for facilitating service-to-service communications between services or microservicesManaged Docker orchestration and Docker containerization using Kubernetes.And implemented various Security stacks, in pipeline to delivered Secured pipeline.Proven working experience in CSPM and CWPP (Cloud security posture management)Reviewed the violation of the cloud environment and developed mitigation plans.Designing and implementing infrastructure and application hardening methodologies (Storage, Network users, VMs)Experience in securing workloads, including server, VM, container, and serverless on-premises.Proficiency with CNAPP cloud native platform protection technologies, such as Sysdig, Aqua security, Orca security, and Palo Alto Prisma cloud. Significant experience in aws goat, azure goat as well as Kubernetes-goat environment