Mir Hussain Ali

Fontbonne University

Aug 2015 - May 2017

Course - Masters in Computer Science Major in CyberSecurity. St Louis, MO - USA

Cognizant Technology Solutions Canada Inc.

May 2021 - Present

Fulltime - Cyber Security Manager Lead EVM (Enterprise Vulnerability Management) , Application Security programs and deliverables in customers environment including facilitation of scans, vulnerability remediation, compliance metrics generation etc.  Collaborate with Security Engineers to design a comprehensive VMS and AppSec program in customers environment  Interact with multiple GRC (IAM, STO, DR, SecOps) tower leads to identidy and fix gaps in existing process  Generate biweekly metrics and report to customer’s security leadership(CISO) team  Designed CATO (Cyber Authority to Operate) process in customers environment to proactively remediate vulnerabilities in assets before production roll out  Created VM council Team which will monitor Monitor third party websites for newly identified vulnerabilities on Windows Server, Windows Clients, RHEL and MAC OS, risk assess manually and report it to the customer  Risk asses vulnerabilities and help with remediation / mitigation of the vulnerabilities  Manage Multiple security tools (Rapid7’s Nexpose, Fortify, ZenMap etc) including scans, vulnerability assessment and remediation initiatives  Design quarterly patching process for critical vulnerabilities in customers environment  Oversee the Cloud migration project and help customer with secure migration of On-Prem assets  Review scan logs and analyze failed scans and troubleshoot to fix the relevant issues  Review false positives and false negatves and report it to relevant stakeholders  Anticipate and address process improvement requirements and automation needs, work with customer leads to finalize the requirement and drive implementation.  Report weekly stats on deliverables to customer security leads, Security leadership team and work with customer to define quarterly goals and review / report progress monthly  Develop and enhance evaluation models to assess the success of the corporate vulnerability management program with the collaboration of the development and infrastructure support teams in support of risk management practices  Integrate Cybertools with ServiceNow and monitor for integration issues Calgary, AB - Canada | https://www.cognizant.com/canada

Capgemini America Inc

April 2018 - May 2021

Fulltime - AppSec / Vulnerability Management Lead Lead AppSec and EVM (Enterprise Vulnerability Management) program and deliverables including facilitation of asset scans, vulnerability remediation, compliance metrics generation  Anticipate and address process improvement requirements and automation needs, work with customer leads to finalize the requirement and drive implementation.  Report weekly stats on deliverables to customer security leads, Security leadership team (C Level) and work with customer to define quarterly goals and review / report progress monthly  Self driven goal oriented lead to manage team members from Application Security and Enterprise Vulnerability Management streams  Lead scanning and remediation of onprem, cloud hosted and third party hosted assets  Design and develop AppSec guidelines with respect to secure sdlc and automate the process  Work with various stakeholders and Dev teams to drive automation effort  Help mitigate / remediate vulnerabilities with strong understanding of OWASP and lead patching vulnerabilities in OS and third party tools (Adobe, Java etc)  Develop and enhance evaluation models to assess the success of the corporate vulnerability management program with the collaboration of the development and infrastructure support teams in support of risk management practices  Provide timely advice to experts and sponsors all through the project to ensure target objectives are achieved  Define goals for Appsec teams and EVM teams motivating and leading team to achieve them Chicago, IL - USA | https://www.capgemini.com/

AG Technologies

Sept 2017 - March 2018

Fulltime - Software Engineer Played key role in the high-level design for the implementation of Microservices application • Design and develop functionality used by software applications, including change management, security and authentication, disaster recovery planning, support for data access, system configurations and reports • Improve existing code quality through writing unit tests, automation and performing static code reviews • Work with relational databases and assist with design, performance and troubleshooting as needed with new features, projects and defects • Develop new data sources for our real-time data feed, and update existing feeds as required • Build and maintain Java server applications for distributing real-time market data and providing infrastructure services to our front-end applications • Developed Java Beans and Utility Classes for interacting with the database using JDBC • Configured and build Asynchronous communication with JMS services with MQ Services. Chesterfield, MO - USA | http://agsoftco.com/

CEET - Fontbonne University

September 2015 - May 2017

Intern - Workstudy / Student Intern Worked as an Intern for CEET (Center of Education and Emerging Technology) Fontbonne University • Cyber Security Champion on OWASP secure coding practices • Mentor and mange SAST, DAST, IAST and penetration testing initiatives for University Website • Install Cyber Security tools such as Fortify, point proof and carbon black and monitor the network traffic for security issues • Provide Onsite support for Software Installation, Operating System formatting, and Network trouble shooting • Helped in Conducting Tech Expo at Fontbonne University. St Louis, MO - USA | https://www.fontbonne.edu/

GlobalLogic Technologies

Jan 2013 - May 2015

Fulltime - Content Engineer Involved in Analysis, design and coding on Java and J2EE Environment • Implemented Spring Framework for the project • Involved in Various phases of Software Development Life Cycle (SDLC) • Analyzed the system for Requirements and Design by developing Use Case, Class, Sequence and Collaboration diagrams using Rational Rose as part of UML • Involved in creating JSP pages and HTML Pages • Used HTTP filtering to perform the filtering task on request and response • Developed various generic JavaScript functions used for validations • Worked extensively in JSP, HTML, JavaScript, and CSS to create the User Interface pages for the project • Used Spring ORM to integrate with the Hibernate • Involved in writing SQL, Oracle Stored procedure and PL/SQL for back end. Used Views and Functions at Database end • Wrote different queries for database to retrieve the details from the database which are configured for One Source System • Developed stored procedures and called using JDBC • Part of team solving the issues that came in production. Hyderabad, India | https://www.globallogic.com/