Select Page

Ashan Gamage

IT Consultant 

I have worked in many roles within information security, including vulnerability assessment, penetration testing, and performing security assessments in the last 5 years
in the US and overseas. In my latest experience, I have had a opportunity to work in a Digital Forensics role completing end to end investigations

 KEY SKILLS

• Work experience in Splunk and ELK Stack for log analysis.
• Experienced in Information Security and Identifying Cyber Threats (tool: Wireshark,TCPDump,Threat Connect).
• Work experience in Cloud Forensics Investigation (tools: AWS SSM, Axiom Cyber, AWS Athena, Cellebrite Cloud Analyzer, XRY Cloud).
• Experienced in Network Penetration Testing, Vulnerability Assessment and Port scanning (tools: NMAP, Nessus and Metasploit).
• Experienced in Agile Software development methodologists and tools (Jira and Pivotal Tracker).
• Experienced in Computer and Mobile Forensics Analysis (tools: EnCase, Axiom, Physical Analyzer, UFED Touch, Logicube Falcon).
• Intermediate level in web development
and API testing tools ( HTML5, CSS3, Drupal, WordPress, PostMan and SurveyMonkey).
• Programming Language experience in PowerShell, Shell Scripting and Python Programming.
• Proficient with Adobe Photoshop, Illustrator and InDesign.
• Proficient in Windows Server, UNIX and Linux System Administration.
• Experienced in
CRM Platform tools such as SaleForce and Monday.com.
• Experienced in creating dashboard and generating reports using Tableau and in
ML modeling using TensorFlow.
• Experienced in IT Security compliance in infrastructure, applications, and database system technologies.
• Experienced in VMware Horizon maintenances and VDI Technologies
  

 WORK EXPERIENCE

Morgan and Associates – Startup Austin,TX

Technology Consultant (Part-Time)

August 2020 – Present

• Performed malware analysis on Capital City Black Film Festival (CCBF)Website and removed the backdoor.
• Redesigned and developed the Capital City Black Film Festival (CCBF) (Adobe XD and WordPress).
• Worked with stakeholders for developing marketing strategies for Morgan and Associates.
• Developed Search Engine Optimization and digital marketing strategies for reaching out potential clients for CCBF
Removed WordPress malware on Claire Skies Travel and assisted on up and running the website  

 Deloitte Financial Advisory – Chicago, IL

 Digital Forensics Consultant

October 2019 – July 2020

• Performed forensics imaging on iOS and Android mobile phones for evidence preservation and investigations (UFED4PC, XRY and EnCase).
• Successfully transferred and monitored over 40Tb of data on AWS S3 buckets for a cloud forensics project.
• Assisted on gathering system recruitments on client projects and delivered system recruitment documentation.
• Innovated two machines for remote mobile acquisition during the COVID19 pandemic that lead to mobile acquisition projects.
• Delivered risk assessments, audited system logs and developed technology recommendations to assist clients to reach their business objectives.
• Assist on designing, writing and preparing client project proposal documentation, presentation a user’s guides (SOP)

 Bentley University CIS Sandbox – Waltham, MA 

CIS Sandbox Tutor (Research Assistance)

August 2018 – May 2019

• Redesigned the CIS Sandbox website for the Bentley University CIS Sandbox and implemented a new fresh look for the website.
• Tutored freshman and senior class students with their HTML, CSS and JAVA courses.
• Coordinated technology events and tech career events organized at the CIS Sandbox

Epsilon Crest (Startup) Colombo,Sri Lanka

IT Security Consultant

January 2018 – June 2018

• Upgraded Wi-Fi/network diagrams for five corporate environments.
• Trained six interns in Analyzing Network traffics and Network Penetration testing (Wireshark and Metasploit).
• Ran Firewall penetrations tastings in two corporate environments to improved firewall security (Nessus and Metasploit).
• Worked with Android Development team and designed the
ChatMall App (Agile Methodologies)

 Huston-Tillotson University-IT Austin, TX

 Systems Analyst

 January 2017 – August 2017

• Developed a new user interface (UI) for my.htu.edu and improved the user experience (CSS, JS and HTML).
• Enhanced Group Policy and Domain controllers’ security in order to improve Active Directory Security.
• Ensured the on premised systems are compliance to policies and system the security standards are enforced.
• Built
MBA and Office of International Programs (OIP) websites and conducted vulnerability assessment for the Huston-Tillotson University.
• Maintained strong and effective working relationships with peers throughout the organization and with multiple levels of management

American International Group Fort Worth, TX

 Cognitive Solutions Intern

June 2016 – August 2016

• Implemented the 1st Ready for Business Check automation for Courion Servers and expedited password rest time.
• Innovated a machine learning automation to check the health on Courion servers and takes corrective actions when necessary.
• Internship project led to savings up to $45,000 per year on Engineers side and about $60,000 on end-users side.
• Supported the communication and reporting on Service Now tickets to IT management and governance groups.
• Provided support to executing Risk and Control Self-Assessments (RCSA’s) and own the process prioritization methodology

 Teacher Retirement System of Texas Austin, TX

 Communications Intern

 January 2016 – May 2016

• Assisted with migrating TRS website into Microsoft SharePoint and Microsoft Azure Cloud.
• Created a risk assessment documentation for TRS website in order to enhance website security.
• Designed posters for TRS Help Desk Awareness project to improve their customer service.
• Coordinating business unit projects and activities related to third party relationships, information security and technology

 Skill Point Alliance Austin, TX

 Project Coordinator

 November 2014 – May 2015

• Managed a team of 15 high school students that created a mobile application that helps blind people to walk.
• Programmed sites visit and guest speakers for the team that improved students’ knowledge in software development.
• Built a team of 15 high school students into a fully functional startup company.
  

 Health4Life StartUp Austin, TX

 IT Security Analyst

 May 2014 – August 2014

• Developed and implemented risk management strategies to control risk-related costs
• Served as a team lead to identify vulnerabilities in physical security in 7 business environments & improved security
• Worked with 4 engineering teams on launching the website and presented the business platform to potential clients.
• Created the website security documentation and improved web site security that lead to savings of $20,000.
• Worked with network teams and analyzed network traffic for incident reporting in banking environments (Wireshark).

Ernst &Young LLP Colombo, Sri Lanka

IT Risk Assurance Consultant

 March 2013 – December 2013

• Assisted on analyzing vulnerabilities internal network diagrams and systems for 4 major banks in Sri Lanka
• Identified vulnerabilities in Windows & UNIX operating systems and documented them to improve business security.
• Worked with senior consultants in executing case studies and created presentations on bank audits.
• Executed scripts in various IBM AS400 & Windows Server operating systems to improve the functionality in systems.
  

 EDUCATION

• MSc in Information Technology focuses on Cyber Security
• BSc in Computer Science Huston-Tillotson University May 2017
• BSc in Business Administration in IT May 2013
• Network Security Certifications: Certified Ethical Hacker C|EH v6 (312-50 v6)
• Magnet : Reverse Engineering for Android Users