I would like to have this opportunity to introduce myself as a knowledge seeker whose life is more into the world of cybersecurity. I’m Enesh Fernando, 25 and addressing to you from Colombo, Sri Lanka where I am currently located. I have completed my primary and secondary education from De Mazenod College (1999 - 2012) which was led me to enroll with multiple extra-curricular activities and academics with flying colors. In my school era being a member and participating for sports tournaments in Gymnastics, Athletics, Swimming drove my endurance and stamina. Not only the sports but also being a Scout, I have won the school best junior scout award in 2007, awarded President’s award in 2011 from Sri Lanka Scouts Foundation and membership of The Association of Top Achiever Scouts (ATAS) in 2011 from World Scouts Foundation which are the highest awards a Scout can be achieved. Being a school prefect and a member of School Science Society embraced my leadership qualities, teamwork and punctuality. Besides from my school academics, I obtained 9 A passes for G.C.E Ordinary Level Examination in 2009 and 1C and 2S passes in the field of physical sciences (Combined Mathematics [Pure and Applied Mathematics], Chemistry and Physics) in G.C.E Advanced Level examination, 2012. Completed a diploma in ISO 14000 / 14001 with a first class from Indian Institute of Management and Technology during 2009 – 2010. After passing out from De Mazenod College, I joined HSBC HDPL as Anti Money Laundering Executive under Financial Crime Compliance and Regulatory Compliance Operations (FCC & RC) team based in Colombo, from 2013 March to December. It was my first job experience in the industry. In tertiary education, I have completed BSc in Engineering Honors, major in Electronic and Telecommunication with a second-class lower division with 3.22 GPA from General Sir John Kotelawala Defence University Sri Lanka (2014 - 2018). During this period, I undertook multiple projects which has led to national and international publications such as IEEE. • KDU UAV Drone Project: The main objective of this project was to build a UAV which can carry up to 1 kg payload with the altitude of 1000 feet. This project was developed in four stages which are:
1. Building a fixed wing aircraft which can fly up to 1000 ft with the payload of 1kg. 2. Embed with GPS technology. 3. Recording real time videos on operation. 4. Enable autopilot features. Above project is carried out as the first-year project. • Sri Lanka Institute of Information Technology (SLIIT) Robofest 2015: The task is to build an autonomous vehicle that can complete the task that has been set by the SLIIT. The autonomous robot was capable of line following, object detection, object grabbing and solve the white grid to avoid the random nodes (effective algorithm) and RGB color differentiation.
• South Asian Institute of Technology and Medicine (SAITM) SRC 2016: The challenge is to develop an autonomous robot that can arrange objects in a grid-based arena. The challenge emulates a factory floor and challenges the robot to collect three rings (toroid shaped objects in red or blue) and stack them on a pole. A grid of black lines laid out on a white surface will aid the robot to navigate the arena. The robot wins the challenge if it can complete the task and return to start position within the shortest possible time.
I have published 2 publications on 9th International Research Conference held at General Sir John Kotelawala Defence University and International Conference on Current Trends towards Conveying Technologies (ICCTCT) IEEE, Coimbatore, India. Publications can be accessed from below links:
• Fernando, E. and Priyashantha, A. (2017). Conceptual Smart Earth Model. In: 9th International Research Conference-KDU, Sri Lanka. [online] Colombo: Proceedings in (Engineering, Built Environment and Spatial Sciences), 9th International Research Conference-KDU, Sri Lanka, pp.151-155. Available at: http://www.kdu.ac.lk/proceedings/irc2016/2016/ENG-023.pdf [Accessed 23 Nov. 2017].
• Fernando, E., Dampage, U., Hanees, A., Dissanayake, N., Karunasiri, D. and Abeysinghe, K. (2018). Integrated Rescue Group for Landslide Disaster Management. In: 2018 International Conference on Current Trends towards Converging Technologies (ICCTCT). [online] Coimbatore, India: IEEE. Available at: https://ieeexplore.ieee.org/document/8551074 [Accessed 30 Jan. 2019].
In the university, apart from the academics, I was a member in university Karate squad, which led couple of victories in my undergraduate career. I have placed 1st and 3rd places in Kata and Kumite on Japan Karate Federation Sri Lanka Branch annual tournament and 2nd place in Kata on Shukokai International Friendship Open Karate Do Championship. During undergraduate phase I enjoyed completing the technical training from Ceylon German Technical Training Institute (CGTTI) from 2015 to 2018. I have undergone through Industrial Automation training - Programmable Logic Controllers (Siemens S7 300 / Allen Bradley / SCADA / FESTO / Electro Pneumatic Simulation) Ladder / STL.FBD / SFC / HMI MPS Station Training (Modular Production System - KUKA / Mitsubishi). Additionally, automobile repair and maintenance, motorbike repair and maintenance courses completed with Very Good Pass (VGP). After completing six months internship period (June 2016 – December 2016) on Etisalat Lanka Private Limited, opened me doors in career of engineering. I trained under several teams such as Radio Network Planning and Optimization (RNPO) [2G and 3G networks], Radio Network Quality Assurance, Transport Network Operations, Core Network (CS Core) and Value-Added Services (VAS). This tenure gave me more hands-on experiences on various technologies between different vendors. Finishing up the industrial certifications such as Cisco Certified Network Associate Routing and Switching (CCNA Routing and Switching) (200-125) - License CSCO13094692, Systems Security Certified Practitioner (SSCP) - (ISC)² - License 65504, Configuring and Operating a Hybrid Cloud with Microsoft Azure Stack (537) - License MCID: 16804035 link me the basics what I have learned in academia to the current industrial trends. Moreover, worldwide memberships carry more magnitudes, recognitions and concessions to the industry. Therefore, I maintain below memberships: • IEEE / IEEE Communications Society / IEEE Council on RFID / Big Data Community, IEEE / IEEE Young Professionals / Brain Community, IEEE / Cloud Computing Community, IEEE / Internet of Things Community, IEEE / Internet Technology Policy Community, Member Number 92890118 • Internet Society - Member ID: 142719 • International Association of Engineers (IAENG) - Member No: 137558 • The Association of Top Achiever Scouts (ATAS) - ATAS member#3998
Connection of local chapters conferred me capacious volunteering experiences. During my undergraduate period I have elected as the vice chair for IEEE student branch KDU (2017 - 2018), Organized IEEE Women In Engineering (WIE) International Leadership Summit in Sri Lanka 2017, Elected as the student ambassador for IEEEmadC (Mobile Application Development Contest), Program committee member for IEEE Technical Awareness Program (TAP) 2017. Concluding the degree program in January 2018, I joined John Keells Holdings which is one of the largest conglomerates established in Sri Lanka as an Associate Consultant Cybersecurity. As a cybersecurity consultant my reporting structure directly communicate with the Group Chief Information Security Officer (CISO) covering below points: 1. Provision of 24x7 Information Security Monitoring and Surveillance 2. Analysis of security events/logs and escalation of security incidents 3. Monitor incidents, perform and coordinate Root Cause Analysis (RCA) 4. Open tickets and ensure case management 5. Monitor open tickets for incidents 6. vulnerabilities from start to resolution 7. Maintain incident response 8. Escalate unresolved problems to higher levels of support, including the incident response and vulnerability mitigation teams 9. Advise affected users on appropriate course of action 10. Produce and maintain accurate and up-to-date technical documentation, including processes and procedures, related to Security Operations Center, security incidents and preventive maintenance procedures 11. Liaise with Managed SOC services provider and other security product and services vendors 12. Liaise with LoBs with regards to information security incidents and findings 13. Working on shift - daytime and night 14. Provision of advisories on security related matters