Keywords
security infrastructure consultant
cyberark implementation
Splunk architect
Database Activity Monitoring
web application firewall
Security Operations Center
siem integration
SIEM Use Cases
Cloud Security Architect
Azure Sentinel
cyberark
splunk administration
azure security
corelight
Imperva Securephere DAM
imperva WAF
QRADAR
Skills
Let's Get In Touch!
Experience in Managing and executing GSOC (Global Security Operation Center ) / MSS ( Managed Security Services ) , Security Engineering , Security Architect, Cloud Security, Security Audits, Vulnerability Assessments, Penetration Testing, Threat hunting | Intelligence , Incident Analysis / Responder and Cyber security Trainer.
Talented and dedicated Cyber | Cloud Security professional with over 12+ years of experience
My Specialties:
Security Orchestration, Automation and Response ( SOAR ) | SIEM Implementation
Imperva Data Risk / Behavior Analytics (CounterBreach) | Data Masking (Camouflage)
Web Application Firewall (WAF) | Database Firewall ( DAM )
Vulnerability Assessment and Management(VA/VM)
Endpoint Detection and Response(EDR)
Threat Intelligence | Hunting
Bot Security - Design | Deployment
Secure Configuration Review | Audit
Cloud Security | Azure Sentinel | AWS Security
Cloud | API Security Architecture - SABSA
Tools s Played :
* APT | EDR | NDR Solutions: - FireEye HX / NX, Carbon Black (Bit9), Cortex, Cylance, Sentinelone, McAfee Active Response
* SIEM / Log Mgmt: - IBM QRadar, ArcSight Logger / ESM, Alienvault, Splunk 7.X / 8.X, LogRhythm 7.X, Trustwave LME, Kibana, Azure Sentinel, Wazuh , McAfee Nitro | ESM
* WAF: - Incapsula Cloud WAF, Imperva SecureSphere, F5 ASM, Radware, Akamai, Barracuda
* DDOS: - F5 Cloudline, Radware, Akamai, Arbor Peakflow.
* SOAR: - Cortex XSOAR , Siemplify
* Cloud Security: AWS Inspector CloudWatch, Cloud trials, IAM, Office 365 and CASB, McAfee Mvision
* PAM | CDR: Beyondtrust | CyberArk | FortiOS, DocBleach
* Threat Intelligence Tools / Frameworks: Recordedfuture, Cisco Talos, Threatradar, Autofocus | MITRE ATT&CK, ZEEK Bro Corelight
* MFA / SSO : SwivelSecure AuthControl Sentry
* DNS Security: - Cisco Umbrella, Infoblox
* IDS/IPS| Sandboxing: - McAfee MAR, Cisco Firepower, Snort, Trend Micro, Suricata
* DLP: - Symantec DLP14, McAfee , Open DLP, Digital Guardium, Trustwave, Forcepoint
* Email Security: - Symantec Brightmail, Cisco IronPort,
* Firewall: - Checkpoint, Palo Alto, Fortinet, Juniper
* Data Classification / Masking : Boldonjames, Titus , Camouflage
* Proxy: - Bluecoat, Zscaler
* Forensic Tools : Autopsy
* Configuration Audit: - Nipper, Redseal, Nessus
* Database Security: Imperva Database Activity Monitor ( DAM ) / Database Firewall (DBF) / Scuba
* Packet Broker: Wireshark, IXIA , Niagara
* Vulnerability / Penetration Testing: Nessus, Qualys, Rapid7, IBM BigFix
* Application Security Scanner: - AppScan, Fortify, Netsparker, Burp suite, Acunetix WVS
Experience in Managing and executing GSOC (Global Security Operation Center ) / MSS ( Managed Security Services ) , Security Engineering , Security Architect, Cloud Security, Security Audits, Vulnerability Assessments, Penetration Testing, Threat hunting | Intelligence , Incident Analysis / Responder and Cyber security Trainer.
Talented and dedicated Cyber | Cloud Security professional with over 12+ years of experience
My Specialties:
Security Orchestration, Automation and Response ( SOAR ) | SIEM Implementation
Imperva Data Risk / Behavior Analytics (CounterBreach) | Data Masking (Camouflage)
Web Application Firewall (WAF) | Database Firewall ( DAM )
Vulnerability Assessment and Management(VA/VM)
Endpoint Detection and Response(EDR)
Threat Intelligence | Hunting
Bot Security - Design | Deployment
Secure Configuration Review | Audit
Cloud Security | Azure Sentinel | AWS Security
Cloud | API Security Architecture - SABSA
Tools s Played :
* APT | EDR | NDR Solutions: - FireEye HX / NX, Carbon Black (Bit9), Cortex, Cylance, Sentinelone, McAfee Active Response
* SIEM / Log Mgmt: - IBM QRadar, ArcSight Logger / ESM, Alienvault, Splunk 7.X / 8.X, LogRhythm 7.X, Trustwave LME, Kibana, Azure Sentinel, Wazuh , McAfee Nitro | ESM
* WAF: - Incapsula Cloud WAF, Imperva SecureSphere, F5 ASM, Radware, Akamai, Barracuda
* DDOS: - F5 Cloudline, Radware, Akamai, Arbor Peakflow.
* SOAR: - Cortex XSOAR , Siemplify
* Cloud Security: AWS Inspector CloudWatch, Cloud trials, IAM, Office 365 and CASB, McAfee Mvision
* PAM | CDR: Beyondtrust | CyberArk | FortiOS, DocBleach
* Threat Intelligence Tools / Frameworks: Recordedfuture, Cisco Talos, Threatradar, Autofocus | MITRE ATT&CK, ZEEK Bro Corelight
* MFA / SSO : SwivelSecure AuthControl Sentry
* DNS Security: - Cisco Umbrella, Infoblox
* IDS/IPS| Sandboxing: - McAfee MAR, Cisco Firepower, Snort, Trend Micro, Suricata
* DLP: - Symantec DLP14, McAfee , Open DLP, Digital Guardium, Trustwave, Forcepoint
* Email Security: - Symantec Brightmail, Cisco IronPort,
* Firewall: - Checkpoint, Palo Alto, Fortinet, Juniper
* Data Classification / Masking : Boldonjames, Titus , Camouflage
* Proxy: - Bluecoat, Zscaler
* Forensic Tools : Autopsy
* Configuration Audit: - Nipper, Redseal, Nessus
* Database Security: Imperva Database Activity Monitor ( DAM ) / Database Firewall (DBF) / Scuba
* Packet Broker: Wireshark, IXIA , Niagara
* Vulnerability / Penetration Testing: Nessus, Qualys, Rapid7, IBM BigFix
* Application Security Scanner: - AppScan, Fortify, Netsparker, Burp suite, Acunetix WVS
Project history
Local Availability
Only available in these countries:
India