Specialist Security System
British Telecommunication
Keywords
Security Information and Event Management
Computer Security
Firewalls (Computer Science)
Data Analysis
Software Applications
Microsoft Azure
Cisco PIX
Cisco Routers
Command-Line Interface
Data Centers
Skills
Azure sentinel SIEM, microsoft Defender, EDR, Cisco, Cisco ASA, Cisco Routers, cloud infrastructure, command line, Information Security, Cyber security, Analytics, data center, logging, DNS, DHCP, EIGRP, FTP, firewall, Firewalls, IPS, LDAP, load balancer, Log analysis, Azure, MS Office, Routers, network security, Servers, OSPF, Packet Analyzer, Phishing, Putty, Remote Access, Routing Protocols, SIEM, computer applications, High Availability, VTP, VLAN, VPN, Wireshark
Project history
09/2018
-
08/2021
* Worked as a SOC Security specialist in a team that manages multiple global customers.
* Coordinating with management and other teams for critical security incidents and respond various incidents as per industry best practices,
facilitating incident management team exercises.
* Perform end-to-end delivery for standard solutions for customers.
* Job scope includes implementation of various network security solutions for various global customers.
* SIEM Toolset configuration and manage daily SOC activities.
* Perform various SIEM administration tasks e.g., adding data sources, logging configuration, Alarm, watch list/reference sets, reports, and
use case creation on SIEM for multi-client Infrastructure.
* Vulnerabilities Assessment and Risk Assessment for critical security threats, communicate with various teams to resolve security gaps.
* Using various security analytical techniques e.g., Threat Analysis, Threat Intelligence, Malware deep analysis, Abnormal Behavior analysis,
etc. to create the best security control.
* Worked on devices like Cisco ASA, Palo Alto, FortiGate, Zscaler proxy, SRX, Checkpoint, F5 load balancer, etc.
* End-to-end ownership for project delivery from the Network perspective. Upgrade/Deploy new firewalls as per the requirement.
* Troubleshoot issues occurring daily and attend bridge calls on priority incidents.
* Mentoring the team members on technical aspects.
* Coordinating with management and other teams for critical security incidents and respond various incidents as per industry best practices,
facilitating incident management team exercises.
* Perform end-to-end delivery for standard solutions for customers.
* Job scope includes implementation of various network security solutions for various global customers.
* SIEM Toolset configuration and manage daily SOC activities.
* Perform various SIEM administration tasks e.g., adding data sources, logging configuration, Alarm, watch list/reference sets, reports, and
use case creation on SIEM for multi-client Infrastructure.
* Vulnerabilities Assessment and Risk Assessment for critical security threats, communicate with various teams to resolve security gaps.
* Using various security analytical techniques e.g., Threat Analysis, Threat Intelligence, Malware deep analysis, Abnormal Behavior analysis,
etc. to create the best security control.
* Worked on devices like Cisco ASA, Palo Alto, FortiGate, Zscaler proxy, SRX, Checkpoint, F5 load balancer, etc.
* End-to-end ownership for project delivery from the Network perspective. Upgrade/Deploy new firewalls as per the requirement.
* Troubleshoot issues occurring daily and attend bridge calls on priority incidents.
* Mentoring the team members on technical aspects.
10/2016
-
08/2018
Information Security Engineer
CompuCom CSI Ltd
* Configure changes on the Checkpoint firewall which includes, policies, and VPN (Site to Site).
* Monitoring, Reviewing, and Reporting Phishing Activity, Brand Abuse emails, and Fraudulent Websites.
* Managing and Leading Security Incident / Event Response and Monitoring Teams.
* Configure changes on Cisco ASA, which includes Nat (pre and post-8.3), routes, objects and object groups, policies, Interfaces, VPN (site to
site, Remote Access), LDAP, High Availability, and upgrades. Configuring ASA from scratch. Installing licenses. Changes are done via GUI and
command line Monitoring/analyzing and managing the real-time events for the security devices (firewall, Routers, Servers, etc.) Using the
SIEM tool.
* Troubleshoot issues occurring daily and attend bridge calls on priority incidents.
* Monitor & Manage 24x7 coverage of the support service.
* Monitoring, Reviewing, and Reporting Phishing Activity, Brand Abuse emails, and Fraudulent Websites.
* Managing and Leading Security Incident / Event Response and Monitoring Teams.
* Configure changes on Cisco ASA, which includes Nat (pre and post-8.3), routes, objects and object groups, policies, Interfaces, VPN (site to
site, Remote Access), LDAP, High Availability, and upgrades. Configuring ASA from scratch. Installing licenses. Changes are done via GUI and
command line Monitoring/analyzing and managing the real-time events for the security devices (firewall, Routers, Servers, etc.) Using the
SIEM tool.
* Troubleshoot issues occurring daily and attend bridge calls on priority incidents.
* Monitor & Manage 24x7 coverage of the support service.
04/2016
-
09/2016
Security Analyst
British Telecommunication
* Installation and troubleshooting of Cisco Devices (Like Firewalls, IPS, Routers, etc.)
* SOC Monitoring and Incident Response Log management and Security fine-tuning
* Configure changes on the Checkpoint firewall which includes, policies, VPN (Site to Site)
* Configuring & Troubleshooting Routing Protocols like OSPF, EIGRP, and RIP Installation and troubleshooting of proxy (Bluecoat and
MacAfee, etc.) Work on BMC remedy ticketing tool
* Work with TAC of the vendor devices in case required.
* SOC Monitoring and Incident Response Log management and Security fine-tuning
* Configure changes on the Checkpoint firewall which includes, policies, VPN (Site to Site)
* Configuring & Troubleshooting Routing Protocols like OSPF, EIGRP, and RIP Installation and troubleshooting of proxy (Bluecoat and
MacAfee, etc.) Work on BMC remedy ticketing tool
* Work with TAC of the vendor devices in case required.
03/2014
-
04/2016
Security Specialist
HCL Comnet Pvt. Ltd
* Monitor the Network Alarms in the monitoring system, and resolve the tickets created.
* Health Monitoring of the entire n/w on monthly basis and recommending the needful changes based on the Preventive Maintenance report.
* Analyze Daily/weekly Reports of service/incident calls and take corrective measures in case of deviation.
* To check the performance-related faults like (packet loss, latency, slow speed, and utilization report) analysis within SLA 30 minutes using
guidelines Work with the data center planning team and assist with network capacity and high availability requirements.
* Opening tickets with TAC support on devices and working with them on the resolution
* Providing notifications to the Clients regarding the progress of the tickets Review Incident reports and plan elimination of errors on a
permanent basis.
* Health Monitoring of the entire n/w on monthly basis and recommending the needful changes based on the Preventive Maintenance report.
* Analyze Daily/weekly Reports of service/incident calls and take corrective measures in case of deviation.
* To check the performance-related faults like (packet loss, latency, slow speed, and utilization report) analysis within SLA 30 minutes using
guidelines Work with the data center planning team and assist with network capacity and high availability requirements.
* Opening tickets with TAC support on devices and working with them on the resolution
* Providing notifications to the Clients regarding the progress of the tickets Review Incident reports and plan elimination of errors on a
permanent basis.
06/2011
-
02/2014
Network Security Engineer
Networker's Home
* Configuring & Troubleshooting Cisco Routers, Switches & Firewalls (ASA & PIX) by using tools like Hyper Terminal, Putty, and Secure CRT.
* Configuring & Troubleshooting Routing Protocols like OSPF, EIGRP, and RIP Configuring & Troubleshooting STP, VTP, VLAN, Trucking
* Identifying the network problems and then rectifying the same within as minimum time as possible.
* Telnet the Clients network devices and figure out the fault Responsible for fault Management & all It Supports
* Worked on Ticketing Tools like SNOW (Service Now) and Remedy. Configuring, Deploying, and troubleshooting DNS, DHCP, FTP, and other
critical Servers
* Configure policies and rules for Firewalls and other Security devices.
* Configuring & Troubleshooting Routing Protocols like OSPF, EIGRP, and RIP Configuring & Troubleshooting STP, VTP, VLAN, Trucking
* Identifying the network problems and then rectifying the same within as minimum time as possible.
* Telnet the Clients network devices and figure out the fault Responsible for fault Management & all It Supports
* Worked on Ticketing Tools like SNOW (Service Now) and Remedy. Configuring, Deploying, and troubleshooting DNS, DHCP, FTP, and other
critical Servers
* Configure policies and rules for Firewalls and other Security devices.
Certifications
MS-500 Microsoft 365 Security Administration
Microsoft
2023
SC-200: Microsoft Security Operations Analyst
Microsoft
2023
Certified Cloud Security Professional (CCSP)
isc2
2022
CISSP (Certified Information Systems Security Professional)
isc2
2021
Local Availability
Only available for remote work
