Assistant Consultant
Tata Consultancy Service
مجموع سنوات الخبرة :12 years, 2 أشهر
Company Profile: TATA Consultancy Services Limited (TCS) is an Indian multinational information technology (IT) services and consulting company. Its headquarters in Mumbai, Maharashtra.
Role: Assistant Consultant.
Key Responsibility Areas:
• Working in TCS Centre of Excellence team for Managed Detection and Response for BFSI customers.
• Working in Cyber insurance for different securities in Trend Micro solution for XDR, Cloud App Security and Email security.
• Created a CAS solution with ATP and DLP policies are implemented.
• Implementation and Operational experience of different security products including EPP, EDR & XDR.
• Expert in Implementing and upgrading and managing the security products as per the requirement and present state of the security in client environment.
• Worked on Security Proposal Response and Presentations.
• Migrating security product from McAfee AV to Microsoft Defender for Endpoint (MDE-ATP).
• Providing training to new joiners based on the technologies supports in the Organizations.
• Worked on another security product like SCEP, carbon black, Splunk integration with Symantec products, Symantec DLP and basic knowledge in MBAM and PKI.
• Sharing of knowledges and supported team members to handle Security queries and multiple technologies.
• Prepared SMTD, SOP documents for various technologies and got customer sign-off and shared with team members for quick resolution.
• Planning and execution of various other IT projects as per the requirement of Customer.
• Handled various customer escalations and resolved the same up to customer satisfaction.
• Successfully implementing various Change Requests through change management process.
• Conducted various training and transition sessions to colleagues and as well as to customers.
• Environment worked - Windows platform, SEP 14.X, MacAfee ePO 5.9 and Trend Micro Office Scan 10.6.
• Specializes in ITIL processes -Incident Management, Problem Management and Change Management.
Leading a team, Responsible for EPS operation - (Traditional Anti-Virus, DLP & EDR solutions)
• Providing guidance regarding technical security best practice to projects and internal teams including input into the requirements and design to ensure best practices.
• Review, challenge and contribute to technical designs and discussions at the Architecture and Change Management Committee’s to ensure that security is designed into new solutions.
• Prepared design and implementation document for Tanium components and modules.
• Build Tanium lab alongside with vendor Implemented modules like Asset, Connect, deploy, Protect, Threat Response, Comply, Discover and Interact.
• Experience in investigating the alerts using Tanium Threat Response and live connection to the endpoints to understand the process executed, files created and modified.
• Pivotal in upgrading the Symantec\Tanium console to latest version without an obstruction & built a process flow for the same.
• Ramped up incident Service Level Agreement (SLA) adherence from 95% to 98% through daily reviews.
• Conducting Training Session on the supportable products.
• Collaborating with Messaging to place the required policy in are inline to quarantine the Grey & Spam mails.
• Preparing an account transition checklist, participated & completed the transition on time.
• Migrating product version from Cylance AV to Microsoft Defender for Endpoint (MDE-ATP).
• Worked on another security product like in Wazuh, Proofpoint and Rapid 7 technologies.
• Handling Service Now and Remedy tool to attend incidents \ service requests for client queries based on ITIL processes.
Performing Security architecture and Infrastructure review/design, performing POC, sizing of solutions and implementation of different security solutions like Endpoint security solutions (Antivirus, HIPS/HIDS, EDR, DLP) as per the requirement in the client environment. • Good experience in Installations, Creating policies, filters, report validation and configuration of Symantec Endpoint, Encryption, Endpoint detection and response. • Worked on different projects like IT and OT SEPM configuration for End-to-End support in designing, installing, maintaining and troubleshooting the issues related to all the AV products. • Expert in Implementing, upgrading and managing the Endpoint security as well as Encryption, EDR console as per the requirement of the security vendors. • Worked in Symantec email.cloud product like checking SPF\DMARC checks, trace of emails and applying policies to blacklist and whitelist of phishing mail ids, checking and releasing the quarantined mails etc. • Symantec EDR used to detect the latest vulnerabilities, threats including viruses, zero day attack and other new malware that could pose a risk to the organization’s security. • Worked on another security product like SCEP, carbon black, Splunk integration with Symantec products, Symantec DLP and basic knowledge in MBAM and PKI. • Sharing of knowledge’s and supported team members to handle Security queries and multiple technologies. • Prepared SMTD, SOP documents for various technologies and got customer sign-off and shared with team members for quick resolution. • Planning and execution of various other IT projects as per the requirement of Customer. • Handled various customer escalations and resolved the same up to customer satisfaction. • Successfully implementing various Change Requests through change management process. • Conducted various training and transition sessions to colleagues and as well as to customers. • Environment worked - Windows platform, SEP 14.X, MacAfee ePO 5.9 and Trend Micro Office Scan 10.6.
• Specializes in ITIL processes -Incident Management, Problem Management and Change Management.
• Expert in Installations, Creating policies, filters, report validation and configuration of Symantec Endpoint, McAfee, Trend Micro and Windows Defender. • Worked on several projects through a shared delivery model and End-to-End support in designing, installing, maintaining and troubleshooting the issues related to all the AV products and Tanium. • Expert in Implementing, upgrading and managing the Endpoint security as well as office scan console as per the requirement and present state of the security in the client environment. • Debugging and analyzing anti-virus related incidents and Coordinate with clients and Problem Management Team or Critical Incident management (CIM) team for higher severity incidents and the RCA proposed for it to get the right level of support. • Researching the latest vulnerabilities, threats including viruses and other malware that could pose a risk to the organization’s security. • Helping customer with the security assessment of the infrastructure during the on boarding process. Provide customer with the guidelines in hardening and securing the infrastructure. • Basic knowledge in Symantec Encryption and Symantec ATP product (EDR). • Responding to Security Incidents with solutions and mitigation measures.
• Performing the security assessment for the network and servers in the client environment and helping in remediation of the vulnerabilities observed. • Monitor and tracking the virus detected systems and take necessary actions. • Communicate with respective account clients on weekly basis for transition of projects, regarding up-gradation, escalations and recommendations and reports the updated status discussed before. • Environment worked - windows platform, SEP 11.X.X, 12.1.X, SEP 14.X, MacAfee ePO 4.6, 5.3 and Trend Micro Office Scan 10.6.
• Specializes in ITIL processes -Incident Management, Problem Management and Change Management.
• Setup and implement K7 Enterprise security to protect enterprise network.
• Manually collecting virus samples from customer PC and performing first level of behavior analysis, evaluate, document malicious code behavior and report the same to lab.
• Performing vulnerability assessment and educating users about safety and preventing measures from malware attack.
• Proficient in cleaning/ removing all type of malwares using various monitoring tools from Sys-internals.
• Wireshark log analysis to identify the root cause of an incident and Analyzing customer reported false positives.
• Knowledge of IPS / HIPS / IDS / HIDS tools.
• Conduct network monitoring and intrusion detection analysis using Snort.
• Timely resolution was provided for priority scenarios and meeting SLA’s (Service level Agreement) of customers was maintained.
• Co-ordination, follow-up for the closure of the tickets, perform trend analysis to promote effective service and process improvement.
• Providing L1 support for 2000+ Trend micro clients/customers all over India.
• Providing E-mail support for all the queries related to Trend micro antivirus for SAARC countries.
• Trouble shooting, installation and various issues related to Trend micro products.
• Handling all types of malware queries and product issues.
• Collecting samples of the new variants of the virus and observing their behavior.
• Monitor and manage security solutions that protect against a wide range of insidious threats and combined attacks including viruses, spam. Providing appropriates pattern to resolve the issue.
• Critical case handling through remote management \[Web-Ex\] sessions, Team viewer etc.
• Installation and configuration of Buffalo NAS Device \[Tera station, Link & Cloud station\].
• Provides technical support by phone, remote screen sharing and in person when required to maximize first-call solve rates for local and remote user.
• Installation and configuration of Wireless Routers.
لقد تم حذف الرابط بسبب انتهاكه لسياسة الموقع. يرجى التواصل مع قسم الدعم لمزيد من المعلومات.