Entelyst
Entelyst
مجموع سنوات الخبرة :24 years, 11 أشهر
Working as Technical Manager on GRC and Cyber Security .Project Ashghar -Cyber Security, DLP, Data
classification, Sword Active Risk Management tool, Sophos, Various Cyber VA tools. Project Qatar Steel- SOC implementation .
Execute key technology risk mitigation projects, including coordination with applicable business, technology and risk & control teams
Support the Team in key risk and control activities, such as identifying, understanding and managing technology control risk through
control education, review of metrics, and facilitation of risk and control self-assessments
Working on ARM Sword tool and experience in both information technology / security risk management and controls assurance
Leading as an AVP IT Security, a business oriented information security function, responsible for providing vision, leadership,
oversight and management of physical and cyber security policies, procedures and practices. Ensuring and implementing industry
best practice policies, procedures and practices that address physical security, cloud hosting, cyber security, data privacy, protection,
Leading as an AVP IT Infra, a business oriented information security function, responsible for providing vision, leadership, oversight
and management of vendor, cyber security policies, procedures and practices. Ensuring and implementing industry best practice
policies, procedures and practices that address physical security, cloud hosting, cyber security, data privacy, protection, business
resumption and technology recoverability, prepare the organization to identify and respond to the range of threats from routine
attacks to targeted business disruptions, as well as compliance with relevant laws and regulations.
• Conducting SAM Audit and others Audits (27K, RBI etc.)
• Responsible for Statutory Audit, ITGC audit, 27K1 internal Audit, Vendor management Audit,
Information systems audit. Compliance audit & Information System Audit, Operation Audit.
• Evolved in Risk Assessment & risk treatment
• ISO 9000/TS 16949/Quality Management ITSM
• Vendor management and vendor selection process for various cyber security projects
• IS audit internal & engaged with external audit.
• Worked with management to update security manuals and address current concerns.
• Implemented system recovery procedures to minimize losses should an attack occur.
• Working with RBI audit guild line & deployment SOC (security operation centre) & SIEM as per RBI
guidelines.
• Implementing DLP and managed red team
• Working with WASA Acunetix, Nessus for scanning purpose.
• Migrations current infrastructure to Private cloud & AWS backup.
Heading up the technical services team which provides infrastructure and technology support to end customers solution in Security Monitoring Control.
Working with Nagios which is used for monitoring, Symantec ESM, SysAdmin, Symantec Endpoint Protection, ArcSight, IP Sonar, Qualysguard Level:Certified Vulnerability Management
Solution Architech & Designer as SMC Data Center & Ericsson ECN netwrok.
Wotrking as a Project manager of SMC Projects with Effort estimation, Incident management, Problem management, Configure management & Change Management.(IPCC framework)
Work with Quality team to reach CMM level 5 .PPM & OPM .
Working with IT Security framework with Ericsson & attend SCAMB Quality Audit & 27K internal Audit .
Handling a team sized of 6 members in SMC projects.
Handling SLO reporting for IT Security perspective with EGI & Capacity Management reports.
Heading up the technical services team which provides infrastructure and technology support to end customers solution in distribution sector.
Design and development of infrastructure solution with a firewall, switches, router, servers.
Heading Capex & Opex budgeting for IBM infra.
Heading up the technical services team which provides infrastructure and technology support to our clients such as Security Incident Response, SOC & NOC, infrastructure development and professional services, as well providing technical support to our diverse client base
Heading up the technical services team which provides infrastructure and technology support to end customers such as Link Flap, Routing Issues, Change implementation, Proactive alarm
Evaluating the products & partners regarding all Voice & Data Products.
Establishing Partnership model with Product Vendors to generate SI businesses.
Creating Revenue projection in agreement with Sales & Marketing Team.
Implementation of secure internet and Email access infrastructure and Websense Enterprise.
Implementation of remote access VPN infrastructure, RSA based two factor authentication systems for Email access.
Design and development of endpoint security with antivirus, client firewall, disk encryption, removable media control and software patch management.
Directly and indirectly leading the team in excess of 50 personnel.
Working in Third party IT Infra & System Audit
Planning, Designing, Implementation and Support of the complete IDEA MPLS network. Support Security and Firewall Issues and implementation of the Idea Network .
Attend all technical discussions and participate in related customer meetings as applicable. Be available 24 x 7 for escalation support as required.
Responsible for Firewall Policy implementations and troubleshooting of all routing, switching, security and MPLS network.
Design and implement the Company's network infrastructure globally and assure that the network design is reviewed on a periodic basis to maintain an optimal price/performance.
Managed a team of 10 Members. Implementation and maintenance of information security management system (ISMS) based on ISO/IEC 27001:2005 across the organization encompassing all business and support functions.
Conducting internal control review of all financial systems in line with Sarbanes-Oxley Section 404 compliance requirement for filing the annual audited reports with SEC.
Designing secure client connectivity architecture with IPSec VPN and MPLS consisting of two tier firewall architecture.
Security architecture consulting to fortune 1000 companies in various aspects like intranet security, gateway security, security incident management, application security and BCP.
Implementation of Payment Card Industry (PCI) data security standard (DSS) at level 1 for accounts having access to PII and PIFI information.
Faced SAS 70 Type II Audits.
Independently managing the six stages of BCP process (risk management, Business impact analysis, Business continuity strategy development, business continuity plan development, business continuity plan testing and maintenance) consistent with international standards, guidelines, and best practices such as ISO27001 and BS25999.
Interacting with customer security team on a regular basis to understand their specific requirements towards meeting regulations like HIPAA, GLBA, FFIEC, BASAL II and SOX with respect to data privacy and compliance.
Liaisoning with telecom service providers for establishing connectivity between data center and clients across the globe via IPLC, Frame Relay VPN, MPLS and IPSec Internet VPN.
Co-ordination with vendors for all kind of design and escalated issue related to data and Security.
Working All New implementation, Design and scripting and project Handle on ASPAC.
Responsible for management of worldwide network of GE which includes 5000+ Routers, Switches, Firewalls, and ATM switches etc
Notable Deliverables
Planning appropriate capacity to serve the business requirements based on projection from business well in advance and preparing for unplanned business surges.
Ensuring optimum utilization of CCT resources for manpower, technology & infrastructure components.
Directly and indirectly leading the team in excess of 200 personnel.
Preparing, controlling and executing the annual capital and operational expenditures related to the contact center domain of the company.
Analyzing the technological and informational needs of the Customer Service Delivery (CSD) department and developing solutions with the help of internal project team and partners to satisfy those needs.
Technologically enabling business to offer value added services and new innovative products inline with the organization goals.
Implementing Six sigma practices for all inbound & outbound contact center processes.
Security Administration, Security Management and Implementation across various platforms.
Perform North America and Europe ASAT (Alcoa Self Assessment Tool) Testing Windows, Oracle & Essbase and Network.
Respond to Customer Remedy tickets and emails regarding security requests for reports and issues on various platforms
Execute Scans on all platforms for checking vulnerability and make necessary remediation.
Block / Unblock various Corporate mandated websites through XSTOP (8e6 Technologies)
Manage NA ISA Servers by adding new locations to IP / Dynamic proxies.
Manage Antivirus Servers (SAV 9.0) and Patch Management (WSUS).
Manage Weekly Server Turnover / Staging process and perform the Security checks for Windows Servers, Network Devices, Applications and Databases.
Security related tasks in the Change Management process.
Review Domain policy for password (weak password, password strength, password age), account inactivity, shared and service accounts and remediate the findings.
Prepared ODC as per the Alcoa Security Standards (RFC 0017)
Run Mock Audit to find out gaps and prepared non-compliant report prior to main Audit.
Faced Alcoa Auditors as a single point of contact for the IT Security Audit.
Prepared Action plan for the minor recommendations in the Audit and closed the same within the expectation.
Developed Security Strategy and Roadmap vision, and oversaw IT Security Process and Corporate Policy mapping. Authored detailed project / deployment plans and schedules. Took lead role in numerous projects and consistently exceeded customer expectations. Demonstrated skills in interviewing business and technical leaders / professionals to gather and clarify business security requirements. Given responsibility to design, implement and maintain corporate networks from IT security perspective, conduct vulnerability assessments and penetration testing, design and implementing security policies.
Work with Somerfield to establish implement and maintain the Security policy.
Provide assistance during Somerfield security assessments.
Provide security administration including the provision of a single logon for email and Internet access
Maintain the creation, modification and deletion of the root, system administration accounts and passwords on all platforms supported
Provide email security monitoring, administration and reporting of agreed elements on all platforms supported
Provide tools to manage access rights to shared files consistent with defined policies
Identify and propose appropriate responses to security threats, or detected Investigate and report to Somerfield on exceptions, attempted breaches or detected breaches in line with agreed Somerfield security requirements.
Monitor Anti Virus performance and extract and report virus capture statistics.
Maintain and manage the internal SMTP gateway anti Virus Software.
Provide ad-hoc reporting on anti-virus signature distribution
Monitor Internet blocking performance and extract and report capture statistics.
Directs Patching deployment through WSUS and other proprietary softwares
Conducts and Directs Vulnerability assessment, Penetration testing and Forensic analysis .
Provide annual assurance statement for IT security in the form agreed with Somerfield.
PCI DSS standard audit report and compliance report.
ISO 270001 compliance and policy deployment.
BCP and DR plan implemented and policy rollout.
Symantec rolled out and ESM patch management.
Working Risk management and vulneralability analysis.
Working on Security audit and security design of large complex network.
Implementation of project plans within pre-set budgets and deadlines.
Manages ISO17799 compliance reviews and reassessment audits. Assessing security standards, managing licensing and software standardization issues.
Maintaining and Troubleshooting 5000 Devices and 25, 000 WAN Connectivity Circuit across the GE World of Businesses.
Handling Incident management for close to around 1500 security devices which includes a mixture of firewalls, proxies, Load Balancers Etc.
Worked as Team member of an incident management team consisting L1, L2 and L3 engineers who are working in shifts in 24x7 operations.
Handles technical escalations.
Responsible for management of worldwide network of GE which includes 5000+ Routers, Switches, Firewalls, and ATM switches etc.
Co-ordination with vendors for all kind of escalated issue related to data and voice circuits like ISDN, E1, DS3, ATM, Frame Relay etc.
Troubleshooting Link performance issues like latency and packet drops.
Provide required technical and process training to team engineers.
Actively involved in operations related Bridge/Conference calls.
Implementing Emergency Change Requests based on Customer Requirements.
Responsible for adherence of six sigma process within team.
Worked in change management team, hence well aware of all change processes and compliance guidelines.
Looking for L1 and L2 Escalations and High Priority tickets with Sev1 and Sev2 that includes conference Calls with Customers and Service Providers.
Analyzing & Troubleshooting the Backbone Network related problems.
Configuring, Maintaining and troubleshooting ISDN backup links for ISP links and frame relay links Configuring, Maintaining and troubleshooting ISDN backup links for ISP links and frame relay links.
Configuring and troubleshooting Pix firewalls. Working on PIX firewall(535 and 525)
Configure the active/standby fail-over and active-active fail-over.
Troubleshooting GRE and IPSEC tunnels in EIGRP network.
Planning and implementation/Deployment of various devices which includes Cisco PIX, IDS etc.
Project planning, project monitoring and status reporting, client liaison, analysis and troubleshooting, setup and configuration of the security devices that is IPS and Trend micro anti virus suite.
Configuring F5 load balancer.(Virtual servers, Pools, monitors and Simple Persistence)
Managed and implement over 5000 devices throughout the world. Managed and liasioned vendors like:
Albacom, Albacom BT, Alcatel Austria, AT&T, AT&T Unisource, Belgacom, Bilan F/R, British Telecom, BT, (DSL issues), BT Global, BT Ignite, BT X.25, C&W, Colt (all GXS backbone), Colt Benelux (Belgium), Colt England, Colt Germany, Danmark PTT, Datapak OSLO, Datapak Sweden (Telia), Debis, Deutsche Telekom (DeTe), Deutsche Telekom, LOCAL, Dtag(Hotline), Eirecom/Eirepac, Embratel, Elisa, EPT, Hungary, Equant(Global1), Estanet, Finpak, French Telecom, AT&T, Broadwing, MCI, Sprint, Bell South, Pacbell, Pacbell(International transport for communications carriers), china telecom, Malaysia Telecom, Ambratel, Tele Italia, Quest, Telindus, Korea telecom, Singtel Singapore, ANC Singapore, uunet Netherlands, bharti, bsnl and many more.
Working as a technical lead for all Network Projects and Network Operations for ITC Limited, on behalf of HCL Infinit Ltd. Managing NOC team for Network Support for a WAN of 350+ locations. Managing all technical escalations from NOC Team and acting as a L3 technical resource. Responsible for new technical requirement analysis of the entire network.
Private Network Designing and Implementation Planning.
Routing protocol migration to OSPF from EIGRP for the entire WAN of ITC Limited.
Cisco ACS Installation and configuration roll out.
Conceived and designed Load Balancing and Traffic Segregation through Dual ISP based Internet Connectivity for ITC Limited. Configured Layer3 Switches and Routers to enable PBR and HSRP for Fault Tolerance, Load Balancing and High Availability.
IPSEC over VPN solution in the existing network with routing protocols like EIGRP and OSPF for better and reliable performance.
Fine Tune Cisco IDS/IPS sensor advanced system parameters to optimize attack mitigation performance.
Notable Deliverables
Successfully managed large and complex ITC Infobahn network multi locational (over 300 routers and switches, PIX) resilient and secure networks with latest state-of-the-art QoS and technology in order to facilitate bandwidth intensive real time applications transfer.
Managed and liasioned vendors, ISP backbone, third party suppliers and product lines on technical issues relating to ITC project.
Generating an account development plan for outsourced and complex accounts.
Customer Engineer, Responsible for Planning & Implementation of Networking & FM Projects and generating business through new technology services.
Installation of Router/ Leased Line circuits/ISDN circuits.
Commissioning and installed 64 kbps LL with ISDN and PSTN Dial-up.
Looking after the DOT & Exchange line activities.
Installation & configuration of Nortel IP phones in all the branches of The South Indian Bank Ltd
Project on Various Universities. (TECHNO INDIA GROUP)
Notable Deliverables
Provide Technical support to all departments.
Resolve system and network problems.
Responsible for Installation & commissioning of networking project including LAN & WAN.
Installation and configuration of Network equipment's e.g. Routers, Switches etc.
Network commissioning using Channelized Data lines and ISDN BRI/PRI, E1/R2 etc.