Network Security Specialist
Cantaloupe Information Technology
Total years of experience :12 years, 9 Months
(Current Client: Leading Bank)
1. Responsible for Configuration, management of RSA Authentication Management server, troubleshooting issues related to customer tokens, profile.
2. Configuration and Management of Pulse Secure SSLVPN solution.
3. Configuration and Management of Symantec DLP Solution, policies, integration with VMs, Proxy Solution, troubleshooting issues related.
4. Managing upgrades, configuration of Symantec Anti-virus solution. Configuring granular settings related to HIPS, Inherent firewall settings, hash comparison, device id based access.
5. Management of Trend micro Anti-Malware solution.
6. Responsible to plan assess and carry out firewall changes on Checkpoint, Palo Alto Firewalls
7.Responsible for Firewall Rule optimization using AlgoSec Tool.
8. Management of Hard Disk Encryption using Symantec PGP Encryption Tool.
9. Certificate Management, responsible to coordinate with related department for installation and renewal of SSL Certificates.
10. F5 LTM ASM GTM Management.
11. Responsible for Blue Coat proxy configuration and related changes, Blue Coat Malware Analysis and CAS.
12. Work on Vcentre for managing/Troubleshooting AV connectivity
13. Managing / Coordinating with vendors for health-checks, renewal, planning of upgrades etc.
(Client: Banking)
1. Installation, troubleshooting and Maintenance of Cisco ISE.
2.Managing Symantec Antivirus, troubleshooting Endpoint issues .
3. Configuration and Management( Fortinet / Palo Alto / Cisco/Juniper). Plan and test migration test cases, implement go live.
4. Configuration and Management of F5 ASM.
5. Manage the IPS system. Verify and update the signatures.
6.Configuring SSL VPN, Site to Site Vpn.
7. Providing Access from Privileged Access Management Tool.
8. Managing RSA Token Server, assigning roles and tokens to users as per requests.
9. Managing Security Applications like Single Sign On, Password Manager Tool, DLP solution.
10. Managing and Working with Qualys vulnerability scanner. Inform responsible team regarding the patches. Follow up with Team for closure and update.
11. Monitor Wireless Intrusion Prevention System, Generate Reports.
(Client: Government) )
Job Responsibilities:
1. Installation, Upgrades, Scanning and Monitoring of AV for Servers (Windows / Linux/ VM) and endpoints (Windows /Mac)
2. Upgrade and Maintenance / Monitoring of Proxy.
3. Managing and configuring Spam Filter. Report False Negatives.
4. Deploying third party Software Patches, Application White listing.
5. Enabling Mobile device Encryption, to provide DLP.
6. Management, Maintenance of IPS (Sensors / Manager). Generation of Weekly reports, critical alerts, Signature updates.
7. Monitoring SIEM Solution, for Event Correlation and take necessary measures. Traffic analysis using logs and Packet capture tool like Wireshark
8. Monitoring Web Application Firewall. Analysis and Report Creation.
9. Responsible for Performing Application Scanning using well known Application Scanners. Create and review findings with Team and work towards closure.
10. Perform Back up Monitoring, Maintain daily checklist of Backup Processes for all Servers and Databases
11.Monitor and Maintain Web Application Firewall
12. Perform Scheduled Vulnerability Assessment and limited Penetration testing of current infrastructure, Recommend improvements/ Changes.
13. Perform Network Device Configuration Assessment, create report, close findings
14. Perform Security Assessment of IOT devices that include (CCTV/LED signages), wired and wireless network using well known Testing Applications like NMAP/Metasploit etc. and ensure best practices are followed.
15. Actively involved in training interns joining the company
1. Responsible to provide reliable and efficient support for tickets by recreating customer scenario with regards to the different encryption level issues faced in their mixed environment. Catered to customers around the globe, which includes Defense and Government customers.
2. Troubleshoot Customer Site issues with regard to our product and connecting networks issues.
3. In charge of fresh installation, downgrades, upgrades of customized software within Vmware, Hyper-V and Linux Environments.
4. Respond to technical inquiries, log and follow up service and repair tickets, provide latest releases, manuals and documentation.
5. Plan encryption solution, suggest future improvements for existing and new customers.
6. Responsible for going through server and system logs to identify and report bugs by performing various tests in sample environment, liaise with the coding team regarding rectifying bugs.
7. Participated in additional testing of Software Prior to Release. This included testing the products with different encryption block size and hashing, recreating sample environments, recording the behavior and functioning of the device while running various traffic through it.
8. Participate and Conduct Daily/Weekly Team meetings and training
1. Involved in Designing, implementing, and documenting new information security architectures, technical control standards and risk analysis methodologies.
2. Evaluate the operating practices and component level diagrams to determine adequate security measures
3. In charge of delivering information security programs for the organization which includes end user awareness Program.
4. Supports day-to-day administration system of Checkpoint Firewalls (R71, R75), Cisco ASA/PIX,
5. Manage changes made to Cisco Switches, Juniper SSG Switches, take backup configurations, Evaluate the logs.
6. Implement security measures for information systems of the organization based on ISO 20000 and 270001 standards, performing Risk Assessment and Risk Mitigation plans.
7. Responsible to prevent unauthorized modification and to regulate access to computer data files
8. Responsible to effectively monitor different system, network logs and investigating the critical logs and alerts received from SIEM system
9. Responsible to deploy, maintain and manage all operating systems security and their corresponding or associated software, cryptography systems and Anti-virus software.
10. Ensure Security standards are implemented and maintained to match the company standards as defined in the policies.
11. Responsible for providing VPN connections and troubleshooting any issues related(IPSec and SSL).
12. Responsible for ensuring all trouble tickets are resolved within the stipulated time and all incidents and changes recorded in customized software.
13. In charge of monitoring and securing wireless traffic.
14. In charge of performing timely vulnerability assessment of perimeter network and reporting to management with recommended measures and suggestions.
15. Responsible of Interacting and negotiating with vendors, outsourcers to obtain protection services and products.
•Installing, supporting and maintaining new server hardware and software infrastructure
•Managing email, anti-spam and virus protection
•Setting up user accounts, permissions and passwords
•Monitoring network usage
•Responsible to provide basic introduction to networking- IP addressing, subnetting, supernetting, types of networks and creating possible scenarios for clearing the concepts using Packet Tracer
•Provide assistance to students to learn and use commands on the cisco catalyst switches.
•Introduced Routing Protocols- RIP, OSPF, EIGRP, BGP and helped in its implementing and working with cisco 2600 series routers.
•Installing Linux and Windows XP, Windows Server, VMware.
•Upgrading System Memory, Flash Memory on Cisco 2600 series routers.
•Cisco 3500, 3600, 3700 series Administration
•Cabling Setting up Lab Computers and Routers and Switches.
• Responsible for cross checking Bls with interim Oracle based systems to check on the credit status of the customer and ensure there are no arrears outstanding.
• Calculating and updating the database of the Key Account customers with their existing detention demurrage charges etc.
• In charge of releasing of Bls after scrutiny of payment.
• Ensuring payments done through the bank are validated onto the online systems with the unique ID number and other relevant information.
• Required to communicate with counterparts within the global network to ensure payments are collected for cross trade shipments.
• Responsible for creating and maintaining a log sheet and creating reports based on the Bls approved.
• Responsible for maintaining the minimum time limit in the interim Tokener system for the bl approvals
• Responsible for calculating and updating cheque details into the internal system.
• Required to communicate with the internal departments for proper invoicing and updations pertaining to the Bls to be released.
Achieved trophies and certificates for inter-college table tennis tournaments. Was elected Student Council member in college during the year 2006. Selected as Team Contributor for Editorial Team for College Magazine. Conducting interviews of faculties and helping share information and knowledge between students and Professors.