Security Architect
Verizon
مجموع سنوات الخبرة :16 years, 4 أشهر
Evaluating Security and Network architecture, identifying gaps and making recommendations
Event Analysis on Base & correlated Events using Splunk.
Architecting AWS cloud to meet Security compliance.
Investigating the logs forwarded by various network & endpoint devices.
Responds to security incidents, analyzing resolution techniques and preparing reports of findings.
Providing assessment of incidences being addressed.
Anomaly Detection, Perform security assessments.
Gathering threat intelligence. Threat hunting.
Incident Management and Response, Conducting risk assessments and information security audits.
Monitoring file charges with Tripwire and OS with OSSEC
Handling Endpoint Security
Effectively monitoring functioning of equipment/ peripherals and made necessary modifications to ensure system operates in conformance with specifications.
Ensure Service level monitoring and change communication.
Threat detection using: Crowd Strike, Symantec, Nessus, Cisco Sourcefire,
Conducting Vulnerability Assessment, Penetration Testing and System Hardening assessments.
Responsibilities:
• Strengthening the IT infrastructure through to implementing new technologies.
• Recommending and implementing improvements and efficiencies.
• Monitor systems for IDS and DOS
• Involved in major incident calls and engaging respective teams to make sure the outage is addressed.
• Involved in development and tuning and implementing threat detection analytics
• Hands on experience in working with various platforms legacy, AWS, openStack, VMware, Hybrid
• Manage and coordinate monthly maintenance as scheduled
• Developed and designed logs fetching and retrieval framework to streamline SIEM visibility.
• Developed customized reporting, alerts and monitoring mechanism
• Security assessments, including penetration testing
Responsibilities:
• Strengthening the IT infrastructure through to implementing new technologies.
• Recommending and implementing improvements and efficiencies.
• Monitor systems for IDS and DOS
• Implement web site security measures, like firewalls or message encryption
• Responsible for database security and also preventing data loss/leak.
• Website Security Audit and Analysis.
• OWASP TOP 10, SANS TOP 20, CWE, OSSTMM
• Vulnerability Analysis/Assessment & Pen-testing Box :
• Kali Linux, BackTrack 5r3, Blackbuntu, BackBox, Metasploit
• Security assessments, including penetration testing
• Perimeter defense technologies
• Log analysis & security information management (SIM)
• Incident detection and handling
• General network security consulting
• Administration of the database including performance monitoring and tuning.
• Track, compile, and also analyze web server usage data
Responsibilities:
• Maintain a thorough understanding of the basics behind the internet and its workings \[dns, security, ip routing, http, email routing, spam, etc\].
• Assist in the design of multi-server environments including ip address schemes, dns etc
• Responsible for data network disaster recovery planning and implementation.
• Support development staffs web application programming needs including code review and optimization for programming languages.
• Implement web site security measures, like firewalls or message encryption
• Test issues like system integration, performance, and also system security on a regular schedule or after any major program modifications
• Recommend web site improvements, and also develop budgets to support recommendations
• Develop or implement procedures for ongoing web site revision
• Perform user testing or usage analyses to define web sites effectiveness or usability
• Installing and maintaining databases.
• Ability to multi task & prioritize under ever changing & challenging workloads
Responsibilities:
• Creating backup copies of data.
• Test new software packages for use in web operations or other applications
• Installing and maintaining databases.
• Taking backups of files and DBs for disaster recovery.
• Determine sources of web page or server problems plus take action to correct such problems
• Provide technical and administrative guidance to Developers.
• Identifying and escalating immediately any risks to the database service.
• Web Application maintenance.
• Involved in the design of physical database schema, data modeling, and performance tuning.
Responsibilities:
• Evaluate testing routines or procedures for adequacy, sufficiency, and also effectiveness
• Performing routine audits of systems and software.
• Perform routine backups & archival of files to assist with disaster recovery
• Support the implementation of policies and procedures pertaining to basic web design and style.
• Document application web site changes or change procedures
• Supervising the administration of systems and servers related network to ensure availability of services to authorized users.
• Set up or maintain monitoring tools on web servers or web sites
Responsibilities:
• Evaluate or recommend server hardware or software
• Develop testing routines procedures
• Configure and setup firewalls and security appliances for access to vital business applications.
• Updating and monitoring IT user accounts.
• Monitoring the call flow to the users.
• Identify, standardize, and also communicate levels of access security
• Taking part in the preparation and execution of technical tests
Responsibilities:
• Updating and monitoring IT user accounts.
• Maintenance & management of the Critical Windows based Server Environment. Maintaining up to date Antivirus levels on all machines company wide.
• Working on Active Directory accounts, configuration of Blackberrys & laptops.
• Managing and monitoring of backups in multiple locations.
• Providing maintenance support and break-fix solutions.
• Follow documented processes i.e. implementing change control procedures.
• Liaising & meeting with external suppliers of IT services.
• Producing reports for senior managers.
• Troubleshooting technical problems and implementing solutions.
• Purchasing of IT Equipment and software in line within agreed budgets.
• Supporting a multi-site IT infrastructure of at least 100 employees.
• Responsible for the fast and accurate troubleshooting of reported faults.
• Providing technical support via helpdesk systems for a wide range of internal & external applications
,