Consultanat Cyber Security and IT
British Telecom
Total years of experience :20 years, 5 Months
• Design and develop HLD, LLD, SOP and best practice procedures to ensure uniform security architecture throughout Development, Operations, and Infrastructure.
• Provide technical presales support for RFQ, RFI & RFPs for sales team in designing technical solution for Managed security service (MSS)
• Own the Security (technical solution) delivery of statement of work (SoW) from scoping.
• Deliver requirements by ensuring production of a robust and achievable design and delivery plans.
• Plans will include agreed and backed off test strategy for technical solution.
• Proactively engaging across multiple teams, including external suppliers during WNB, T&T and In-life phases to ensure delivery plan for managed security services (MSS).
• Pre-empt issues and identify a resolution that ensures commitments made to the business are maintained.
• Engaged with clients and suppliers, including internal stakeholders to do effective stakeholder management.
• Grasp opportunities to simplify /transform process across work area and across teams using CI best practices
Solution design and planning of enterprise-wide/client networks includes infrastructure technologies, platforms and applications to ensure client requirement and objective.
Design and develop HLD, LLD, SOP and best practice procedures to ensure uniform security architecture throughout Development, Operations, and Infrastructure.
Collaboration with other specialists, partners, Global Solution Architects, Product house, Lab & principles to offer comprehensive solution design for the project.
Documentation of architecture design to various levels of detail using the prescribed templates and standards.
Provide technical presales support for RFQ, RFI &RFPs for sales team in designing E_Governance and MMP projects of Govt. of India.
Selection of enterprise security standards and policies including tools, technology, applications, and processes and ensure implementation model with proper tracking.
Demonstration of the solution & articulation of benefits to customers through detailed technical presentation.
Work closely with Projects team to ensure smooth and on time delivery of the project.
Few Major Project :
Agriculture Scientist Research Board, (Indian Council Agriculture Research):
Nationwide online computer based examination application development and deployment, Data Center and Disaster Recovery build operate and networking at 23 remote office.
Role: GAP Analysis and system optimization design for suitable and secure infrastructure deployment. Successful SAT and third party security audit.
Madhya Pradesh Power Generation Corporations Ltd. (MPPGCL):
India’s first fully customized EPR solution for power generation units across MP state (India). It include IFS-ERP fully customizable and modular ERP solution, Best of kind Hughes VSAT for remote office and power generation unit connectivity
Role: Technology Solution propositioning includes designing of Wired and Wireless communication system, Data Center, 5 Thermal Power Plant, 11 Hydel Power Plant.
Data Center components HP Server/Storage, VDI and Security components. Technical design acceptance. HLD, LLD technical document finalization..
CCTNS (Crime and Criminal Tracking Network System)
Daman & Diu, Lakshadweep, Bihar, Andaman Nichobar, Andhra Pradesh, Karnataka) Indian States.
A Min. of Home Affairs (MHA), mission mode turnkey project for the police service modernization for developing and Core Software and IT infrastructure.
Role: Leading a team of solution architects for technical solution proposition includes application software development, DC-DR, networking, server, storage, Data digitization, training, other infrastructure requirement.
Dtg. Married Accommodation Plan DGMAP-Phase-II (Ministry of Defense)
DGMAP phase-II involves the up gradation of severs and deployment of network and security components like UTM, NIPS, Firewall, and Email security solution.
Role: As a security specialist design and implement the network and security component of data center make all compliance achievable for the ISO-27001 certification of the data center.
Indian Council of Forestry Research and Education (ICFRE, Dehradun)
A turnkey project for ICFRE application development consisting of portal development and Data Centre and Disaster recovery is an ISO27001 Certified, application for university.
Role: The design and implementation of the network and security component consist of Firewall, NIPS, UTM, and Mail Security Appliance of at data center and supervise the successful completion of the ISO-27001 certification for the data center.
DIARA (Defense Information Assurance and Research Agency) Min. of Defense, Govt of India)
This project consists of 3 labs including IOLab, Defense CERT and Forensic Laboratories for the ministry of defense.
Role: The solution design consist multiple security and forensic tool like Vul. Scanner (GFI-LAN Guard, NESSUS), Web Vul.Scanner (Acunetix),
Establish the security solution for primary Data Center, BCP & DR sites and 745 regional offices for Central Board of Direct taxes (CBDT, Gov. of India). Security System includes UTM, NIPS, ULB, Firewall devices, and Antivirus solution. Proactive assessment and detection of security risk. Daily security health check and incident monitoring and measures.Risk Assessment and security compliance check.
Profile Activities:
Configuration of all security Network Security appliances Firewalls/UTM and IPS (Cisco ASA, Fortigate, ISS-Proventia).
Proactive traffic analysis for any Intrusion, using incident correlation and Analogy detection.
Design and Install two factor authentication solutions ie. RSA Secure-ID Solution by integrating RSA Authentication Server 6.1 with different agents.
Deploying Symantec Antivirus Enterprise Edition 10.1.5 multi-tiered solution that delivers virus protection, content filtering, and spam prevention for groupware.
Designing and migration of Symantec Endpoint Security (SEP) 11.0 for 14000 clients.
Define Process/S.O.P for the proper monitoring Antivirus definition file across 745 servers and any virus incident.
Installation of ISS-Proventia Site-Protector console to manage HIPS & NIPS appliance. To Prepare the standard policy for ISS NIPS & HIDS through ISS Site Protector Console & Push those policies on corresponding NIPS & HIDS.
Using RADWARE solution for Application load-balancing and AppXel device for SSL offloading and packet scanning.
Vulnerability Management: Regular watch on new patch released for Windows, AIX, LINUX O/S, Oracle DB and other application.
Airtel Broadband & Wire line Services is India’s first private basic telephony operator. It comes from Bharti Enterprises-India’s largest private integrated telecom company.
Job Profile: Network Engineer
Daily administration and maintenance of Internet Servers, Router’s (800, 1700, 2500, 2600, 3600), Leased Circuits, Network related issues, Services including MAIL/DNS & Traffic monitoring/analysis and support Configuring Cisco 2500, 3500, Series Routers. The routers are configured for more than 40 WAN links. .
Providing VPN Solutions on IPSec Tunnel/Virtual router Functionality.
Traffic/Network Monitoring using MRTG
Team Member for Complete Design and Implementation for Cisco PIX Firewall.
This includes, Designing the firewall architecture, Selection of Firewall
Integration of L3 Cisco Switches 3550.
Integration Plan with Net screen firewall
Selection of vendor Phase wise Implementation plan in process
Troubleshooting by using network packet sniffing software like Ethereal and NMAP for checking the internal as well external security of network.
Configuring access-lists to filter traffic based on address, time, and protocols and using object-groups to optimize access-list processing
Configuring ACS for security appliance to for AAA feature using authentication by both local and external database
Configuring security appliance to support virtual firewall and monitor and maintain virtual firewall
Install appropriate topology to support cable-based or LAN-based fail-over
Implemented Enterprise level VLAN based architecture for UTSTAR DSLAM network based on E0E (E1 over Ethernet) Model.
Same As Above...
Installation and troubleshooting of operating systems like Windows 3.x /NT, 2000, 2003 workstation and Sever versions.
Troubleshooting desktop related problems.