Cyber Security Expert (Remote)
EUTECH Chamber
مجموع سنوات الخبرة :13 years, 5 أشهر
-Plan security initiatives, develop tailored solutions, and offer recommendations.
-Create security strategy, security policies and related security documentations.
-Create vulnerability and patch management program, identify vulnerabilities, and suggest remedy.
-Plan, design, and execute Data Loss Prevention (DLP) in compliance with GDPR
-Enhance network and system security by implementing best practices.
-Plan and design endpoint detection and response strategies.
-Establish SOC using Microsoft Sentinel & -Defender.
-Deliver tailored security training to all staff
-Create secure design and contribute to the security aspects of application development.
-Perform security audit and create reports
-Develop a personalized security training initiative.
-Monitor network traffic, responding promptly to security incidents.
-Address L3 tickets related to security, proposing solutions accordingly.
-Assist teams in security assignments to implement security measures.
-Planning and executing cyber security initiatives to safeguard corporate data's
confidentiality, integrity, and availability aligned with organizational objectives.
-Developing information security policies and related documentations.
Implement security measures for systems, networks, and applications to reduce attack
surfaces.
-Working with security compliance, ensuring adherence to industry-standard
frameworks such as CIS and ISO control-set.
-Establish security baselines for organizational systems and conduct regular
assessments.
-Develop and maintain application security policies aligned with ISO27001, CIS &
OWASP guidelines.
-Lead the collaborative SOC setup, implementing incident response, optimizing SIEM,
create use cases and runbooks.
-Keeping detailed documentation and regularly updating them for aligning them with
latest security trends.
-Upgradation of the organization's security solutions, capabilities and baselines.
-Drive vulnerability management program (Insight-VM) for IT infrastructure, prioritize
remediation, monitor progress, and provide status reports to stakeholders.
-Conduct tailored security awareness and training w.r.t acceptable use of IT, online
security & security policies and conduct effectiveness drills.
-Monitor and analyze emerging security trends and threats, staying updated on the
latest developments in the cybersecurity landscape to proactively mitigate potential
risks.
-Manage cybersecurity budgeting, evaluate security products, procure solutions, set
timelines, conduct proofs of concept (POCs), validate use-cases, handle third-party
contracts, and monitor service level agreements (SLAs).
-Champion cybersecurity initiatives by delivering insightful presentations to end users.
-Effectively translate technical details into practical and actionable insights, fostering a
heightened understanding of cybersecurity importance across all organizational levels.
-Collaborate with cross-functional teams to assess and define network segmentation
requirements for critical components, minimizing potential attack surfaces.
-Implement robust security controls for data and infrastructure, managing access control systems, surveillance, intrusion detection, and security policies, aligning with industry frameworks and policies.
-Helping team in planning and designing network security including architecture, logical segmentation, zoning, firewalls, WAF, PAM and other cyber security components.
-Establish and maintain security baseline configurations for IT systems, ensuring consistent adherence to standards such as CIS and industry’s best practices.
-Actively taken part in the establishment of TIA-942 compliant T-III kevel data center and practiced robust infrastructure security measures.
Implementing and managing endpoint security controls in Active Directory, including fine-grained password policies, privileged access management and LAPS.
- Working on the end-to-end design, implementation, and management of the SCCM-based patch management solution, coordinating and scheduling deployment activities to minimize business disruptions, and ensuring timely patching, updates, and service packs across all systems.
-Enforcing security policies and practices ensuring adherence to predefined configurations and standards.
-Managing the operations of infrastructure virtualization using SCVMM, ensuring the VM lifecycle through planning, provisioning, configuration, and retirement.
-Implementing the least privileges and role-based access control principals to mitigate the potential impact associated with compromised accounts.
-Performing regular backups of critical VMs and configuration of critical network appliances, storing online and offline copies and perform routine testing to validate backup.
-Upgrading legacy antivirus solution by procuring, designing, deploying and monitoring NG-EDR systems for intrusion prevention, device control, user behaviors, threat intel and reporting.
-Identify opportunities for continuous improvement in cybersecurity controls, processes, and policies, recommend and implement enhancements to strengthen the overall security of the organization.
-Remaining abreast of contemporary security trends and emerging threats to uphold the organization's robust security posture.
-Maintain interconnectivity of networks, servers, and devices across 150+ locations, including headquarter and remote offices.
-Maintain Microsoft servers, including Active -Directory, DNS, WSUS, DHCP, File Storage, and Email Servers.
-Perform critical data backups and ensure data security as per established procedures.
-Install workstations, printers, scanners, video surveillance systems, biometric authentication devices, servers rooms, and networking equipment across multiple locations.
-Successfully performed systems and infrastructure migration from distributed to centralized system including applications, DBs, and other resources.
-Manage users, groups, security, authentication, authorization, and permissions to enhance infrastructure security.
-Install, configure, and maintain network firewalls & internet proxy servers.
-Conduct scheduled patching, updates, and upgrades of critical operating systems.
-Worked on enterprise Active Directory server administration by providing timely and efficient support to staff including creating, modifying, and deleting user accounts, groups, devices, organizational units (OUs), and other objects in the directory service database.
-Worked on Group Policies to ensure that organizational security measures are meeting and are within the organizational access control metrics.
-Managed security across the network by deploying new security patches, and monitoring activity for signs of intrusion or compromise.
-Worked on systems hardening best practices
-Worked on troubleshooting Active Directory authentication, LDAP, DNS, Mail Server, DHCP, Proxy Server, File Server and Exam Server configuration issues.
-Performed network capacity monitoring, measurements and related troubleshooting.
-Developed and implemented data backup and recovery practices
-Worked with other support teams in troubleshooting of miscellaneous IT & network related issues while assisting them by providing with level 2 & level 3 support.
-Worked on administration of enterprise-scale Active Directory environments, Network Services (DHCP, DNS, DFS, Proxy), AD Replication, and GPO management, Users management, migration activities, backup and restore operations, OU structure, security and delegation models.
-Worked on administration of Cisco Wireless LAN Controller for campus wide provision of WiFi services.
-Worked on implementation of domain group policies for restrictions on different classes of users including students, faculty & university staff.
-Worked on administration of Papercut and Print Manger Plus print management solutions for students printing.
-Worked with development team to support university’s management information system.
-Managed university’s service/helpdesk activities and related staff.
-Worked in execution of ongoing IT projects in the campus, like establishment of new LAN and WiFi services, setting up of computer LABs, establishment of access networks in new blocks of the university.
-Worked on providing miscellaneous hardware and software level 1 & level 2 support services to LAN, WLAN, computer labs, OS, and customized software applications.
لقد تم حذف الرابط بسبب انتهاكه لسياسة الموقع. يرجى التواصل مع قسم الدعم لمزيد من المعلومات.