Security Consultant - Network & Security
Intertec Systems
Total years of experience :17 years, 7 Months
1. Develop, implement, operate, and maintain security solutions with Infrastructure such as Palo Alto firewall, FortiGate Firewall, Forti Switch, Forti Analyzer, Forti Manager, Forti Access Point, IPS, secure remote access, endpoint security, system hardening, and continuous monitoring to increase security effectiveness and streamline security operations.
2. Prepare Project plans and design documentations (High level and Low-Level Design) pertaining to the security solutions to customers. Provide complex technical advice, recommendations and consultancy on security solutions given to the customers.
3. Determining latest technologies and processes that improve the overall security of the system.
4. Information gathering and prepare the Low-level security design documents based on the customer requirements for the new projects.
5. Provide technical support to customers over email, web, phone or onsite as desired.
6. Recommend installations of new/latest security systems or a possible up-gradation in existing systems.
7. Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues.
8. Monitor and report on the performance of network, system, and application security solutions to highlight areas of non-compliance and inform designated team/manager of improved practices and processes.
9. Actively investigates the latest security vulnerabilities, advisories, incidents, and notifies clients when appropriate.
a. Develop, implement, operate and maintain security solutions with ICS infrastructure such as firewalls, IPS, patching solution, secure remote access and endpoint security.
b. Participate in ICS projects and changes within the business unit to ensure proper implementation of cyber security requirements.
c. Ensure that Cybersecurity and resiliency are incorporated by design in compliance with security best practices in design, implementation and operations in the Enterprise and Operations areas.
d. Developed processes to strengthen the current Security Operations framework, ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives.
e. Developed processes to strengthen the current Security Operations framework, ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives.
f. Participate in ICS projects and changes within the business unit to ensure proper implementation of cyber security requirements.
g. Part of Cyber Security Resilience Services in Practice to respond to RFI/RFPs, develop business proposals and Proof-of-Concepts (POCs) instances.
h. Participating in Pre-Sales calls, developing and delivering value-based customer technical presentations and demonstrations.
Client: London Stock Exchange - London, UK
Responsible for migration of Legacy Proxy to Forcepoint Web Security 8.5 on premises and hybrid location.
Work with stakeholder across regional locations and assist on Users and applications migration to new Web
Proxy solution for 2000 application servers and 10, 000 users.
Expert in Forcepoint Web Security administration in the configuration of policy rules to support various
business units to ensure appropriate access while adhering to the company's Internet usage guidelines.
Working hands-on in Web proxy environments; provide guidance on troubleshooting technical issues.
Implementing PAC file configuration and update through GPO, fine tuning policy with file types.
Detect and block malicious network traffic at the web security gateway.
Create, update and document workflows and standard operating procedures.
Client: Max Life Insurance - Gurugram, Delhi
Responsible for day to day of security operation for providing Fortinet Firewall and Palo Alto Firewall Configuration Management as per SLA.
Configuring and implementing of F5 ASM for web application and fine tune ASM Policy.
Worked on the SOC team for monitoring Qradar offense, log analysis, Incident handling & response to the customer with proper recommendations by meeting SLA.
Managed security solutions including Symantec Endpoint Protection, McAfee IPS, Web Proxies & DLP to identify and block cyber-attacks.
Conducted and performed vulnerability assessment test on the perimeter network, systems and applications based on SOX, ISO 27001, PCI/DSS compliance standard.
Provide the technical expertise and oversight of security tool/appliances deployment and implementation.
1. Responsible for supporting entire network including LAN & WAN technologies, Internet, Intranet, and Ethernet systems for more than 500 branches in UAE and Globally.
2. Planning, Designing and recommendations to network security architecture, performance & security policy for the Enterprise management.
3. Planned and managed the Data Center network infrastructure of Cisco Routers, Switches, Firewalls,
4. Barracuda & F5 load balancers, Wireless Controller, IPS, and WAN Optimization including hundreds of VLANs across multiple locations dispersed data centers to support extensive application Tier 3 architecture.
5. Responsible for maintaining the maximum up time to the DC Infrastructure which comprised of monitors, analyzes and performance on enterprise wide Core MPLS, Internet Leased line, ISDN and VPN architecture.
6. Day to Day work on configuration and operation of security solutions including Intrusion Detection/Prevention Systems (IDS/IPS), Cisco ASA/FWSM Firewalls, Checkpoint UTM, Palo Alto, Panorama, VPN, Barracuda WAF, F5 ASM, Wireless, SIEM (QRadar).
7. Monitoring network performance and bandwidth utilization using PRTG, Solarwinds Network Monitor tool.
8. Implemented and maintaining MPLS connection as a primary line for all the Branches, maintaining ISDN PRI in Head Office and BRI in Branch Office as a backup line.
9. Knowledge of Security vulnerabilities / weaknesses and related attacks (IP spoofing, DDOS, network protocol analyzer, and computer viruses).
10. Implemented Checkpoint Smart Gateway Manager to manage multiple gateways, Installed and upgraded from R75 to R80.10, configured in Cluster pair with Active/Active and Active/Standby mode using Cluster XL and troubleshoot cluster issues.
11. Analyzed Checkpoint Firewall running to determine Active directory connectivity issues and recommended a viable solution to resolve mobile access and remote VPN authentication.
12. Configuration of firewall Access lists for packet filtering (security) and excellent troubleshooting skill using Wireshark & sniffing tools.
13. Experience with SPAN ports, VLAN, VTP, STP, port security, 802.1x, trunk, port channel, inter VLAN routing, L3 gateway redundancy by implementing HSRP, IP routing protocols such as EIGRP, OSPF & BGP, IPSec VPN, DMVPN, Remote Access VPN.
14. Active team member for the migration of corporate data centers from two locations to one consolidated data center.
15. Replaced old Core Switches 6500, 4500 and WAN routers to Nexus 5K/2K and ASR routers.
16. Implemented Cisco Works/Prime for Configuration and Network Management.
17. Implemented QOS for prioritization of application traffic to all our UAE Branches.
18. Implemented Polycom Video Conference for different Regions in UAE.
19. Implemented Riverbed Steelhead WAN Optimization in HO and DR side.
20. Document help desk requests and resolutions. Direct daily operations of department, analyzing workflow, establishing priorities, developing standards and seeing deadlines.
21. On Call 24X7 for Security or IT related emergency, business escalations and change implementations, approve security related exceptions, changes to standards & processes.
------------------------------------------------------------
Worked as L2/L3 resource for SOC Team whose main task is to work on SIEM administration, integration, troubleshooting and alert monitoring.
Design, implementation of Security Operations Center (SOC) and optimization of Enterprise security solutions and services. Develop and administer SOC processes an review their application to ensure that SOC's controls, policies, and procedures are operating effectively.
1.Configuring and Maintaining Cisco Routers and Switches.
2.Troubleshoot with PC Hardware, Start up, Networking problems.
3.Administration and support of LAN printer and Scanner.
4.Installation and Maintenance of antivirus.
5.Installation and configuration of windows Server 2003 Operating system.
6.System Support - Desktop support, Network printers, Installation and configuration of windows XP Operating system, configuration of Domain clients, dial-up, Software Token configuration, Co-coordinating with DELL Computers regarding Laptops Problems.
7.Formatting, Loading Operating System and Software Installations.
8.Maintenance of folder/file privileges for users and groups as per requirements.
9.Managing LAN and performing system set up, daily backups, connectivity, hardware and software troubleshooting, network virus inoculation and file/print/terminal server and workstation performance optimisation, repair and configuration.
10.Creating group policy objects for users and groups in the Network.
11.Providing End User Support for all Desktop and Laptop issues
through Helpdesk System.
12.Providing Support for all Security level (Virus, Spyware) issues.
Bachelor of Engineering