Sr Team Lead - SOC Services
Paladion Networks
Total des années d'expérience :12 years, 11 Mois
Deliver unsurpassed service and managed security program management to our customers; propel IMS success through effective MSS SOC Team leadership and team member management by fostering communication, synergy, and collaboration; and drive the culture of information security innovation and thought leadership through every action item, contact, and initiative.
Primary Roles and Responsibilities
Ø Team Leadership:
ü Serve as a resource and content expert to team members; Overseeing multiple employees operating within a defined support operations area and providing them with guidance and being available to answer questions to clarify the work activities.
ü Identify, assign, and follow-up on work activities of team members to meet or exceed service level targets and customer expectations.
ü Identify and take action with situations requiring corrective/disciplinary action.
Ø Security and Business Process Consulting:
ü Develop, guide, and drive a strategic roadmap around the customer’s business processes as it relates to security objectives.
ü Work with Clients to develop, implement and review customer relations service improvement programs to enhance delivery of service.
Ø Program Management and Quality Assurance:
ü Responsible for the overall advancement of each respective customer’s under Managed Shared Services.
ü Serve as a point of escalation, remediation, and guidance for customer issues.
ü Collaborate with the Regional Account Manager (RAM)/ Engagement Managers and Consulting Services to maintain the relationship between Paladion Global SOC and the customer.
Ø Corporate ISO/ISMS Policy Enforcement in SOC:
ü Follow and implement all ISO 27001 security controls, policies and procedures.
ü Provide input, assist in requirements gathering, and implement internal department initiatives.
ü Assist with and adhere to all internal quality assurance audits.
Working on different projects where my roles and responsibilities include key areas like:
Ø Incident Management where
ü Evaluate security infrastructure logs and reports for incidents.
ü Monitor, analyze, determining mitigating steps to resolve the incidents.
ü Develop indicators and analyze network logs, in conjunction with operation teams to
identify emerging threats.
ü Advise on mitigation and remediation techniques to enhance customer network
security.
ü Capture relevant attack indicators to develop a body of historical reporting and
categorize threat actors.
Ø Vulnerability Assessments where
ü Maintain systems and infrastructure integrity via network, client, server and
application level controls.
ü Maintain and communicate objectives for various operating systems/Network
hardening guides.
ü Firewall Rulebase Audits.
Ø Security device management including network level and device end point
protections.
Ø Administration of ARCOS, Seclore and McAfee DLP, tools.
Ø Review and respond to internal security issues.
Ø Support special projects and deployment of new implementations not yet standardized
as a product.
Ø Communicate efficiently and effectively with internal users on security concerns, issues and events
Ø Endpoint Compliance which includes, Operating System Security patches, AV
Compliance check, insecure shares and admin account privileges review, etc.
Ø Security Risk Assessment for all infrastructure assets.
Ø ArcSight SIEM connector troubleshooting, defining usecases and reports and log
analysis of reports.
Ø Develop and support briefings to senior leadership as a security analysis subject matter expert.
Ø Present monthly security review to the management on monthly and quarterly basis
Have worked with HCL Infosystems Ltd, as a Field Maintenance Engineer (Network Engineer) as an On Job Trainee Basis providing Networking Support to one of the reputed major Airline Client's critical data center in a 24*7 shift pattern.
• Providing Networking Support to the main critical data center of Air India at Old Airport, Mumbai. Primary role of the job was Network Monitoring, wherein I also had to give networking support and troubleshoot on L1 and L2 devices. It was a 24*7 shift pattern and had to monitor major WAN/LAN links connected to different sites across the country and airports, along with troubleshooting and escalation and follow up, if found any faults. Had to make sure the availability of the network was 99.99%
• Responsible for :-
o Monitoring network of the main WAN Links connecting to different critical sites through various tools.
o Report any faults and take action accordingly.
o Monitoring the SITA Network.
o Monitoring connectivity between different branches.
o Keeping up-to-date information and IOS of devices.
o Monitoring the inbound and outbound traffic of main MPLS Router through PRTG Traffic Grapher.
o Monitor available bandwidth and bandwidth utilization, through Remote Infrastructure Service (RIMS).
o Maintain a log of day to day activity through shifts.
o Interaction with other branches (National and International) and Airports, if any problem with the network and take action accordingly.
o Managing VLANS, L2 + L3 Switches and routers of Cisco.
• Have also performed the duties of a Team leader.
