Network and security professional
etisalat
Total years of experience :16 years, 3 Months
Worked as a Security analyst in Security operations center (SOC)
Creating correlation rules in arcSight to analyze the threats for the organization.
Extracting events from Arcsight and analyzing them for security incidents.
Creating Arcsight connectors and integrating devices with Arcsight for log monitoring
Working on Flex connector for non CEF supported devices.
Making the configuration changes on firewall (cisco, Juniper & Fortinet) for minimizing security breaches.
Auditing the firewall rules though Firemon and Identifying the unused or over privileged rules and removing them to adhere security compliance
Providing and configuring cloud based DDOS protection to the customers through ARBOR TMS and ARBOR PRAVAIL APS.
Creating and managing customer managed objects in ARBOR for DDOS protection.
Analyzing Vulnerabilities within the organization and sending notifications to concerned departments and making sure the vulnerabilities are fixed
Handling security incidents raised by other ISPs on attacks that are originated from UAE
Working as risk consultant in Risk Management unit in FGB
Conducting the Risk Assessment for the information assets in the organization and suggesting the appropriative controls to address the vulnerabilities and threats
Conducting the internal process Risk Assessment to find the High and Critical risks in the processes and evaluate the current controls in the organization
Reviewing the current processes in the bank and highlighting the gaps in the process to enhance the security posture with in the organization.
Involved in creating and implementing the Computer Security Incident Response (CISRT) in the organization
Involved in NESA Audit in the organization and prepared the necessary documents for the audit.
Knowledge in Digital computer forensic investigation.
Following the ISO 27001 standards and aligning the process to ISO standard and reviewing the gaps in the process.
Involved in the ISO 27001 audits and preparing the required documents for the audit
Conducting the FGB Bank Branch review and evaluating the employee security awareness and providing the report to management about the audit finding
Analyzing the correlated events from SIEM ArcSight 6.8 and co-ordinating with the infrastructure team to fix the risks
Administrating ArcSight and creating rules, active channels, installing connectors, integrating the devices with SIEM to monitor the logs and investigating the incidents.
Upgrading the Arcsight ESM and Logger to the latest versions.
Manging off shore soc team and providing required training to handle day to day activities.
Handling fire-eye for advanced threats and protecting the bank infrastructure from being effected with malware
Knowledge in integrant different flavor of devices to ArcSight such as Windows, Linux, Unix, DataBases and Network devices
Analyzing the firewall rules through Algosec and identifying the risks associated with the over privileged rules.
Creating Baselines based on NIST secuirty guidelines for all the Bank infrastructure devices (firewalls, Routers, OS, applications, etc.) to maintain the information security through out the organization.
Analyzing the weaknesses and vulnerabilities through Nesus Vulnerability scans in the network devices like firewall and routers and involving the network team to push the required patches to fix the weakness in the system.
Working as risk consultant in Risk Management unit in FGB
Conducting the Risk Assessment for the information assets in the organization and suggesting the appropriative controls to address the vulnerabilities and threats
Conducting the internal process Risk Assessment to find the High and Critical risks in the processes and evaluate the current controls in the organization
Reviewing the current processes in the bank and highlighting the gaps in the process to enhance the security posture with in the organization.
Involved in creating and implementing the Computer Security Incident Response (CISRT) in the organization
Involved in NESA Audit in the organization and prepared the necessary documents for the audit.
Knowledge in Digital computer forensic investigation.
Following the ISO 27001 standards and aligning the process to ISO standard and reviewing the gaps in the process.
Involved in the ISO 27001 audits and preparing the required documents for the audit
Conducting the FGB Bank Branch review and evaluating the employee security awareness and providing the report to management about the audit finding
Analyzing the correlated events from SIEM ArcSight 6.8 and co-ordinating with the infrastructure team to fix the risks
Administrating ArcSight and creating rules, active channels, installing connectors, integrating the devices with SIEM to monitor the logs and investigating the incidents.
Upgrading the Arcsight ESM and Logger to the latest versions.
Manging off shore soc team and providing required training to handle day to day activities.
Handling fire-eye for advanced threats and protecting the bank infrastructure from being effected with malware
Knowledge in integrant different flavor of devices to ArcSight such as Windows, Linux, Unix, DataBases and Network devices
Analyzing the firewall rules through Algosec and identifying the risks associated with the over privileged rules.
Creating Baselines based on NIST secuirty guidelines for all the Bank infrastructure devices (firewalls, Routers, OS, applications, etc.) to maintain the information security through out the organization.
Analyzing the weaknesses and vulnerabilities through Nesus Vulnerability scans in the network devices like firewall and routers and involving the network team to push the required patches to fix the weakness in the system.
➢ A Total of 6.5 years of promising work experience in the IT network infrastructure, Information Security and Network security domains.
1) Network and Security Engineer (SOC) in Etisalat Telecommunications, Dubai
Duration: Sep 2012 to Till the date
Client: Etisalat Dubai
Job Roles and responsibilities:
• Working as a Network and Security Engineer to analyze the security logs and identify the critical logs
• Managing the security devices such as Firewalls, IPS, IDS and SSL devices
• Handling the security incidents and mitigate the attacks from outside to UAE
• Performing the VA through Qualysis Guard and fixing the threats
• Fetching the logs from Arc Sight and analyzing the attacks and vulnerabilities in the network
• Configuring and managing firewall policies on Cisco ASA 5550, PIX Juniper Netscreen, SRX and M-series Routers, Fortigate 3810A, 4008 and 600c
• Managing VPN - Site to Site, remote VPN on ASA and SSL VPN on Fortigate
• Monitoring and mitigating the attacks through Arbor
• Working on the multivendor network security platform - Cisco, Juniper, Fortigate
• Preparing monthly reports from SOC and submitting them to Management
• Monitoring the IPS and IDS devices for any intrusion in the network - HP Tipping Point and IBM Site Protector and ARBOR for DDOS mitigation
• Working in access management for the network infrastructure.
• Providing the weekly reports to senior management
• Performing RCA for the long term issues and involving in Problem management
• Providing the technical and process training to new hires
• Following the ITIL process for incident and problem management.
➢ A Total of 6.5 years of promising work experience in the IT network infrastructure, Information Security and Network security domains.
1) Network and Security Engineer (SOC) in Etisalat Telecommunications, Dubai
Duration: Sep 2012 to Till the date
Client: Etisalat Dubai
Job Roles and responsibilities:
• Working as a Network and Security Engineer to analyze the security logs and identify the critical logs
• Managing the security devices such as Firewalls, IPS, IDS and SSL devices
• Handling the security incidents and mitigate the attacks from outside to UAE
• Performing the VA through Qualysis Guard and fixing the threats
• Fetching the logs from Arc Sight and analyzing the attacks and vulnerabilities in the network
• Configuring and managing firewall policies on Cisco ASA 5550, PIX Juniper Netscreen, SRX and M-series Routers, Fortigate 3810A, 4008 and 600c
• Managing VPN - Site to Site, remote VPN on ASA and SSL VPN on Fortigate
• Monitoring and mitigating the attacks through Arbor
• Working on the multivendor network security platform - Cisco, Juniper, Fortigate
• Preparing monthly reports from SOC and submitting them to Management
• Monitoring the IPS and IDS devices for any intrusion in the network - HP Tipping Point and IBM Site Protector and ARBOR for DDOS mitigation
• Working in access management for the network infrastructure.
• Providing the weekly reports to senior management
• Performing RCA for the long term issues and involving in Problem management
• Providing the technical and process training to new hires
• Following the ITIL process for incident and problem management.
2) Consultant in Ciber Sites India Pvt. Ltd.
Duration: Jun 2010 to Jul 2012
Clients: Giant in Logistic and Financial Domain
Job Roles and responsibilities:
• Expertise with network devices like Routers, Switches, IPS & ASA
1. Routers Models 1700, 1800, 2500, 2600 & 3600
2. Catalyst Switches 1900, 2900, 3550, & 3560
3. Firewall Models 5510 & 5520 and 5550 & IPS
• Worked on configuring and troubleshooting routing protocols like EIGRP and
OSPF
• Handled VLAN, VTP, STP, Private VLAN, 802.1x, HSRP and port security
• Worked on NAT, PAT & ACLs configuration on ASA and Routers
• Expertise on VPN technologies: Site-to-Site VPN, Remote access VPN
• Worked on Identity management: AAA - TACACS+ and ACS
• Monitoring tools: Spectrum, State Seeker, E-health and WAN accelerator.
• Knowledge on Load balancer Radware Alteon and Big IP
• Providing the basic design and implementing the new devices for new clients
• Knowledge in CISSP domains and applying it for IT infrastructure security Management.
• Worked on the ITIL process in handling incidents, Problems and Changes.
• Expertized in Incident Management, Problem Management and Change Management.
• Experienced in conducting the change approval process and part the CAB (change approval board) for the change management process.
• Trained the new hire team members on network technologies
• Conducted training on network concepts like Routing, Switching and firewall configuration and troubleshooting.
• Kept eagle eye on the Quality parameters and frequently guided the team to meet all the metrics.
• Mentored the team and fine-tuned the process. Maintained Known error database.
• Frequently analyzed the tickets and escalate them to the appropriate external teams whenever required.
• Conducted the team meetings with onsite teams for process updates twice a week.
5) Technical Support offer in HCL.
➢ Duration: JAN 2007 to APR 2008
Client: Major Telecom services provider in the world
Job Roles and responsibilities:
• Troubleshooting issues related to broadband and internet
• Experienced on tools like Resolve, WOOSH and Siebel CRM
• Handled customer broadband issues and escalating the issues to next level teams in order to fix the issues
• Experienced in ISP consumer broadband technologies and troubleshooting
• Worked as escalation engineer with in the team for the critical issues.
• Coordinate between technical team and engineering team for site visits
• Managed team of four new hires and provided the process training
• Driving the customer satisfaction and high first call resolution rate
• Awarded as best support executive for 3 times
➢ A Total of 6.5 years of promising work experience in the IT network infrastructure, Information Security and Network security domains.
1) Network and Security Engineer (SOC) in Etisalat Telecommunications, Dubai
Duration: Sep 2012 to Till the date
Client: Etisalat Dubai
Job Roles and responsibilities:
• Working as a Network and Security Engineer to analyze the security logs and identify the critical logs
• Managing the security devices such as Firewalls, IPS, IDS and SSL devices
• Handling the security incidents and mitigate the attacks from outside to UAE
• Performing the VA through Qualysis Guard and fixing the threats
• Fetching the logs from Arc Sight and analyzing the attacks and vulnerabilities in the network
• Configuring and managing firewall policies on Cisco ASA 5550, PIX Juniper Netscreen, SRX and M-series Routers, Fortigate 3810A, 4008 and 600c
• Managing VPN - Site to Site, remote VPN on ASA and SSL VPN on Fortigate
• Monitoring and mitigating the attacks through Arbor
• Working on the multivendor network security platform - Cisco, Juniper, Fortigate
• Preparing monthly reports from SOC and submitting them to Management
• Monitoring the IPS and IDS devices for any intrusion in the network - HP Tipping Point and IBM Site Protector and ARBOR for DDOS mitigation
• Working in access management for the network infrastructure.
• Providing the weekly reports to senior management
• Performing RCA for the long term issues and involving in Problem management
• Providing the technical and process training to new hires
• Following the ITIL process for incident and problem management.
2) Consultant in Ciber Sites India Pvt. Ltd.
Duration: Jun 2010 to Jul 2012
Clients: Giant in Logistic and Financial Domain
Job Roles and responsibilities:
• Expertise with network devices like Routers, Switches, IPS & ASA
1. Routers Models 1700, 1800, 2500, 2600 & 3600
2. Catalyst Switches 1900, 2900, 3550, & 3560
3. Firewall Models 5510 & 5520 and 5550 & IPS
• Worked on configuring and troubleshooting routing protocols like EIGRP and
OSPF
• Handled VLAN, VTP, STP, Private VLAN, 802.1x, HSRP and port security
• Worked on NAT, PAT & ACLs configuration on ASA and Routers
• Expertise on VPN technologies: Site-to-Site VPN, Remote access VPN
• Worked on Identity management: AAA - TACACS+ and ACS
• Monitoring tools: Spectrum, State Seeker, E-health and WAN accelerator.
• Knowledge on Load balancer Radware Alteon and Big IP
• Providing the basic design and implementing the new devices for new clients
• Knowledge in CISSP domains and applying it for IT infrastructure security Management.
• Worked on the ITIL process in handling incidents, Problems and Changes.
• Expertized in Incident Management, Problem Management and Change Management.
• Experienced in conducting the change approval process and part the CAB (change approval board) for the change management process.
• Trained the new hire team members on network technologies
• Conducted training on network concepts like Routing, Switching and firewall configuration and troubleshooting.
• Kept eagle eye on the Quality parameters and frequently guided the team to meet all the metrics.
• Mentored the team and fine-tuned the process. Maintained Known error database.
• Frequently analyzed the tickets and escalate them to the appropriate external teams whenever required.
• Conducted the team meetings with onsite teams for process updates twice a week.
3) Senior Technical support Analyst IBM Ind. Pvt. Ltd.
➢ Duration: Feb 2009 to 19 Mar 2010
Client: One of the known names in Telecom domain in the world
Job Roles and responsibilities:
• Escalating the alerts to the L2 network team
• Worked on Site-Site and remote VPN
• Experienced in RSA token Synchronization and Blackberry support
• Followed ITIL process for handlings the issues
• Worked on incident and problem management.
• Awarded as best support executive for 3 times
• Worked as mentor for a team of new hires, Also Given training to the new hires about the project and technical process through MS Power point.
• Handling the escalation calls on priority issues with network and infrastructure.
• Supported the new employees to learn the process as a daily routine to ensure they learn and understand the core values of the process.
• Analyzing the quality reports of the support engineers and analyzing the skill gaps of the technicians. Providing the necessary trainings to overcome the skill gap monthly once.
• Worked as second level of escalation with in the team
• Managed and monitored the team activities during the absence of Team lead, leaded and managed team of twenty to ensure the process is followed with no errors.
• Experienced in Incident and Problem management
• Worked on problem and used to provide the RCA (Root Cause Analysis)
• Worked on ticketing system BMC remedy and Vantive
Course Institute Board MSc Ponnaiah Ramajayam College (PRC), Thanjavur Bharathidasan University
BSc Bhavan Vivekananda Degree Collge, Hyderabad Osamania University
Intermediate Siddartha College, Vijayawada Intermediate Board, Andhra pradesh
SSC SRYSP School, Challapalli SSC board, Andra pradesh