Skillful and multitalented person, having excellent experience in design, implementation, administration of Information Technology products. I am an expert in troubleshooting of network issues and incident response handling as well as maintaining the existing IT infrastructure in a secure manner. I have extensive experience in network and information security and have achieved many security certifications.
Conducting POCs and deployments of Fortinet products.
Conducting presentations, POCs and deployments of SIEM solutions like Splunk and McAfee ESM.
Conducting deployment and POCs of products like SolarWinds and PRTG.
Hands on experience on NIDS tools like Snort and Zeek.
Performing vulnerability assessment using tools like Tenable Nessus and Nikto and OpenVAS.
Performing penetration testing with tools like Metasploit and Kali Linux.
Conducting POCs of vulnerability management tools like Rapid7 InsightVM and Qualys VM.
Extensive study of NIST Guidelines (800-30, 800-37, 800-53).
Conducting security awareness trainings for customers.
Managing team of 3 employees.
Managing and delivering projects.
Performed vulnerability scans and Full Knowledge penetration testing on periodic basis.
Timely applied patches on all network devices.
Actively participated and assisted IT Director in PCI-DSS compliance activity.
Effectively minimized the risk of security breaches by hardening configurations of firewalls, switches and other network devices.
Provided security awareness training to multiple groups of employees.
Established high availability by deploying Fatpipe load Balancer, configuring failover ISP links and redundant site to site VPNs.
Secured all inter-branch communication by creating site to site IPsec VPNs.
Performed access review audits and user entitlement audits on regular basis.
Created Remote Access Policy and developed Access Control Matrix accordingly to streamline remote VPN user account provisioning.
Performed Privilege Account Review periodically, specially to minimize the risk of grudge attacks from disgruntled employees.
Applied new monitoring techniques like sampling and clipping to ease the process of log analysis.
Performed duties professionally in Computer Incident Response Team(CIRT) by following NIST SP-800-61 guidelines.
Developed Acceptable Use Policy for all web activity. Furthermore, implemented and diligently monitored this policy on Barracuda Web Filter.
Reduced malware related risks by implementing application blacklisting technique and limiting users’ privileges.
Developed Segregation of duties control matrix to avoid potential areas of conflict between different administrator roles.
Took scheduled backups of network devices and ensured its proper storage. Additionally, regularly tested backups for critical network devices.
Extensively documented all network related configurations to assist in change and configuration management process.
Created inventory of all IT infrastructure and implemented Barcode tagging.
Updated and redesigned all IT infrastructure diagrams that effectively improved the problem troubleshooting and incident handling processes.
Deployed and managed Splunk SIEM solution.
Developed, implemented and tested Disaster recovery plan for IT infrastructure.
Ensured pre Installation site surveys.
Demonstrate Proof of Concept (POC) with clients.
Gathered requirements, HLD and defines scope of work.
Prepared detailed LLD, JCC, PIP and PAT documents.
Performed installation & commissioning of network equipment
as per customers’ requirements.
Handled customer complaints efficiently and resolve them by
diagnosing and troubleshooting.
Conducted product trainings for customers.
Managed various projects from initiation to closure.
Led the team of two members.
Detailed session training to the customer on project completion
Conducted network surveys.
Gathered client's requirements and design network solutions.
Supervised passive deployments.
Deployed and commissioned network equipment.
Effective team management and timely coordination.
Preformed project related documentation.