• Determined security measures best suited for the type of information; and explaining the security measures taken to employers using non-technical language.• Protected sensitive or personal information from unauthorized access or use: Identifying potential security risks; designing strategies and defensive systems against intruders; monitoring systems for unusual activities (e.g. unauthorized access, modification, duplication, or destruction of information); running counteractive protocols and reporting incidents.• Prepared and provided with metrics, reports and dashboards related to IT security, risk and compliance for senior management and external stakeholders.• Provided metrics and reports to show health, performance and value of all security operations tools.• Ran diagnostics on information changes to check for undetected breaches that may have occurred.• Supported the development, implementation and maintenance of the Security Operations strategy, policies and processes.• Planned and supported internal security operations staff; created development plans and manage staff performance in accordance to the organization's performance management framework; provided coaching and mentoring to staff.• Tracked remediation of non-compliance with security configuration hardening standards to closure.• Coordinated and supervised the investigation, communication, documentation, and resolution of Information Security incidents and forensic investigation activities; assessed and remediated incidents including driving root cause analysis and correction.• Established and/or maintained project plans with clear tasks and delivery dates. Used agile disciplines and processes, as necessary, to ensure successful execution of security-related projects. When required, coordinate and work with agile teams to manage complex projects and deliver security objectives.• Provided awareness activities pertaining to the security operations capabilities and practices.

• Developed IT Security Governance structure to reduce risks in business processes, enhance information security, and comply with regulatory requirements. • Coordinate teams of internal and external subject matter experts to reach feasible security solutions for complex problems and issues across the IT Department.• Cylanceo Build policies on end point protection Cylance as per requirements/to strengthen the CSA security posture.o Unblocking the quarantined items/adding exclusion lists as required for business operations on request and monitored for all blocked content to avoid any security incidentso Pull reports to represent security effectiveness to CIO and senior management• SIEMo Monitored and set up Alienvault, agent installation on all crucial servers.o Integrated firewall, syslog, end point protection, IPS logs in to AVo Setting up alerts and made correlation directives in order to build custom alerts to strengthen the security posture. alerts were set up around – XSS, DDOS attack, Web attack, SQL injection attacks detected against DST_IP, Bruteforce attack, login authentication attack against DST_IP• UEBAo Netskope – built various policies for PII, suspicious logins and on user behavior etco Data analysis for any suspicious/odd activity by employees and took appropriate steps to prevent any security incident.• Firewallso Implemented the Policy Rules, DMZ on palo alto firewallso Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.o Implemented IPS, DLP and UTM features on the firewall for added security purposes.o Authored policy, support documentation, and best practices for the CSA security architecture.o Researched and documented security recommendations and outline a roadmap for implementation.• Prepared written report for Executives/Stakeholders that explained the vulnerabilities and provided recommendation for mitigation.• Managed and monitored MS EOP to provide email security.

• Provided high level analysis using multiple SIEMs (Splunk, HP Arcsight, RSA envision & Security Analytics, McAfee ESM, IBM Security QRadar, Palo Alto Panorama, Sumo Logic), IPS (McAfee NSM), Firewall (Palo Alto Networks) on secure data to identify significant activity.• Developed coordinated, implemented and maintained standards and procedures to protect the security and integrity of information systems and data and Escalating security events from appliances to customers within SLA and SLO.• Observed and analyzed traffic in order to learn valuable lessons from known malicious actors and to determine countermeasures against such threats.• Provided detailed status updates on existing cyber security incidents daily to include follow up with client/customer to ensure satisfactory resolution.• Interacted with cyber intelligence analysts conducting threat analysis operations as well as numerous IT professionals performing varying technical roles within the client organization.• Conveyed verbal briefings to management on pending cyber incidents as well as coordinate with vendors as necessary to convey incident information.• Acted as alternate shift lead as necessary, mentor new associates on process and procedure, manage group mailbox, and open tickets for new incidents.• Monitoring security patch levels of the servers, workstations and network environments, and anti-virus systems.

 Handled and escalated calls efficiently and provided level 1&2 Technical support to end users. Provided customer and technical support in case of any query or technical problem. Analyzing the problem and perform the necessary troubleshooting in the sequence of steps devised for the solution. Creating case documents in CRM. Categories of issues resolved :-1. Operating system and third party software installation issues2. Printing problems and Wireless client connectivity issues3. DNS problems and IP address problems4. application server issues and Incorrect VLAN assignment5. Duplex mismatch6. Slow application performance and Anti-virus issues7. Other hardware peripherals issues (Cameras, I-phone sync issues, scanners).

• Lead a drive test team collecting continuous wave path loss data using calibrated receivers, range tested antennas and consistent equipment configurations for Propagation model Calibration.• Provided test strategies and test plans for evaluating hardware durability and performance.• Designed an Intra-building RF Antenna network and to minimize the Interference.