• Creating and managing security strategies.• Provide information security awareness training to organization personnel.• Oversee information security audits, whether by performed by organization or third-party personnel.• Manage security team members and all other information security personnel.• Provide training to information security personnel during on boarding.• Evaluate department budget and costs associated with technological training.• Assess current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement.• Implement and oversee technological upgrades, improvements and major changes to the information security environment.• Serve as a focal point of contact for the information security team and the customer or organization.• Manage and configure physical security, disaster recovery and data backup systems.• Communicate information security goals and new programs effectively with other department managers within the organization.

• Responsible for providing operational and strategic direction for Automation, SOC-SIEM, CLMS, PT, Vulnerability & Security, Security Patch, Risk, Audit and compliance.• Responsible to design, implement and manage security solutions. • Support the team who are investigating security incidents, performing RCA and provide recommendation for appropriate remediation actions.• Responsible for application automation, designing, and testing, that is the final stage of any software development or change request lifecycle before go-live.• Monitor internal and external policy compliance and to develop Information security compliance frameworks, security policies and procedures, where necessary.• Work with business, internal IT and 3rd party vendor teams to promote and adopt security best practices.• Review of Security Policies, Procedures and Practices. Evaluation of current security processes in relation to ISO 27001:2013 standards, industry best practices and business objectives.• Perform hands-on gap or risk assessments to identify significant information security risks (including applications, systems, data canters, and infrastructure and vendor security risk assessments) to determine the organizational risk posture. • Successful implementation of Access management process – shared / Local / Privilege / Services account id• Successful implementation of the Automation of the Security Health Check Program. • Implement the Security Risk Assessment methodology, policy, and process. Ensure proper treatment of reported information security risks by reviewing risk mitigation plans, following up on risk mitigation activities, and escalating non-mitigated risks.• Develop and maintain Vulnerability management framework including definition of periodic schedule and procedures to perform security assessments for applications and infrastructure with remediation timelines.

Provides subject matter expertise in the creation, implementation, and maintenance of appropriate enterprise programs, policies, and procedures to be compliant with all applicable ISO 27001 Standards.Information Security, Governance, Risk Management, and Compliance (GRC) services Provided: IT risk and control self-assessment.Business impact analysis; Develop risk mitigation and correction action plans; Document and track risk and mitigation efforts.Risk identification and mitigation of Shared Id password change managementMaintaining Risk Register and addressing the Risk with the client Proposing the Risk mitigation methods as per the agreed client agreementAnalyze business processes and develop process improvement plan; Contract monitoring and vendor risk assessments.Implement a governance framework; Develop policies, standards, and procedures to comply with organizational, regulatory and industry requirements.Security awareness training; Specialized training for technical staff and executives.Troubleshooting and problem resolution.Ensure compliance through adequate training programs and periodic security audits. Accurately identifying the appropriate securities values related to the banking domains as global practices.

Responsible for Shift Lead, so I manage a team of approx. 35 resources who are responsible for the task assigned. Therefore, I focused the team on the tasks at hand or the internal and external customer requirements. As a senior resource, I worked onto high priority tickets and problem tickets and thus I assume my personal responsibility for the resolving problems in most effective way and meeting SLA for RCA submission. Most of the times I need to review PIR (Post Implementation Review) for P1 and P2 tickets, and my involvement to check RFC for the technical implementation steps for a Change request which is prepared by L2 resources. Special Task given & Achievements: Successfully Migration of Physical environment to Virtual in VM 5.0. Successfully Migration of VMware 5.0 to VMware 5.5. Successfully Migration of Windows 2008 R2 AD domain to Windows 2012 AD domain. Successfully Migration of patching environment for WSUS 3.0 SP1 to WSUS 3.0 SP2 including Upstream and Replica along with for 80000 clients. Reward and appreciations.

Managed approx. 2000 Physical and Virtual Servers; where the Virtual Servers are managed through Virtual Center, and the physical servers are managed by ILO Console, if ILO is not working then we need to co-ordinate with remote hands & feet team or the local IT support for problem resolution. If the server is reachable then I work on ticket incident, change or SR. If the issue is impacting more than 100 users, then we need to work on high priority ticket P1 or P2. I had been assigned to perform day to day support on the servers like administration, housekeeping, maintenance, upgrade of OS, supporting Hardware problems co-ordination with Vendors and to look after all servers like Windows 2003/2008 Active Directory servers, VMware, DNS, DHCP servers, Cluster Servers, Citrix Farm and XenApp 6.0 Servers, McAfee Antivirus, print servers, and the prime responsibility for WSUS SP2 patching servers.

Responsibility was to look after all Servers like Windows 2003/2008 Active Directory Servers, DNS, Symantec AV server, WSUS 3.0, Print Server, SQUID Proxy, and DHCP servers, that had been assigned to me as my major activities. Apart from these activities I was also responsible for L3 Switch (Nortel) VLAN setup, Wi-Fi for different building networks &  provided team leadership and coaching. Lotus Domino servers and its backup scheduled through VERITAS Net-Backup 6.5, Focus the team on the tasks at hand or the internal and external customer requirements. Coordinate team logistics. Communicate team status, task accomplishment, and direction. I managed a team of 20 engineers who are responsible for managing user complaints and educating the users with upcoming upgradation and changes in user’s software. I was also responsible for maintenance and upkeep of their range of PC’s and related peripherals. Local area Network management (which includes 15 3com, 5 Cisco 1900 series switches, 25 Access Point for Wireless, 1 layer-3 module and Cisco 2500 series routers. The Active Directory for user profile management. Analyze Security Proxy logs & generate weekly report and to represent it before management. Special Task given & Achievements: Successfully Migration, installation, and configuration of complete IT infrastructure Servers & LAN & WAN. Data Center Upgradation of Hardware & Software. Successfully Migration of Windows XP to Windows 7 clients. Successfully Migration of Windows 2003 AD domain to Windows 2008 AD domain.

Responsible for Maintaining and troubleshooting the network infrastructure, Managing and troubleshooting Active Directory, User rights management and access control, Remote Access and Terminal Services Client, Installation of Windows 98, XP, 2000, 2003 using (RIS, Un-attend, normal), Maintaining and troubleshooting the Hardware problems, Assembling, Format and partitioning the disk basic and dynamic(like RAID-5, Mirroring and others), Installing and configuring different type of network and local printers, etc.Special Task given & Achievements:--Successful installation and configuration of complete IT infrastructure Servers & LAN & WAN.