• Working as Senior consultant, conducting Risk Assessment and Internal Audit for various on premise and Public Cloud (AWS) components.• Participated in the preparation and the implementation of necessary information security policies, procedures and guidelines, in conjunction with the Security Committee to get appropriate approvals and feedback.• Conducting comprehensive risk assessments in close coordination with internal and external stakeholders.• Registering identified risks in to MetricStream tool for tracking.• Assess and design internal controls by applying an understanding of internal control design frameworks and regulatory requirements.• Recommends revisions to internal audit procedures to enhance efficiency. Reviews internal controls throughout the organization by evaluating the adequacy of system controls and recommends improvements. • Conducted suitable information security awareness and training activities.• Adept in InfoSec, Information Risk Management, Audit and Compliance tasks.• Conduct risk assessments and audits and drive risk treatments, and support external audits around information security, business continuity management and data privacy.• Ensure to mitigate security risks, facilitate external and client audits and respond to observations.• Assess public cloud (AWS) information security posture, identify the gaps/risks in the existing environment and suggest mitigating the identified gaps/risk.• Identify opportunities for process improvements to deliver increased operational efficiency in the processes.

- Worked on AWS cloud to set up Factory site datacenter.- Build & documented DC components in AWS environment.- Deployed Symantec AV on Linux servers- Completed assessment of 3rd party landing routes & provided solution to secure these routes.

• Took tools & technology transition from customer in phases.• Handled multiple technologies like Web Gateway, email security, siem solution, vulnerability assessment, antivirus server, cloud based end point security• Analyzing security risk in changes.• Investigate alerts generated by siem tool, email security tool, web gateway tool, and antivirus tool.• Running various vulnerability scanning & generating report.• Maintaining agreed SLA & reporting weekly to client• Training newly joined associates & giving brief of tools & project.• Weekly meeting with client for discussion of security incidents.• Discussing with client & setting up new processes. Following them & training team members to follow new processes.

• Managing resolution of the detected issues, utilizing the global resources of Global Cloud Exchange • Ensuring contracted levels of performance are achieved by the proactive surveillance, event control and escalation management of performance related incidents. • Performing Problem Management activities on a regular basis to highlight and eliminated reoccurring issues • Assisting in client installations of security devices such as Juniper , Cisco Firewalls , Blue Caot Proxy • Supporting Sr.Engineers for installations of security devices • Supporting global staff in creating and submitting CRs for Security solutions • Carry out Change Requests for security solutions • Preparing regular reporting packs for clients of security services • Discussing reporting packs with local GCX staff before it is presented to clients • Point of contact for all client queries and support requests in regards to Security devices • Administrate core Management tools for security devices

• ASA Configuration, Address Translation, Access Control Lists, Failover (Active-Active and Active-Standby), Security Contexts.• Context Based Access Control (CBAC), Zone-Based Policy Firewall (ZFW).• GRE Tunnel, IPSec, IPSec Security Protocols, IKE, Site-to-Site VPN, DMVPN, Remote Access VPN, SSL VPN, EasyVPN, GET VPN, etc• Security Protocols (RADIUS and TACACS+), Cisco ACS Configuration, Authentication Proxy, Cut through Proxy and Downloadable ACL. Identity Services Engine(ISE), 802.1x protocol• Inline Mode and Promiscuous Mode, Interface Pair, Vlan Pair etc.• Configuring and troubleshooting Static, RIP, OSPF, EIGRP, Default Route, Summarization, Authentication, Route Filtering, Distribution List, BGP Basic, Frame-Relay.• Configuring and troubleshooting VLAN, VLAN Trunk, VTP, STP, and Ether Channel, Switch Port Security, DHCP Snooping, Implementing HSRP, VRRP, GLBP.• EAP Methods, WPA/WPA-2 protocols, 802.11a b n, Lightweight Access points, Wireless Lan Controller.• Windows XP/2003/2008/Vista/7, Linux (RedHat, Ubuntu).• Basic knowledge of- ArcSight SIEM, McAfee Web Security, MS patch management server WSUS & SCCM, Websense web Security, MS SQL server 2005.

• Freshly installed McAfee EPO & database in central location• Deployed McAfee agents across 800+ branches spread across all over India.• Deployed McAfee VirusScan Enterprise (antivirus), HIPS, Device Control, Site Advisor, Rogue Sensor, Policy Auditor. Host Based NAC• Configuring policies & troubleshooting the issues for same.• Configuring & maintaining policy exceptions on request.• Training engineers on McAfee products for basic level troubleshooting.• Troubleshooting issues on phone and/or on remote.• Publishing weekly compliance report to senior authorities.• Coordinating with various zone teams in order to achieve compliance above SLA.• Alerting customer for new threats & mitigating with McAfee recommended procedures.• Generating various reports in EPO • Removing viruses from infected systems.• Logging cases with McAfee Support for issues & getting it solved as earliest.• Auditing EPO & its product policies at various customer places & recommending with best practices.• Mitigating virus attacks in network with help of tools like McAfee VirusScan command line scanner, WireShark, Netstat, GetSusp, Stinger, Processmon, HijackThis etc. Also submitting sample files to McAfee support for further analysis.• Delivered POC of product McAfee VirusScan Enterprise for Linux.Basic level support for Symantec Endpoint Support & Trend Micro OfficeScan.• Reviewed & suggested policy changes in existing EPO.• Increased compliance level to acceptable level.• Testing different McAfee products before deploying or upgrading patches.• Backing up EPO files & MS Sql database as per standard procedure of McAfee.• Mass deployment of McAfee products with EPO inbuilt automation process.• Logging cases in McAfee support for issues.• Successfully completed project of changing IP address of EPO.• Successfully completed project of EPO patch upgrade.• Purging unwanted logs from EPO & from MS sql server.

Looking for Network perimeter security as well as networking devices security. Working on Cisco ASA 5510 & Cisco NAC 3315