• Leading IT service line Working as IT head for all Cyber security, Internal and Statutory audits• Application Security and Penetration Testing using OWASP and CVE standards• Vulnerability Assessment, Web server Configuration audit.• Security Code review, Black box, White box testing• IFC/ ICOFR IT audits, Hyperion audits, HIPPA compliance.• SSAE 16, SSAE 18 using SOC type 1, type 2 reports• PLC, SCADA, Industrial control system security using IEC 62443• Oracle… Show more • Leading IT service line Working as IT head for all Cyber security, Internal and Statutory audits• Application Security and Penetration Testing using OWASP and CVE standards• Vulnerability Assessment, Web server Configuration audit.• Security Code review, Black box, White box testing• IFC/ ICOFR IT audits, Hyperion audits, HIPPA compliance.• SSAE 16, SSAE 18 using SOC type 1, type 2 reports• PLC, SCADA, Industrial control system security using IEC 62443• Oracle Master data management audit.• Honeywell, ABB Industrial control security system, IIoT. Industry 4.0.• Software Licensing Gap Analysis, Cyber threat management• Supporting domain like BFSI sector, Aviation, Shipping, Media, Manufacturing, NBFC etc. Show less

• Design and implement of Secured Network architecture.• Amazon AWS and Microsoft Azure Cloud Security• IT Delivery and Security operations for CG owned data centers globally• SOC (Security operation Centre)- Arc Sight and Qradar SIEM tool• Managing NOC with F5 WAF (Web application firewall), IPS, Bluecoat, Citrix Netscaler.• ISO 27000 Audit, GDPR, Data Privacy and Data protection standards• SAP Security with ONAPSIS, Virtual forge. • Manufacturing Execution Systems… Show more • Design and implement of Secured Network architecture.• Amazon AWS and Microsoft Azure Cloud Security• IT Delivery and Security operations for CG owned data centers globally• SOC (Security operation Centre)- Arc Sight and Qradar SIEM tool• Managing NOC with F5 WAF (Web application firewall), IPS, Bluecoat, Citrix Netscaler.• ISO 27000 Audit, GDPR, Data Privacy and Data protection standards• SAP Security with ONAPSIS, Virtual forge. • Manufacturing Execution Systems (MES)• Take participation in discussion with client’s CISO, CIO & Business Heads• IT processes in full compliance with Agile, A3/ Lean framework Show less

• Enforce well-integrated application structures in compliance with Payment Card Industry – Data Security Standards (PCI DSS) . ISO 27001, SOC 2 TYPE II standard• Review secured Network architecture, Vulnerability assessment, Penetration testing, Application security test using ethical hacking.• Cyber security , Cyber threat management.• Code reviews , OWASP standards for AppSec.• Carrying out Third party ISO Audits & giving solution to mitigate risk.• Review BCP plan… Show more • Enforce well-integrated application structures in compliance with Payment Card Industry – Data Security Standards (PCI DSS) . ISO 27001, SOC 2 TYPE II standard• Review secured Network architecture, Vulnerability assessment, Penetration testing, Application security test using ethical hacking.• Cyber security , Cyber threat management.• Code reviews , OWASP standards for AppSec.• Carrying out Third party ISO Audits & giving solution to mitigate risk.• Review BCP plan ,Crisis Management process and recovery Plan • Risk assessment & provide solutions to mitigate them• Conducted security offerings and awareness programs for clients’ Top Management• Implementation work for new clients in secured network architecture. Show less

• Geo political risk management.• Ensure information assurance by transmitting data securely between all international airports.• Designing and configuring Data center, Secured network infrastructure.• Managing VA/AppSec/Penetration testing• Implementation & maintenance for Global network infrastructure at all international airports.• ArcSight SIEM tool correlating security events to identify and respond to threats.• Integration of Checkpoint NGX R62-A with remote sites… Show more • Geo political risk management.• Ensure information assurance by transmitting data securely between all international airports.• Designing and configuring Data center, Secured network infrastructure.• Managing VA/AppSec/Penetration testing• Implementation & maintenance for Global network infrastructure at all international airports.• ArcSight SIEM tool correlating security events to identify and respond to threats.• Integration of Checkpoint NGX R62-A with remote sites & Juniper, PIX interoperable devices.• Network Firewalls, WAF, IPS, Routers and Switches.• Avionics with Boeing 737 , Boeing 777, Airbus 320 cockpit AIMS Show less

• Information Security using ISO 27K standards , Cyber Security in avionics for Boeing and Airbus• SIEM implementation for critical security alerts• Creation & implementation of security policies for organization in conjunction with domestic and international airport authorities , Government civil aviation departments.• Configuring ,Troubleshooting on Cisco 3845,2600,2800 series routers• Firewall: Configuration, implementation on Check point R55, PIX 515E• IBM-Tivoli… Show more • Information Security using ISO 27K standards , Cyber Security in avionics for Boeing and Airbus• SIEM implementation for critical security alerts• Creation & implementation of security policies for organization in conjunction with domestic and international airport authorities , Government civil aviation departments.• Configuring ,Troubleshooting on Cisco 3845,2600,2800 series routers• Firewall: Configuration, implementation on Check point R55, PIX 515E• IBM-Tivoli integrated with GSM SMS application gateways for various events management• Implementation & troubleshooting Cisco ,Nortel ,HP Procurve L3 Switches• Configuring & Implementing Cisco Wi-Fi Routers for wireless check-in counters on Airports all over the India& All across the globe• Using VoIP ALCATEL AUXO for connecting Airports all across globe• Firewall & IPS: Sonic wall, Fortigate Show less

• Enforce IT processes to ensure well-integrated application structures in full compliance with Payment Card Industry – Data Security Standards (PCI DSS) .• Review secured Network architecture, Vulnerability assessment, Penetration testing, Application security test using ethical hacking.• Cyber security , Cyber threat management.• Code reviews , OWASP standards for AppSec.• Carrying out Third party ISO Audits & giving solution to mitigate risk.• Review BCP plan ,Crisis… Show more • Enforce IT processes to ensure well-integrated application structures in full compliance with Payment Card Industry – Data Security Standards (PCI DSS) .• Review secured Network architecture, Vulnerability assessment, Penetration testing, Application security test using ethical hacking.• Cyber security , Cyber threat management.• Code reviews , OWASP standards for AppSec.• Carrying out Third party ISO Audits & giving solution to mitigate risk.• Review BCP plan ,Crisis Management process and recovery Plan • Risk assessment & provide solutions to mitigate them• Nessus scan , Network scan.• Conducted security offerings and awareness programs for clients’ Top Management• Implementation work for new clients in secured network architecture. Show less