Handled engineering responsibilities for the following functions and features:• ADsecure : The solution inserts deceptions to counter the AD attack by replying with deceptive data, hiding the privileged credentials, and altering real credentials values. This interception includes engagement of the activities into the deception environment where the system safely studies the attack and collects threat intelligence.• Real-time detection of internal and external threat actors conducting reconnaissance, scanning to identify potential targets or moving laterally.• Deceive and redirect attackers trying to infect endpoints, servers/VMs with decoys, deception credentials, and other deception lures.• Malware Analysis on the Deception Platform o Detection of lateral movement by the malware o C&C activity o Memory forensics to identify in-memory activities by the malware o Yara Signatures for classifying the malware family• Detection of Ransomware attacks on endpoints• Routed network deployment support on Deception Platform to detect attackers landing on Darknets• Detection of Man-in-the-Middle attacks that exploit NBNS, LLMNR, Mdns & ARP • Active Directory Deception and Endpoint Deception• Identify and Understand the Methods and Intent of Hackers behaviours

1) NSP-Network Security Platform (IPS/IDS)o To conduct testing on Signature-Based Detection, Statistical anomaly-based detection, Stateful Protocol Analysis Detection and Malware.o Lead a team technically to validate Signature and snort rule.o Point of contact for DOS/DDOS testing.o Responsible for application security testing in IPS/IDS.o Point of contact for performance, latency and system testing.o Create a tool to test false-positive of IPS/IDS.o To conduct attack coverage testing with IXIA Braking Point and Spirent Mu-dynamic.2) Next-Generation-IPS and Firewallo Responsible for network layer or packet filters testing.o Point of contact for State-full and State-less firewall testing.o To conduct testing application firewall testing.o Validated Routing stack from different vendor (Aricent, IP Infusion, 6windGate) to integrate with NGIPS/NGFW.o Point of contact for router testing in NGIPS/NGFW.

ACS – Cisco Secure Access Control Server (AAA)To conduct security testing of RADIUS, TACACS+ protocolsResponsible for NAC (Network Admission Control) implementation / testing.To conduct vulnerability assessment testing of all EAP flavor (PEAP, EAP-FAST, EAP- TLS)Created multi-forest domain controllers to identify vulnerability in ACS.Responsible for planning / estimation / management / testing CISCO SECURE ACS Q/A ( Major / Minor / Patch Release )Wrote scripts for GUI automation using Win Runner to test ACS.Wrote exploit scripts for API automation using JAVA (Aidan) to test ACS.Create a tool using JAVA to identify vulnerability of ACS.

• Developed a secure chat communication application with 128-bit encryption between one-to-one or one-to-many.• Initiated secure coding practices & wrote exploit scripts to uncover design & code flaws. Perform Technical Security and Vulnerabilities assessment on the network and operating systems.• Developed a patch updating software for the network and operating system to upgrade to the latest patch and antivirus software.• Perform internal and external vulnerability testing for the applications developed• Performed Web application security testing.