● Responsible for Infrastructure, datacenter Servers, endpoint devices vulnerability Scanning and vulnerability reporting through Rapid 7 in the different campaigns and adhoc request for the subsidiary.● Performing security analysis and identifying possible vulnerabilities in the key derivation function.● Vulnerability Assessment report detailing exposures that were identified, rate the severity of the system & suggestions to mitigate any exposures & testing known vulnerabilities.● Responsible for creating new scan policies for windows through Rapid 7● Vulnerability scan remediation for all the scans conducted with an effective remediation to 97%● Creating policies, Monitoring, blocking and resolving false positives of daily incidents on symantec DLP.● Responsible for 3rd party risk assessment through security scorecard with improving and maintaining the score to more than 95● Tracking and remediating 80% endpoint detection vulnerabilities and spotlight vulnerabilities● Monitoring daily incidents, scanning and remediating Malware Bytes through crowdstrike● Responsible for regulating patch management to Microsoft vulnerabilities on Windows devices through SCCM● Work with the IT teams to allow and upgrade the approved list ofapplications on the workstation using Beyond trust● Identify and resolve false positive findings in infrastructure scan using FortiSiem.Admin and lead of 5 campaigns (phishing and compliance) through Knowbe4 for the organization with more than 85% industry score.

● Worked on Qualys 7.4 for Vulnerability scanning of Apple Servers, Apple application, routers and firewalls, different protocols, devices and Applications.● Monitored and remediating vulnerabilities constantly through the dashboard by running the reports weekly and bi-weekly● Configured vulnerability scans, tailored to specific client requirements● Identify and classify Cyber security vulnerabilities and work onmitigation plans with system owners, ensure plans are documented,understood and track the results of the plan execution● Worked on as many as 250K vulnerabilities in a single campaign● Identify and resolve any false positive findings in assessment resultsusing Splunk● Conducted Vulnerability scan to meet common information technologymanagement frameworks such as NIST, PCI-DSS, ISO 270002● Maintained inventory of hardware items and software licenses.

● Directed research pertaining to the latest vulnerabilities, tools and the latest technological advances in combating unauthorized access to information● Perform infra Vulnerability scans using Nessus tool● Understood approaches for addressing vulnerabilities including systempatching, deployment of specialized controls, code or infrastructure changes, changes in development processes, cloud and mobile devices Identified and resolved any false positive findings in assessment results● Worked with computer operations to define standard operating system builds and configurations and develop effective build maintenance processes.

● Installation and configuration of operating system, software and patches● Managed firewall, network monitoring and server monitoring● Configured user mailboxes to their handheld devices● Performed regular health checks on hardware and software bymonitoring the system● Drafted monthly reports of network efficiency to determine if anychanges were needed● Experienced in Account creation, Password reset, the addition of user'sattributes using Active Directory● Created and managed MS Outlook mailbox for the employees usingMicrosoft Exchange Server 2010● Monitored incident and service request tickets assigned to IT Securityqueue using HPSC ticketing tool● Assessing security tickets and determining the appropriate operationaland investigative steps required to address the security concerns.