Strategic Leadership: Spearheading the strategic direction of Information Security operations as the Chief Operating Officer (COO) at a Managed Security Services Provider (MSSP) i6secsolutions https://Isix.aiOperational Excellence: Driving operational excellence in MSSP functions to ensure the highest standards of cybersecurity services delivery.Team Empowerment: Leading and empowering a dynamic team of cybersecurity professionals to effectively manage and mitigate evolving cyber threats.Client Engagement: Proactively engaging with clients to understand their unique security needs and delivering tailored MSSP solutions.Regulatory Compliance: Ensuring compliance with industry regulations and standards to maintain a robust security posture.Technology Integration: Overseeing the integration of cutting-edge technologies into MSSP operations for enhanced threat detection and response capabilities.Incident Response Leadership: Providing strategic direction in incident response situations, ensuring swift and effective resolution of security incidents.Risk Management: Implementing robust risk management practices to identify, assess, and mitigate cybersecurity risks.Collaborative Partnerships: Establishing and nurturing collaborative partnerships with industry leaders to stay at the forefront of cybersecurity trends.Continuous Improvement: Driving a culture of continuous improvement, innovation, and learning within the Information Security team.

 Service Delivery & Project Execution Management Meetings & Service Review  SIEM Solution Deployment  International Standards in Delivery  Project Enhancements & Initiatives☛ IBM Partner – Being official Gold Partner for IBM providing various IBM solutions to new clients including IBM – Qradar, PAM – Secret Server, Watson, X- Force Exchange, SOAR - Resilient, NI- Network Insights, QVM – Qradar Vulnerability Manager & UBA☛ Security Enhancements – Work with CISO , Security Directors in client environment and understand the requirement and define the security strategies, create new use cases, customized reports and ensure the SLA’s are mapped with customer environment☛ Effective Incident Response Plan’s / Play Books – Creating effective SANS based Incident Response plans for SOC and ensure the team is following the IRP for all customers☛ Threat Intelligence Deployment – Understand the client environment and evaluate the current threat intelligence services if any, enhance and integrate with SIEM or introducing our own Threat Intelligence product to clients and ensure the adversaries are mitigated effectively and security advisories are sent to the relevant stakeholders☛ PAM – Privilege Access Management – Initiate the POC of PAM solutions for existing customers and evident the value using the PAM. Ensure client is on-boarded for the new PAM solutions☛ MDM – Mobile Device Management – Deploying Microsoft Intune MDM solutions for clients, ensure the organization security policies are customized and test the MDM solutions and work with CISO / Directors and go Live for the MDM and handover the solutions back to Client team to drive it effectively☛ Client Management – Participating & delivering security threat overview with CISO, Security Directors and other relevant stakeholders over Weekly, Monthly, Quarterly meetings about the threat landscape of their organization

Information Security Consultant deployed to enrich the Bank Information security Posture By Creating, Reviewing and Deploying:☛Standard Operating Environment☛ Incident Response Play Books ☛ Standard Operating Procedure's ☛ Information Security Risk aligned with Business Risk ☛ Information Security Transformation Projects Driving ☛ Vulnerability Management and Security Assessment ☛ Cyber Drill and Q-Cert Compliance, Incident Investigations and Compliance☛ Digital Forensics - File Level Analysis, Image Analysis, Registry Analysis☛ Cyber Security Financial Fraud Investigation ☛EDR- Carbon Black Response, Investigations, Isolation and Forensics Analysis ☛ Security Incident Management - Complete Incident Life Cycle till Lessons Learned☛ Investigations - SIEM, EDR File Level, Binary, Process, Events, Servers and End Points ☛ Use Cases - SIEM, EDR's SCCM, Active Directory, Standard Operating

☛ Employed and Designated as SOC Lead for Abu Dhabi Foremost Bank in Middle East☛ Enabled 24*7 / 365 Security Monitoring through HP Arc Sight SIEM☛ WAF Log Review and Security Policy deployment for Bank Online Services with F5 Professionals☛ Security Device Integration and ensuring the logs availability in the Centralized SIEM☛ Active Participant in CSIRT Team for Triage and Security Response☛ Risk analysis on the deployed ATM's and Other Risk Controls ☛ Deployed GARR, NESA audit controls and service to enhance the SOC delivery☛ Delivered Cyber Incident Response Plans, Play book's and SOP's☛ Enabled below new Service Line to enhance the Security posture of the Bank to protect the CIA ▬ Ransomware Process and Procedures ▬ Security Incident Handler for Bank Wide Incidents ▬ Advisory Based Incident and Proactive Mitigation's ▬ TIPM – Threat Intelligence Proactive Monitoring – RSS Feeds & Other ▬ Data Leakage Protection & Blocking Web Upload Service ▬ SIEM Use Cases & Incident Response Plan ▬ Device Based Monitoring ▬ Created new rules based on the environment traffic ▬ Evaluated the SIEM Best practices for incident automated mitigation's ▬ Security Device Based monitoring – Log on to the Bank Security Devices and review the applied settings and submit the review to the device owner and Management to enhance the security posture☛ All the Management and Audit based activities driven over Project Planner's

 WAF Security Consultant - End to End responsibility for AKAMAI and provide effective security solutions in all-means Review the existing security controls and identify the risks and take it the closure  Suggest and deploy the missing security controls for Cloud & Infra Security  Implementation and Administration of 4000+ Websites for our FMCG giant Client On-boarding new websites by Creating Profile, Digital Properties & Apply the WAF policies Environmental study and fine tune the Network based AKAMAI controls to block the adversaries  Analyzing the Existing Rules deployed and compare the scoring values applied OWASP, MoD Security CRS, KRS rule comparisons Virtual Patch Deployment for the SOE websites and propose AKAMAI for new Custom Rule  Proactive Virtual Patch Deployment in Zero Day’s, CMS Vulnerabilities and other security attacks Team Management: Enabled team for 24/7*365 days Monitoring for incident analysis Incident Management through Web, Cloud, Big Data, AWS Cloud Trial, AKAMAI Live Investigations & RCA’s: Analyze the complete behavior of the adversaries in client environment  Rule & Tool Testing: Perform the tool/ rule testing and share the results for preventive steps SIEM Management: Trustwave, Sumologic & Splunk tools for analyzing cyber event logs Periodically perform the Qualys scan for Web Servers, OS, WAS, Cloud environment along with Nessus, McAfee foundstone , Whitehat and other business tools.  McAfee EPO Deployment in AWS Cloud Environment for Windows / Linux Platforms McAfee ESM deployment and SIEM Monitoring Solutions Work on the new business requirements and participate in regular client / business meets to discuss the requirement and work on the proposals

Technically Driven: - Qualys Guard Deployment: Asset Identification & Mapping, Policy Deployment, Scan Management, Remediation Management, Ticketing Process, QID Alignments.- Fireeye Malware Analysis Ax Series: Deployment, Location based analysis, Malware Traffic, Host Based Investigations, Network Investigations, Signature analysis, Security Investigations, Closure.- Deployment of McAfee Vulnerability Manager and McAfee Database Vulnerability Manager - Endpoint Security Compliance – Promisec and LanSweeper for the clients- IDS / IPS – IBM Proventia: Signature review and approval, Signature Deployment, Environment based Signatures, Network Management- Websense® TRITON Secure Web Gateway: Location Based Policies, Bandwidth Utilization, Data consumption's, filters fine tuning, Blocking websites- Websense® TRITON Email Security: SMTP Email traffic Monitoring, Email Classification, Identifying adversaries, Educate Email Security, Policy Compliance & HR Actions. Management Driven: - Team Manager: Started Driving the VA, Promisec, IPS, SWG, DLP teams in an effective & efficient manner- Service Improvement Plan & Automation's based on Six Sigma and ITIL processes- Management Reviews: QBR, HBR, Governance, ISO Audit Participation, Board Meetings - Auto-Pilot mode – Assigned Roles & Responsibilities to the team leads & members- Conduct Rewards and Recognition programs for the best employees and team

Vulnerability Assessment Scope: - Global Vulnerability Assessment for Cognizant Critical Infra Servers across locations- Fine-tuned the Org scanning policies for identifying the Vulnerabilities - Performed compliance based scanning – PCI DSS, CISCO IOS, Database, Windows Password - Integrated SCCM server with Tenable Nessus for precise vulnerability results - Automated Vulnerability report to NSS team for the ease of remediation- Created Newsletters / Flyers which explains importance of Vulnerabilities & remediation steps- Tech Tip for the Day: Educate 80+ members team on Info Sec topics everyday- Deployed McAfee Found stone for VA- Qualys POC for the ease of scan and automated reports with ticketing processApprover For: - Patch Testing & Management: Approve Windows Update / Software patches roll-out for entire organization servers through SCCM- Cognizant Patch Management Process: Perform rigorous testing on the new updates / patches for organization SOE- Release technical advisory on Zero Day & rollout mitigation steps to arrest the vulnerabilities - Reverse Proxy Approval: Perform VA&WAS scans for the websites before goes live

Product Support Specialist• Support clients and provide security consultation on the following Symantec Products: Backup Exec, NetBackup, Backup Exec System Recovery, Continuous Protection Server, DLO,• Installation, Upgrades. Backup & Restore Strategies/MethodologiesBackup, Restores and Disaster Recovery of Exchange 2000/2003/2007 servers, SQL 2000/2005, Oracle, Lotus Domino, Linux and Windows Domain Controllers• Understanding client configurations and networks and troubleshooting Windows 2000/2003 server backup and recovery. • Data Security for Tape Libraries, NAS, Virtual Libraries & other storage devices • Data Security Implementation for the premium partners• Work closely with the QA team to identify bugs and provide reports on the same and develop product KB’s

Worked as a Subject Matter Expert (Technical Support) for Microsoft Windows XP & Vista operating systems. Hardcore troubleshooting in Windows XP & Vista Desktop related issues. Support for UK, US, APAC and Canadian Clients. Level of support includes domestic and Professional Customers using Windows XP & vista* Need to Maintain the Team Stats and Provide Proper Training* Installation of Software, Upgrade of the Operating System* Upgrade Applications, Editing the registry, Install Anti-Virus* Configure Network Settings, Install and configure Explorer* Install Service Packs & Security Patches* Transfer Personnel Files, Trouble shoot OS related problems* Trouble shoot Application related problems Trouble shoot printers/Peripherals related problems* Coordinate with all the hardware and software vendors* Complete Windows XP, Vista OS