•Lead and managed security and compliance related annual audit and provided subject matter expertise solution to design and execute the implementation of compliance requirements of payment card industry - PCI-DSS 3.2.1,4.0 & 4.0.1 & Compliance Audit -Soc1, Soc 2 type 2 •Assist in preparing formal responses to audit, banking, contractual, and regulatory inquiries, or informational requests as related to the enterprise’s compliance posture.•Work closely with Engineering, Architecture, Support organization; Review solution Architecture from Technology Risk perspective; Dev OPS Risk Management. Conduct.•Enable Business in providing IRM recommendation to new vendors onboarding, evaluating existing vendors (review vendor security, ROC, AOC, SOC2 reports, etc.), migrating projects to cloud infrastructure and reviewing vendor contracts.•Manage the Risk Assessment across Business Lines includes Vendor/Cloud Risk Management Work with Security Architecture, Engineering and project teams to ensure Business requirements are understood in terms of Risks (Security, Regulatory & Privacy) and ensure the required controls are implemented.•Transformed the security policy, introducing best in class cyber security practices, in alignment with ISO 27001, PCI-DSS and SOC2 Type II.•Information risk management program assessment, gap analyses and resolution.•Carry out internal audit for IT infrastructure / support function based on unified compliance.•Ensure all the selected controls to the projects are implemented per Security Guidance and controls are successfully tested (eg. VA-PT) Work with Security Operations team - Incident Management.•Championed information security best practice across the organization as active member of Security Architecture Review Board, partnered closely with technology and business stakeholders to review solution architecture.

• Actively perform internal self-assessments and facilitate assessments performed by external Qualified Security Assessors (QSA) • Managed security and compliance related annual audit and provided subject matter expertise solution to design and execute the implementation of compliance requirements of payment card industry - PCI-DSS 3.2, for the domain hosting brands (Constant Contact(US),Bluehost(US),HostGator(US),Resellerclub , Orderbox (Apac),Oneshoppingcart,Builder(UK)etc• Assist in preparing formal responses to audit, banking, contractual, and regulatory inquiries, or informational requests as related to the enterprise’s PCI compliance posture.• Collaborate with Engineering and Service Delivery Teams to ensure processes are meeting security and compliance needs.• Created information security and business continuity training calendar & delivering security Awareness training within the organization.• Carry out the Vendor Risk Assessment for clouding, security tools and vendors. • Review both IT General Controls (ITGC’s) as well as Substantive Controls executed by Security’s offshore team weekly, monthly, quarterly, and semi-annually around access, change and transaction activity for financially significant systems.• Ability to apply security competencies for continuous improvement of existing ISMS.

• Perform all phases of Compliance Verification Audits (CVAs) to monitor the design and operational effectiveness of information security controls (people, process and technology) Planning, Execution, Analysis& Reporting.• Facilitate the smooth conduct of all security and compliance audits or assessments in the following domains (applications, networks and systems, IT Governance, BCP, Policies).• Demonstrated ability in providing subject matter expertise and innovative program solution to design and execute the implementation of compliance controls requirements ISO 9001:2015 [Quality Management System] & ISO 27001:2013 [Information Security Management System].• Govern all IT Security Activities and authorize configuration changes for Firewalls, Email security Gateway and Intrusion Prevention Services.• Contribute to the support of operations and technology by designing, developing, or recommending secure solutions, including policy, standards, applications, systems, architectures, and infrastructure that are operationally viable and efficient, and that ensure continuous compliance.• Facilitate the smooth conduct of all security and compliance audits or assessments in the following domains (applications, networks and systems, IT Governance, BCP, Policies).• Act as internal expert for PCI. Maintains a thorough understanding of the PCI Data Security Standards (DSS) requirements, PCI industry guidance, and PCI best practices.• Support the advancement of the Company’s PCI governance program to ensure consistent identification, analysis, response, and monitoring of threats, events, and vulnerabilities.• Actively perform internal self-assessments and facilitate assessments performed by external Qualified Security Assessors (QSA).

Areas of experience include: -Information security operations,-Security assessments; -Compliance assessments of regulatory standards and requirements;-Risk and controls consulting across organization and information security policy development.-Periodical assessments & evaluations of the Technology Infrastructure & applications of the organization for proactively identifying security risks & mitigating-Govern all IT Security Activities and authorize configuration changes for Firewalls, Email security Gateway and Intrusion Prevention Services-Review of all incidents reported and SLA for all Security devices-Implementation and controls testing of PCI DSS/SOC2/controls.

• Handling Pre-sales/Post-Sales/customer/team escalations and providing technical Support to customers using McAfee/Secure Computing Email Security Gateway devices across the globe.• Working on the email product like McAfee email Gateway Ironmail MEG7.x and EWS 5.x and Mcafee Security for microsoft exchange ,lotus domino and share-point.• Working on technologies related to emails like TLS, DNS, SMTP, other email encryption methods like Secure Web Mail.• Working on VMWARE based email gateway appliances.• Configuring Email Security gateways for Anti-Spam, Anti-Virus, Anti-Spyware, Anti-Phishing, Email Archiving and Email Encryption.• Configuring/troubleshooting email servers to work with McAfee/Secure Computing Email Security Gateway.• Configuring/Troubleshooting following productions in McAfee: Email Gateway, Email & Web Gateway, Security for Microsoft Exchange, Security for Lotus Domino, Security for Microsoft SharePoint, McAfee Quarantine Manager.• Working on technologies related to emails like TLS, DNS, SMTP, other email encryption methods like Secure Web Mail.• Working on VMWARE based email gateway appliances.• Configuring Email Security gateways for Anti-Spam, Anti-Virus, Anti-Spyware, Anti-Phishing, Email Archiving and Email Encryption.• Configuring/troubleshooting email servers to work with McAfee/Secure Computing Email Security Gateway.• Configuring/Troubleshooting following productions in McAfee: Email Gateway, Email & Web Gateway, Security for Microsoft Exchange, Security for Lotus Domino, Security for Microsoft SharePoint, McAfee Quarantine Manager.• Configuring/Troubleshooting McAfee IPS• Configuring/troubleshooting McAfee DLP solution Ndlp (Discovery,prevent,Monitor ).

•SonicWALL is a leader in Network Security UTM appliance for SMB market segment and has entered Enterprise market recently. SonicWALL provides complete security solutions including Firewall, IDP, IPS, VPN, Content Filter, SSL and E-mail security firewall.•Assist customer support team members towards resolution of escalated issues•Handling client calls keeping overall client satisfaction in mind.•Handling Escalations from L1 engineers.•Investigate technical problems to determine the root cause, research and provide other front-end technical support activities related to Sonicwall Firewall /SSL.•Configuring and troubleshooting Content filter, IPS and Email filters, SSL VPN and VPN’s•Identify and resolve issues related to network and System side.•Proactively identify, diagnose, analyses and troubleshoot issues with customers Switches, Routers, Firewalls and Computer •Configuring/troubleshooting the SonicWALL firewall/UTM devices. Configuring access rules and NAT policies for proper and safe routing of traffic to the destination.•Configuring access rules and NAT policies for proper and safe routing of traffic to the destination•Configuring and troubleshooting issues related to DNS.• Perform, maintain, and troubleshoot LAN/WAN as well as computer problems for both production and test environments•Good knowledge on wired and Wireless Technologies (LAN/WAN/VLAN)•Troubleshooting Hardware and software related Networking issues including Firewall (Sonicwall ,cisco and checkpoint)DNS, DHCP, •Troubleshooting Hardware and software Microsoft exchange server 2003,2008 and 2010.•Monitoring &analyzing event, alert logs.•Troubleshooting Mail Clients: Outlook Web Access, Outlook Mobile access, Exchange PDA sync issues.•Diagnose issues troubleshooting of Windows 2000/2003/2008 Active Directory•Troubleshooting and implementing Microsoft Exchange 2000/2003,Active Directory, DNS, DHCP, IIS 5.0, 6.0 and 7.0 VPN routing/RRAS, Windows SharePoint services