Network Architect:
Assessment and migration of VPN infrastructure.
Migration of 100 VPN tunnels.
Migration and transformation of RAS.
Design and migration of Pulse Secure VPN.
Transformation and re design of SOCKs proxy solution. Assessment and evaluation of multiple solutions to isolate the best fit.
Proof of Concept, pilot testing and enterprise level deployment for the new SOCKs solution.
Design and deployment of McAfee web proxy and Cloud solution, Sky High for hybrid infrastructure.
Design and migration of on-prem Blue Coat proxy solution to cloud based Zscaler Internet Access.
Design and deployment of Zscaler Private access for secure application access.
SOC Lead:
Transition of Cyber Security services.
Incident response lifecycle with SIEM, SOAR integration
Automation of incident response with resilient
Endpoint security and response, EDR solution design and deployment for endpoint detection, Asset management, asset discovery, Protection of assets from ransomware attacks with auditing the activities on drives and folders and deployment of preventive and reactive policies.
Threat modeling and threat hunting deployment.
Email security, phishing detection and remediation with FireEye and PhishMe and management of data forensics for email related attacks.
Vulnerability detection and mitigation lifecycle.
Assessment for MITRE framework, Kill chain and STRIDE mitigation and controls.
Security Tools Lead:
Architecture and design of security tools for endpoint detection, Anti-virus and IPS signature-based solutions.
DDOS and WAF design and management
Device posture and control management solution with OSSEC.
Deployment of Blue Coat proxy for on prem content filtering and WSS for road warriors.
Design and deployment of RedSeal for detection and mitigation of configuration violations.
Azure Architect:
Assessment of on-prem security infrastructure and defining security landscape for documentation
Assessment, planning and extension of existing on-prem security infrastructure to hybrid infrastructure.
Extension of on prem security tools to cloud based workloads.
Assessment of native cloud security tools like azure monitor, azure security center, Azure firewall, Azure Sentinel, azure ATP, Azure key vault for IAAS.
Design and deployment of services in HUB and SPOKE model.
Monitoring of cloud workload for cyber Security and PCI DSS and HIPPA compliance with Azure security center.
Deployment of SAAS solutions for vulnerability assessment and scanning, Tenable IO.
Design and deployment of cloud firewalls, PaloAlto NVA VM and Azure Firewall.
Assessment of internet facing Application gateway for cloud workloads.
Assessment of AWS cloudtrial and cloudwatch.
Member of CoE:
Active member of EDR, proxy and practice of Cyber and Cloud security, Centre of Excellence for transformation and development of emerging technologies.