KPMG Global, Manager - Cloud Security Architect, Jan 2020 ~ Present

Enterprise and Cloud Security Architect:
Assessment of hybrid security architecture
Assessment of current deployment of Firewalls and transforming the security policies from network to Application security.
Assessment and solution design for cloud firewall around different cloud maturity models like, Island, Hub and spoke and North bound-South Bound.
Assessment and solution design for different cloud environments for IAAS, PAAS and SAAS security.
Assessment and transformation of existing VPN solution to more secure one with Start at logon and start before logon.

SOC/ Cyber Security Manager:
Assessment and operational design of SOC order of operations.
Assessment and transformation of Incident Response lifecycle.
Solution design for threat modeling and threat hunting.
Solution assessment and design for cybersecurity of cloud and on-prem servers and user systems with tools like Azure sentinel, Azure ATP, Tanium, Akamai DOS and WAF.
Automation and resiliency of Incidence response.
Email security and forensics.

Infosys, Azure Architect, Apr 2018 ~ Oct 2019

Network Architect:
Assessment and migration of VPN infrastructure.
Migration of 100 VPN tunnels.
Migration and transformation of RAS.
Design and migration of Pulse Secure VPN.
Transformation and re design of SOCKs proxy solution. Assessment and evaluation of multiple solutions to isolate the best fit.
Proof of Concept, pilot testing and enterprise level deployment for the new SOCKs solution.
Design and deployment of McAfee web proxy and Cloud solution, Sky High for hybrid infrastructure.
Design and migration of on-prem Blue Coat proxy solution to cloud based Zscaler Internet Access.
Design and deployment of Zscaler Private access for secure application access.

SOC Lead:
Transition of Cyber Security services.
Incident response lifecycle with SIEM, SOAR integration
Automation of incident response with resilient
Endpoint security and response, EDR solution design and deployment for endpoint detection, Asset management, asset discovery, Protection of assets from ransomware attacks with auditing the activities on drives and folders and deployment of preventive and reactive policies.
Threat modeling and threat hunting deployment.
Email security, phishing detection and remediation with FireEye and PhishMe and management of data forensics for email related attacks.
Vulnerability detection and mitigation lifecycle.
Assessment for MITRE framework, Kill chain and STRIDE mitigation and controls.

Security Tools Lead:
Architecture and design of security tools for endpoint detection, Anti-virus and IPS signature-based solutions.
DDOS and WAF design and management
Device posture and control management solution with OSSEC.
Deployment of Blue Coat proxy for on prem content filtering and WSS for road warriors.
Design and deployment of RedSeal for detection and mitigation of configuration violations.

Azure Architect:
Assessment of on-prem security infrastructure and defining security landscape for documentation
Assessment, planning and extension of existing on-prem security infrastructure to hybrid infrastructure.
Extension of on prem security tools to cloud based workloads.
Assessment of native cloud security tools like azure monitor, azure security center, Azure firewall, Azure Sentinel, azure ATP, Azure key vault for IAAS.
Design and deployment of services in HUB and SPOKE model.
Monitoring of cloud workload for cyber Security and PCI DSS and HIPPA compliance with Azure security center.
Deployment of SAAS solutions for vulnerability assessment and scanning, Tenable IO.
Design and deployment of cloud firewalls, PaloAlto NVA VM and Azure Firewall.
Assessment of internet facing Application gateway for cloud workloads.

Assessment of AWS cloudtrial and cloudwatch.

Member of CoE:
Active member of EDR, proxy and practice of Cyber and Cloud security, Centre of Excellence for transformation and development of emerging technologies.

HCL, Technology Specialist, May 2015 ~ Apr 2016

Worked as Technical specialist for Information security.
Taking care of deployments related to network security, Cisco firewalls, Microsoft TMG and UAG,PKI, dealing with vendors like Microsoft, Cisco etc
Worked on Azure migration project, worked on azure migrate, azure site recovery, automation using ARM, Azure firewall. Worked on securing data from on-premises to cloud via express route and VPN.
Worked on cloud proxy like Zscaler.

capgemini, Senior Consultant, Jul 2013 ~ Apr 2015

Deployment of Microsoft Direct access
RCA for any issues related to DA
PKI management for Microsoft DA
Solution design for Microsoft TMG
Firewall Changes for CheckPoint Firewall

Microsoft R&D, Network Security Engineer, Mar 2011 ~ Jul 2012

Worked with Microsoft Clients to understand their network security requirements.
Assisted new clients to plan their network infrastructure and deploy Microsoft proxy and security servers like ISA/TMG and UAG.
Assisted the clients to integrate Microsoft security products with other vendors like, Cisco, Juniper etc.
Assisted clients during initial monitoring to ensure the products meet their requirements and they able to better utilize them.
Provided RCA and diagnosis during network security issues or device failure.
Worked with the product teams to identify bugs in security product codes.
Worked with TAMs of clients to coordinate speedy solutions and understand the requirements of the clients better.

Aricent, Senior Network Engineer, Jul 2008 ~ Oct 2010

Worked on Cisco security products, done deployments, troubleshooting and integration.
Worked with various clients of CISCO like NASA, security services, US army, government offices, schools, institutions, communication and networking firms, IT firms etc.
Assisted them in understanding network requirements, suggesting required security solutions.
Assisting them in planning and deploying security products in their infrastructure.
Monitored the security infrastructure of Cisco clients and assisted clients to understand the role of security products.
Assisted the customers with the work on proxy environment.
Assisted clients to integrate Cisco security products with products of different vendors like Juniper, checkpoint, Microsoft.
Provided RCA during network issues and assisted clients to diagnose network and security issues.
Worked on various range of security products like Pix firewall series 501,506, 515E, 525, 535.
ASA 5500 series products, IDS/IPS products.
Provided training to new hires to understand the Cisco Security concepts and did mentorship when required.
Worked with the product teams to identify bugs in security product codes.
Worked with TAMs of clients to coordinate speedy solutions and understand the requirements of the clients better.

Wipro, Support Engineer, Jul 2007 ~ Nov 2007

Supporting network configuration on endpoints
Troubleshooting network issues
Worked on firewall issues on endpoints
Investigated and isolated issues related to network on the user machines.

Technologies

Firewalls: PIX, ASA, CheckPoint, TMG Cisco NextGen, PaloAlto

IPS/IDS: Cisco

Proxy: TMG, UAG, Blue Coat, Zscaler Cloud Proxy 

PKI: Microsoft CA 

VPN: Cisco, Pulse Secure 

Email Security: FireEye EX, Phishme 

EDR: Tanium, Carbon Black 

SIEM: Splunk, RSA SA 

SOAR: Resilient 

Cloud Security: PaloAlto NVA, Azure Firewall, Azure Sentinel, Azure ATP, Azure Security Center, AWS CloudTrial, AWS CloudWatch, Symantec CWP, Tenable IO. DDOS; Akamai 

WAF: Akamai 

IAM/PAM: SailPoint, CyberArk

Certifications

Azure Architect

ZCCP-IA

ZCCP-PA

RHDS-CM

CCSP