Aug 2023 – Present · 2 yrs 8 mos

Jul 2016 – Aug 2023 · 7 yrs 1 mo

• Directly manage a team of developers, engineers and PMs.
• Accountable for the development and engineering system to deliver innovative security applications and tools for intrusion detection, identity management, data science, pentest, incident response, security assurance, and compliance.
• Accountable for threat and vulnerability management capabilities within the WDG. Covering all flavors of platforms including Azure and Linux and up the stack to application and web services.
• Accountable for The Application Security team that is responsible for AppSec reviews: static and dynamic, manual and semi-automated.
• I provide security guidance for our Technical Leadership and teams responsible to develop, deploy and maintain online services at Microsoft's WDG.
• We also work closely with the Blue Team (SOC, Monitoring, Breach Response) in order to test the security controls and improve their capabilities.

Feb 2014 – Jun 2016 · 2 yrs 4 mos

• Providing optimal Network and Operating System security for Operating System Group within Microsoft.
• Currently working as an Escalation Engineer with the Security Operations Center for OSG Group overlooking the security operations entire OSG wide.
• Under this role the ask is to perform deeper analysis of the alerts raised by the analysts, work on various tools and process to ensure smooth processing of the SOC.
• Working on tools like Arcsight 6.5 for monitoring alerts, refine existing rule for better functioning and create new detections
• Performing Breach Hunting excersices to ensure that the servers always upto date with all the security policies and procedures.
• Working with various tools like Tripwire for auditing any file level changes, X-ways Forensics for collecting and analyzing forensics data, Qualys for performing vulnerability scans on all the devices across the OSG group
• Leading the effort in Threat and Vulnerability Management space to ensure timely communication with the other groups about any noticeable vulnerability and also with the Top level Management for presenting the executive reports.
• Leading the effort in ensuring smooth operations of High Value Assets for the XBOX group.

Mar 2011 – Feb 2014 · 2 yrs 11 mos

• Premier Field Engineer – Security.
• Security Subject Matter Expert, in Infrastructure Security, Cyber Security and Identity Management Security Services – AD, FIM, PKI, AD RMS, ADFS etc.
• Security Services includes Security Assessments, Infrastructure Security Design Reviews, Risk Assessments, End-end Security Solutions/Deployments, Web Penetration Testing & Security Trainings/Workshops etc.
• Specialize in Enterprise Information Security - Application Security, Infrastructure Security, Cyber Security, Identity Management Security Solutions – AD, PKI, RMS, ADFS etc., Risk Governance and Management, Regulatory Compliance, Security Assessments, Threat Modeling, Risk Assessments, zero knowledge Web Penetration Testing, Vulnerability assessments for critical business applications, conduct Security Trainings/workshops for developers, testers, PMs, architects etc.
• Strengthen Strategic Advisor Relationship by building Trusted Technology Relationships with key customer Technical Decision Makers, in particular with the CIO, CSO, CTO and their direct reports, leveraging Conditions of Satisfaction agreements.
• Customer centric professional with expertise in strategy formulation and execution, large and complex programs planning, services revenue development, consulting, solution design & implementation, operations setup & delivery for projects worldwide.

Feb 2007 – Mar 2011 · 4 yrs 1 mo

• Providing optimal Network and Security solutions for the existing infrastructure, complex and network-diverse environment with the Microsoft security products. Assisting Fortune 500 Customers of Microsoft on information security solution architecture and capacity planning services. Performing vulnerability assessments, reviewing findings with clients and implementing solutions including policy remediation and implementation of counter measures such as intrusion detection systems, firewalls, and host security safeguards.
• Risk assessment of existing environment, providing enhancement schemes for an enhanced and secure environment. Providing Advisory support and knowledge sharing on secure solutions for complex networks at partner's locations with the upcoming technologies. Conducting Trainings and POCs for Microsoft Security products. Delivering workshops to Microsoft Premier Customers.