Dec 2022 – Feb 2025 · 2 yrs 2 mos · Hybrid

• #Security Engineering # Security Governance #Security Resilience
• Engage in the prioritisation and analysis of security alerts encompassing malware, denial of service, unauthorised access, etc. This involves categorising and assessing issues of varying severity - including recurrent cyber threats, offensive security assessments, tactical threat intelligence, and vendor insights across Eurofins ELE's.
• Execute thorough incident inquiries and oversee the remediation strategy within the context of SPM - BitSight, Vulnerability Management - Qualys
• Conduct proactive investigation of network environments to uncover and segregate potential threats.
• Continuously refine, fine-tune, and oversee SPM - BitSight & Qualys to ensure optimal Security Resilience operations.
• Liaise and provide regular updates to leadership teams responsible for Cyber Resiliency and Exercise Enablement.
• Hold responsibility and supervision over the entirety of tasks allocated to the Cyber Resiliency Exercise Enablement team.
• Collaborate with and exert influence over all stakeholders within Eurofins ELE's, assessing recovery capabilities and delivering status reports to stakeholders.
• Contribute to the development of processes, formulation of key performance indicators (KPIs), and the establishment of risk management protocols.
• Leverage expertise to help forge and uphold strong relationships and trust with internal, external partners, and stakeholders/RISO's across ELE's.
• Serve as a proficient authority in evaluating general and application controls spanning diverse technologies and platforms, employing industry practices and standards such as NIST and ISO27001.
• Play a role in shaping the evolution of the group security Resilience program- status reports, collaborating with operational units such as the Cyber Defence, Offensive Security, Threat Intelligence, and Risk Management to gain a comprehensive understanding of potential vulnerabilities in protection or detection mechanisms.

Aug 2021 – Dec 2022 · 1 yr 4 mos · Bengaluru, Karnataka, India · Hybrid

• This role is responsible for facilitating and Managing security vulnerabilities , remediation activities in infrastructure identified by SecOps / InfoSec
• # ISO 27001 #GRC #PCI DSS #Risk Management #Compliance #NIST #ITRA #HIPPA #GDPR #ISO/IEC
• Principal Responsibilities :
• Drive the execution of the vulnerability management program- VCM -
• Assist with coordinating and performing process and controls walkthroughs internally with process owners
• Partner with Stake holders, business process owners during design, modification, or streamlining of processes and controls with a focus on controls rationalization and identifying opportunities for automation
• Manage Compliance risk/gaps till closure. report and escalate risk to Stake holders
• Establishes credibility and maintains strong working relationships with groups involved with information security matters (Legal, Internal Audit, Developer Community, Networking, Systems, etc.)
• Engages with Platform & Application teams during remediation phase to help teams to remediate risks by researching and providing the suitable solutions.
• Work closely with Global technology and business stakeholders across the firm
• Plays a key and influential role working with others, in groups, in cross-functional settings and with diverse stakeholders internally and externally
• Develops metrics that demonstrate the current risk state, indicators of progress, and business alignment
• Establish regular reporting mechanisms for measuring compliance and performance of Management projects

Jul 2020 – Aug 2021 · 1 yr 1 mo

• Assist in development of IS security team to ensure NIST, ISO 27001 standards
• Create policy and procedure documentation for continual security remediation efforts
• Implement continual vulnerability management using InsightVM (Rapid7) and Security Center suite
• Develop Digital Forensics and Incident Response capabilities of Log Rhythm SIEM
• Perform risk-driven monitoring, reporting, and incident response for global organization
• Perform enterprise access audits and engineer processes or system changes for continual remediation
• Maintain EDR, antivirus, reporting, and encryption for endpoints using Crowd Strike
• Accountabilities :
• Identify Security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives.
• Provide technical support in the development, testing, and operation of firewalls, intrusion detection systems, secure web/email gateways, enterprise anti-virus, and SIEM tools.
• Enforce, and communicate security policies and procedures for data, software applications, hardware and telecommunications.
• Monitor security events on a daily basis for suspicious activities and identify potential security threats and violations using a SIEM and other technology tools.
• Respond to activities deemed to be improper or in violation of security policies.
• Produce actionable threat analysis and remediation strategies in written and presentation form.
• Execute internal and external network attack and penetration tests and application penetration testing, and vulnerability assessments. Provide recommendations for prioritization based upon existing controls.
• Perform audits of user account provisioning for potential security threats and violations.
• Perform highly complex product evaluations, recommend, and implement products and services for network security.
• Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are in compliance with policies and audit requirements

Apr 2019 – May 2020 · 1 yr 1 mo · Bengaluru, Karnataka

• Conduct real-time analysis using the SIEM, FireEye technologies, and other security analytics tools with a focus on identifying security events and false positives, Further Triaging
• Responsible for correlation and initial triage of security events and indicators generated by security monitoring tools.
• Troubleshooting GPO related Issues Provides performance, Support system users and site level administrators, Provide capacity planning for content and storage on both on-prem and online platforms
• Proactively inspect, analyze and contain known and unknown threats at any endpoint - (FireEye HX, EX)
• Analyze, identify and report event based on event-logs, syslog and other sources
• Writing complex PowerShell for maintenance, management, and automation
• Provide capacity planning for content and storage on both on-prem and online platforms
• Assess impact, engage tech teams and notify stakeholders for all major incidents ITIL, ITSM Framework knowledge with Incident & Problem Management
• Perform triage and response activities related to suspected phishing emails reported to the information security team. (E-mail Security, Threat Intelligence using Internal tools )
• Investigate and advise on potential risks and active vulnerabilities identified within the monitored network environment.
• Define, manage and govern compliance processes (Risk, Threat, vulnerability management, adherence to mandatory security policies) working with cross-functional teams
• Create and maintain operational reports, Perform Monthly Audits for key Performance indicators for SOC

Oct 2017 – Mar 2019 · 1 yr 5 mos · Bangalore

• Lead security projects to increase security posture of infrastructure and company
• Detect, respond to, and remediate security incidents - CSIRT - Major Security incidents
• Development and review of company-wide security policies and processes
• Setup and maintenance of monitoring infrastructure , incident response and forensic toolkit
• Publishing and maintaining security advisories and knowledge base articles across various Product and Application Security programs
• Supporting the triage and remediation of code defects, quantitatively evaluate risk and provide guidance to engineering teams regarding the impact of security issues using industry standard metrics such as CVSS
• Identify multi-layer practices for cloud covering firewall, security groups, data and resource encryption, vulnerability management.
• Document evidences of security implementations to support during audits ( ISO/IEC 27001, Privacy, Risk Management, Data security, Business Continuity, GRC, GDPR)

Dec 2014 – Sep 2017 · 2 yrs 9 mos · Bengaluru Area, India

• This position Allowed me to analyse, design, configure, deploy, test, maintain and administer Citrix, VMware and related computing environments, services and all configurations.
• Active Directory Consolidation
• Working on deployments of Mac and Windows using SCCM and JamF
• Usage of ITSM and ITIL frameworks to implement Change Management, Incident and Problem Management.
• Working on windows platform Active Directory, GPO , MS Exchange, O365
• Designing the Work Plan SCCM for Installing Windows Desktop Images on all clients
• Provide technical assistance on Citrix products like Xend Desktop Xen App Xen Mobile to end users
• Acts as a technical lead for implementation of new projects and ensures optimal server configurations. Creates optimal server infrastructure in support of new applications by researching and recommending hardware/software technologies in support of application requirements.
• Effectively maintains all systems by performing maintenance patching and application upgrades (including operating system and various applications) as needed.
• I provide Access Management Solutions, Collaboration Services
• Maintain the front - end IT infrastructure (Workstations, Printers, Phone System, Smartphones, etc.) and ensure their reliability

Apr 2014 – Dec 2014 · 8 mos · Bengaluru, Karnataka, India

• The Role is responsible for supporting delivery and support of high quality Identity and Access Management services. Access Governance Identity Administration Privileged Identity Access Management & Federation Core Directory Services Security & Risk Intelligence Data Security & Loss Prevention SecurityKey Accountabilities: Working and implementation knowledge of various identity and access management products. Formulate and define business system design and/or technical system design. Responsible for gathering, compiling and synthesizing information with regard to technology processes or systems. Create test plans, technical test cases and participate in UAT.