Aug 2019 – May 2021 · 1 yr 9 mos · Noida, Uttar Pradesh, India

• Oversee entire IT Infrastructure & Security at Paytm/One97 group of companies for ~10k employees across multiple entities.
• Lead IT Support, Asset management, Server/Network Security teams in resolving the issues with minimal escalations along with implementing best industry practices to secure IT infrastructure.
• Led operations & hands-on experience of the following platforms: NGFW, Advanced Email Security and administration (G Suite), AWS, AV, EDR, DLP, ATP, MDM, Encryption, Web Proxy, Anti-Phishing, end-point protection & training along with next-generation firewall products, IDS, DMZ, IAM, IPsec, DNS, SMTP, SSL, Active Directory, etc.
• Reviewed detailed risk assessments on new technologies and maintenance of IT security measurement and reporting systems to aid in monitoring effectiveness of IT Infrastructure.
• Maintained quality service by establishing and enforcing organization standards. Implementing Best Practices and compliance as per ITIL, PCI_DSS, and ISO_27001.
• Experience and thought leadership with infrastructure designs for highly secure / trusted computation environments
• Driven compliance frameworks like ISO_27001 & PCI-DSS w.r.t IT
• Ensuring successful service delivery SLA achievement & high level of customer satisfaction along with healthy collaboration when one team collaborates with the other one.
• Worked with project teams to define and provide guidance on strategic IT security controls, directions and set guidelines to counter any incident.

Jul 2018 – Aug 2019 · 1 yr 1 mo · Gurugram, Haryana, India

• Partnered with CTO to lead the IT Security strategy and execution for the enterprise for ~5k employees and ~400 offices.
• Formulate and establish IT Security policies and procedures to support the implementation of strategies set by the executives on a leadership level.
• Establish a 3-year rolling security roadmap strategy to address trends, threats and opportunities along with providing guidance and set direction in regard to Security policy and processes
• Review and sign off IT infrastructure and system design architecture with documentation of identified cyber security weaknesses and required mitigations
• Design monitoring systems to ensure confidentiality and integrity of data and availability of all network services
• Overseeing and determining timeframes for major IT/Security projects including system updates, backups/recovery, firewall and server upgrades, migrations, and outages with enforced security controls and implementation of vulnerability management processes and tools
• Worked on network and security architectures covering Software Defined Networking (SDN), Network Access Control (NAC), Bring-your-own-Device (BYOD), and Cloud/Virtualization
• Hands-on technical depth enables direct oversight, problem-solving leadership, and participation for complex infrastructure implementation, system upgrades, and troubleshooting.
• Liaise between all parties including IT/Security partners/suppliers to procure all assets/services
• Design and conduct cyber security risk assessments or tests to identify security exceptions and design practical compensating controls

Apr 2012 – Jul 2018 · 6 yrs 3 mos · Gurugram, Haryana, India

• Built & managed the entire IT Infrastructure/Security team of 22+ persons for Data Centre across PAN India from scratch.
• Created IT security policies, procedures, Standard operating procedures and documentation.
• Seamless implementation and maintenance of security applications like Anti-Virus Servers, Multi-Factor Authentication, Drive Encryption, Firewalls, Trend AV/APT, Naming conventions, Data Classification, backups, DLP & Phishing training campaigns for end users enforcing security controls along with guidelines and procedures.
• Troubleshooting of hardware/software failures along with Windows Server backups, File Server Resource Manager, Disk Quota, Active Directory, GPO, FSMO Roles, DHCP, DNS, WDS, WSUS, IIS, vulnerability scanning via Nessus along with other end point security products incorporating workstations and communication infrastructure.
• Architecture designing, testing, debugging & maintenance, future server/network upgrades, Active Directory, databases, Sites & Services, security log monitoring, disaster recovery planning, system logging, WSUS, WDS with centralized Management.
• Observing, surveying network and provide early warning of abnormalities or issues along with recommendations to adjust performance of network to enhance security.
• Coordination with IT Security vendors, Implementing Best security Practices and compliance as per ITIL, PCI_DSS, and ISO_27001.

Dec 2011 – Apr 2012 · 4 mos · Delhi, India

• Assisted senior management team in providing day-to-day operational IT Security support for AD, VPN, server, storage, Anti-Virus Servers, network infrastructures & server architecture.
• Assisted with storage and server data backup, data migration and disaster recovery planning operations.
• Created IT Security policies and analyzed log monitoring for in house data center.
• Assisted with software and operating system security upgrades and track systems licensing.
• Assisted with configuring advanced security settings, access permissions for groups and individuals including firewalls, IDS/IPS and other IT security products.
• Provided technical support to users by troubleshooting, analyzing & fixing problems related to hardware/software, network security or platform related issues.
• Preparing documents, procedures and troubleshooting procedures related to systems/network security and hardware along with policies, procedures as per standard operating procedures.
• Responsible for writing security reports, RCAs, tracking inventory, evaluating new technologies, negotiating contracts with vendors, and developing contingency plans in case of network failure including upgrades and enhancements in IT infrastructure.

Jan 2010 – Nov 2011 · 1 yr 10 mos · Gurugram, Haryana, India

• Designed, managed and responsible for databases architecture & IT security service requests.
• Handled daily IT support activities on desktop support, IT Security, data network, and server management.
• Responsible for maintaining policies, processes for Information Security.
• Developed and managed effective professional working relationships with partners, co-workers, clients after logging IT Security tickets and resolving all issues.
• Responsible for creation of disaster recovery & security risk plan for data centers.
• Configure computers and install security software for various applications and programs.
• Networked with staff on desktop security problems and their resolution with no escalations.
• Network devices monitoring & troubleshooting within the organization during issues.
• Procurement of computer systems, IT accessories & security products in coordination with purchase and supplies department.