Jan 2023 – Jun 2023 · 5 mos · Bengaluru, Karnataka, India

• Create High Level Solution Design (HLSD), Low Level Solution Design (LLSD), and Product solution designs documents for a Micro-segmentation solution sitting over Citrix environment, and submit for ARB (Architecture Approval Board) approval.
• Created documentations such as Network Flow diagrams, Data Flow diagrams, Functional diagrams, Solution Architecture diagrams, Infrastructure Design Diagrams, Business Solutions documents, and Security Assessments at the design stage.
• Design solutions following the Zero Trust Architecture principles with a focus on access authorization.

Sep 2018 – Feb 2023 · 4 yrs 5 mos · Bengaluru, Karnataka, India

• · Managed Hybrid Cloud infrastructures of a UK-based telecommunication firm as a Cloud Security Engineer with the responsibility of securing and managing cloud infrastructure on AWS and Azure platforms.
• Cloud Infrastructure Monitoring: Manage security monitoring and control for cloud infrastructure, including virtual machines, user accounts, networks, and storage resources in AWS and Azure environments.
• Security Incident Response: Lead the detection and response to security incidents using automation and threat intelligence tools. Automated responses using AWS Lambda, Azure Logic Apps, and incident management through AWS Security Hub and Azure Sentinel.
• Network and Storage Security: Managed network segmentation and storage security in AWS and Azure. Implemented network security groups, NACLs, and encryption (SSE, KMS).
• Vulnerability Management and Security Configuration: Performed regular security audits, configuration assessments, and vulnerability management to ensure compliance with security frameworks.
• Compliance and Security Frameworks: Ensured cloud infrastructure complies with industry standards (NIST, CIS, ISO 27001, SOC 2, HIPAA). Conducted security posture reviews using AWS Well-Architected Tool and Azure Security Center.

Jan 2017 – Aug 2018 · 1 yr 7 mos

• Taken care of multiple security solutions, including ArcSight & Splunk SIEM, Rapid7 Nexpose for Network Vulnerability Scanning, WebInspect, BurpSuite, ZAP Proxy, Fidler for Application Vulnerability Scanning, Symantec Data Loss Protection, and Tipping Point for network IDS/IPS.
• Transitioned projects from the US to India, including building a new Security Operations Center (SOC) and implementing security devices.
• Conducted Proof of Concepts (POC) for Vulnerability Assessment, Web Application Scanning, Security Configuration Assessment, and SIEM.
• Fine-tuned SIEM rules, dashboards, and reports based on requirements.
• Managed people, performance evaluations, shift management, training, and technical/operational issues.
• Led the implementation and management of Websense Proxy, DLP monitoring, IPS monitoring, and Forti Analyzer firewall monitoring systems; proactively identified vulnerabilities, resulting in a 25% decrease in security breaches.
• Presented Weekly/Monthly Security dashboards to the customer.
• Managed Governance, Risk, and Compliance, defined policies and procedures, identified risks in the environment, and provided security recommendations for mitigation.
• Ensured compliance for internal and customer environments regarding AV compliance, SLA compliance, etc.

Jan 2015 – Jan 2017 · 2 yrs

• Security Operations: Client engagement, technical expertise, process management, and team oversight.
• SIEM Deployment: Device integration, log monitoring, security event analysis, and administration.
• Symantec Endpoint Security: Robust endpoint protection policies, proactive monitoring, and maintenance.
• Content Filtering: Web-based system safeguarding, content policy management, and issue resolution.
• Intrusion Prevention System: Traffic rule management, configuration fine tuning, intrusion identification, and analysis.
• Vulnerability Assessment/Management: Asset scanning, assessment planning, optimization, and effective communication of findings.

Apr 2013 – Jan 2015 · 1 yr 9 mos · Bangaluru

• As a Network Security Specialist optimized Firewall rules and policies, and troubleshoot Network Incidents to improve the performance of security systems.
• Key Achievements:
• 1. Created customer IP subnets inventory systems to help team members to open and troubleshoot firewall rules.

Sep 2010 – Apr 2013 · 2 yrs 7 mos · Bengaluru / Bangalore

• Monitored and troubleshooted internal database, manager, and console performance-related issues on ArcSight, implementing optimizations that increased system stability and reduced downtime by 25%.
• Prepared comprehensive, summarized reports on security incidents, enabling stakeholders to make informed decisions and facilitating compliance with regulatory requirements.
• Designed and standardized new alert and report templates, resulting in a 50% reduction in false positives and providing actionable insights for incident investigation and resolution.
• Revamped and optimized the ArcSight ESM SIEM solution, implementing and configuring all ESM components, resulting in a streamlined system that reduced incident response time by 40% and improved overall security posture.