May 2018 – Jan 2023 · 4 yrs 8 mos · Bengaluru Area, India · Hybrid

•  Next Generation Firewall Refresh: Designed and consulted on the replacement of legacy firewalls with Palo Alto Next Generation Firewalls for a user base of 50,000 in the APAC region which help business to reduce cost of $50k for managing Legacy infra
•  Cloud Security Transition: Designed and consulted on the migration from on-premises security proxies
• and firewalls to a cloud proxy solution, achieving cost savings of up to $5 million and ROI upto $1 million.
•  Site of the Future Project: Designed and consulted on a serverless site architecture, minimizing network infrastructure requirements and integrating cloud network security.
•  Firewall Assurance: Architected and implemented zero-touch firewall rule application and business
• workflow to ensure PCI compliance across approximately 1,000 firewall devices globally.
•  Security Standardization: Developed and standardized security policies for security devices, SOC, and
• ransomware playbooks.
•  Automation Development: Created automated tool/processes for URL whitelisting and blacklisting to
• streamline security management.
•  Secure LDAP Migration: Designed and consulted on the migration from LDAP-based services to Secure
• LDAP with Microsoft PKI.
•  Azure Firewall Design: Designed and implemented Azure Native Firewall capabilities to enhance cloud security reducing the attack surface for the business

Dec 2014 – May 2018 · 3 yrs 5 mos · Bengaluru Area, India · Hybrid

•  Attack Prevention: Enhanced organizational security by leveraging expertise in firewalls, VPNs, proxies, andvarious encryption layers, serving as the second line of defense against cyber threats.
•  Security Architecture Consulting: Consulted on designing security architecture elements to effectively
• mitigate emerging threats.
•  Design and Review: Conducted comprehensive reviews of security designs, perimeter infrastructure, and
• production architecture for approximately 150 sites.
•  Perimeter Security Refresh: Led the Perimeter Security Refresh project, including the integration of mobile
• banking and lending applications, to modernize and secure perimeter defenses.
•  Firewall Assurance: Directed the successful deployment of Skybox for firewall assurance, enhancing the
• management and visibility of firewall configurations.
•  Regional Security Advisory: Provided perimeter security advisory services across APAC, UK, and EMEA regions,
• including pre-change and post-change security assessments, regulatory compliance, and adherence to local laws.

May 2014 – Dec 2014 · 7 mos · Noida Area, India · On-site

•  Security Best Practices Consulting: Consulted and engineered the development and design of security best
• practices, implementing robust security principles across the organization to meet business goals, customer needs,
• and regulatory requirements.
•  Technical Solutions Translation: Assessed customers' business drivers and requirements, translating them
• into effective technical solutions.
•  System Security Reporting: Prepared comprehensive system security reports by collecting, analysing, and
• summarizing data and trends to inform decision-making and improve security posture.
•  Disaster Recovery Planning: Created and developed disaster recovery (DR) plans for the IT organization to
• ensure business continuity and resilience in the face of disruptions.
•  Traffic Filtering Advisory: Provided advisory services on traffic filtering techniques, including standard and
• extended access lists, distribute lists, and route maps, to enhance network security and performance.

May 2008 – May 2014 · 6 yrs · Gurgaon, India · On-site

• Security Risk Assessment: Conducted comprehensive security risk assessments across all division
• departments to identify and address potential vulnerabilities.
•  Disaster Recovery (DR) Plan Testing: Periodically tested disaster recovery plans and provided support
• to ensure compliance with external audits and regulatory requirements.
•  Security Solutions Design and Implementation: Designed and implemented security solutions,
• including continuous monitoring and improvement, in collaboration with the information security team.
•  Digital Protection: Protected digital files and information systems from unauthorized access, modification,
• or destruction, ensuring data integrity and confidentiality.
•  Incident Support and Investigation: Provided support for security incidents and investigations,
• including root cause analysis (RCA) and resolution.
•  Audit and Compliance Services: Delivered services for internal audits, ISMS documentation, risk
• analysis, incident investigation, RCA, risk mitigation plans, and compliance with ISO 27001 and ISO 22301
• security requirements.
•  Vulnerability Management: Scanned for, identified, and assessed vulnerabilities in IT systems, including
• computers, networks, software, information systems, and applications.

Feb 2007 – Feb 2008 · 1 yr · New Delhi Area, India · On-site

• Network Security Assessment: Conducted comprehensive security assessments for network security projects
• to identify vulnerabilities and enhance protection measures.
•  Vulnerability Assessment: Utilized Nessus for in-depth vulnerability assessments to detect and address security
• weaknesses in IT systems.

Jul 2005 – Feb 2007 · 1 yr 7 mos · New Delhi Area, India

•  Security Infrastructure Administration: Administered antivirus and antimalware network security
• infrastructure across the network in India, ensuring comprehensive protection against threats.
•  Hardening Standards Development: Created and documented hardening standards for network and
• security devices to strengthen security configurations and improve overall resilience
•  Network and Security Setup: Played a key role in commissioning the network and security setup for 65 retail
• outlets across Delhi, Haryana, Uttar Pradesh, Uttarakhand, Tamil Nadu, and West Bengal. Successfully
• implemented credit and

Feb 2004 – Apr 2005 · 1 yr 2 mos · New Delhi Area, India · On-site