Feb 2025 – Dec 2025 · 10 mos · London Area, United Kingdom

Feb 2019 – Feb 2025 · 6 yrs · Greater London, England, United Kingdom · On-site

• As a Solution Design and Implementation expert, I have delivered over 20 successful projects for Imperva Cloud WAF/On-Prem WAF across APAC and EU regions. My work involves conducting design workshops, formulating Solution design documents, and implementing Imperva CWAF infrastructure. I also have experience in migrating existing Akamai WAF/CDN configuration to Imperva CWAF/CDN, implementing advanced bot protection, and creating custom dashboards for ABP via Looker. I am proficient in API Security Implementation, creating custom CWAF policies and security rules, reviewing Security Configuration attack analytics for WAF, and automating WAF configuration with Terraform and API.
• In addition, I have experience in Infoblox DDI (DNS/DHCP/IPAM) design and deployment for various clients across the EU and MENA region. As a DNS and DNS Traffic Control SME for a major UK Telecom Provider, I have designed solutions for complex service provider networks and have experience in Outbound/Inbound Roaming DNS Solutions, DNS Traffic Control load-balancing, and DNSSEC Implementation. I am proficient in solution design and writing LLD/HLD documents for various requirements.
• Overall, I bring extensive experience and expertise in Solution Design and Implementation of security solutions, including Imperva, Zscaler, and Infoblox, and I am committed to helping organizations secure their digital assets.

Oct 2016 – Jul 2018 · 1 yr 9 mos · Gurugram, Haryana, India

•  Performing DOT Compliance audits and security reviews for Telecom Operators across India
• Performing DOT Compliance audits for end to end telecom devices including GGSN, PGW, SGW,
• MME, SGSN, RNC, BSC, enodeB, DNS servers, HLR, MSC/VLR, Routers, Switches, PCRF, IN devices.
• Designing Baseline Security Standards for Telecom/IT devices (3GPP, NIST, ISO etc)
• Performing firewall reviews and rule base analysis.
• Network architecture and design reviews and implementation of IS policies.
•  Assistance with selection /deployment of cyber security solutions and tools.
•  Risk assessments based on open source or organizational risk framework.
•  Preparing detailed reports and recommendations for qualitative and quantitative analysis.
•  Vulnerability Assessment for various Networks, Systems, Databases and Wireless Devices.
•  Business development
• Generating new business leads and working on KPMG standard proposals for potential clients.
• Preparing and giving presentations for and to potential clients.
• Feasibility and requirement analysis.

Aug 2014 – Jun 2016 · 1 yr 10 mos · Pune/Pimpri-Chinchwad Area

•  Responsible for end-to end planning of IDEA West Hub Packet Core serving six circles.
• Collaborate with Idea Corporate team for requirement analysis.
• Work closely with vendors to check feasibility.
• Design solutions as per requirements and feasibility.
• Design MOPs for individual planned events on PACO and IP devices
• Assessing the risk of planned events and aligning resources accordingly.
•  Design and implement Enterprise Mobile VPN Solutions.
• APN design as per enterprise requirements.
• Configuration and end to end routing as per solution design.
•  Key Projects Undertaken.
• Integrating Huawei SPGW & MME into existing network.
• Integrated URL Filter solution complete with AAA, NPP and firewall.
• LTE POC setup integration of Ericsson.
• Migrating Enterprise APNs from NSN GGSN to Huawei GGSN.
• IPV6 implementation across the entire network
•  Projects undertaken for network optimisation.
• BSC/RNC Rehoming across all SGSNs accounting for SGSN capacity and link utilisations.
• Conversion of IPV6 setup from static to dynamic across the network
•  Analyse and Troubleshoot daily network issues
• Customer and Enterprise Issues
• Complex Network Issues (PACO/IP devices)
•  Create test environments over GGSN/SGSN Switches and Routers for various requirements.
•  Perform Quarterly VA/PT & Configuration assessment on servers & network devices.
• Network Penetration Testing based on OSTMM methodology.
• Web Application security assessments on internal web servers based on OWASP methodology.
• Technical Configuration review of all servers and network devices.
• Facilitating external annual audit and fixing any findings identified.
•  Perform hardening & manage secure operations on PACO and IP devices.
• Traffic filtering based on Access-lists and traffic policies.
• Route filtering based on prefix lists in BGP and OSPF.
• Implement Protocol Authentication in BGP.
• Role Based Access Control Review.

Aug 2013 – Aug 2014 · 1 yr · Gurugram, Haryana, India

•  Analyse and troubleshoot escalated network issues in co-ordination with R&D team.
•  Analyse call traces, Huawei system internal traces for troubleshooting.
•  Perform version and patch upgrades on GGSN, USN, CG, PCRF nodes.
•  Analyse and troubleshoot issues based on log files (perf, perf-sp, chr).
•  Performing regular health checks on all Packet Core devices.
•  Acceptance testing for new devices to be integrated.