Sep 2013 – Dec 2014 · 1 yr 3 mos · Bangalore

Aug 2012 – Aug 2013 · 1 yr · Bangalore

• Evaluation of applications of Registry Service Providers(RSP) and DIY implementations of Generic Top Level Domains (gTLD) against the requirements of Internet Corporation for Assigned Names and Numbers (ICANN). Drafting Clarifying Questions wherever required.
• The DNS registry and resolution infrastructure and policies were gauged against predetermined scoring benchmarks for the following parameters:
• 1. Shared registration system (SRS) performance
• 2. Extensible Provisioning Protocol (EPP )
• 3. Whois
• 4. Registration life cycle
• 5. Abuse prevention & mitigation
• 6. Rights protection mechanisms
• 7. Security
• 8. Technical overview of proposed registry
• 9. Architecture
• 10. Database capabilities
• 11. Geographic diversity DNS service
• 12. IPv6 reachability
• 13. Data backup policies and procedures
• 14. Data escrow
• 15. Registry continuity
• 16. Registry transition
• 17. Registry failover testing
• 18. Monitoring & fault escalation processes
• 19. DNSSEC
• 20. IDNs (Optional)
• Participated in the reivew of ISO/IEC 27017 — Information security management for cloud systems through a global SME team of ISACA.
• Mapping of controls for Microsoft Inc: Microsoft's control list for vendors was mapped to existing control frameworks including ISO 27001, HIPPA, PCI DSS etc.

Dec 2011 – Aug 2012 · 8 mos · Bangalore

• Review and optimization of Information Security Controls' effectiveness using ISO 27001 framework.
• Establishing Change Mangement Process for various change types in IT on "Kaseya" tool. Creating scripts on the same tool to scan the hosts on the network for entertainment / media extentions / unauthorized softwares.
• Review and optimization of processes and rules implemented in IT Controls like Firewalls, McAfee DLP, AV, IPS etc. Impetus was on making them easier to follow and adhere to without compromising on the Control Objectives.
• Defining, collating and presenting of Monthly Metrics Scorecard for Infosec to Executive Management. This represented the effectiveness of the controls, major security incidents and Corrective and preventive actions implemented.
• Review and updation of ISMS documentation including Incident register and Corrective Action / Preventive Actions register.
• Risk Analysis, treatment plan and driving actions to closure by coordination with various stakeholders within the company based on ISO 27001 framework.
• Creation of essential monitoring process for scanning of daily logs from security devices.
• Conducting monthly spot-checks for Data Center, other facilities and hygine factors affecting Infosec. Driving the actions arising to closure.
• Following up with stakeholders for RCA and Corrective Actions / Preventive Actions for Infosec Incidents.
• Conducting Vendor Audits and reporting findings.
• Liaising with External Auditors for ISO 27001 and Client audits for Risk Assessments and MSA compliance.
• Approving and documenting new software requests for use by delivery/fulfilment.
• Reviewing MSAs for new businesses from Infosec perspective.
• Review of material for Infosec Awareness training for employees. Conducted Awareness training for new hires and existing employees.

Jun 2008 – Feb 2012 · 3 yrs 8 mos

• Was working as a Security Consultant engaged in BAU activities of a world class Managed Security Services SOC team and was soon moved to a specialized team handling quick Security Infrastructure changes for niche clients.
• Planning (feasibility and risk assessment), Approving (QA) & Implementing changes in the hosted network infrastructure for Hosted Security Solutions as well as customer premise security solutions on Cisco PIX/ASA, Cisco Switches/FWSMs, IDSM, CSM, SSLM, Checkpoint [over IP (NOKIA) appliances], Juniper Firewalls (through NSM) Aladdin eSafe devices(proxy) in a multi-tenancy environment.
• Configuring & maintaining an end to end security infrastructure comprising of various modules on a CAT6500 based platform. Each of the switches has SSLMs, CSMs, FWSMs & IDSMs. Responsible for configuring & renewing certificates on Cisco SSLM for about 140 URLs of the Client.
• Root Cause Analysis & remediation of faults related to the clients hosted security infrastructure.
• Troubleshooting & Working on incident tickets using ticketing tool (BMC Remedy & Assyst) against established client SLAs. Coordination with Data Center Engineers for Hands n Eyes support.
• Interacting with the client side network and security teams for any clarification regarding ongoing incidents and post implementation testing and reverting etc.
• Liaising with Cisco, Check Point, ArcSight Support Centers for vendor escalations (technical and non technical).
• Detecting and mitigating high severity security incidents (network attacks) using Cisco IDS and also providing DDOS protection using ArcSight ESM (Event Correlation), Arbor Peakflow (Traffic Anomaly Detection) and Cisco Guard (Attack Mitigation).
• Conducting periodic Firewall Policy Reviews for Checkpoint and Cisco Firewalls across the clients’ infrastructure. Raising corrective changes and driving them to completion through proper Assessment> validation> Implementation> validation cycles.

Jan 2007 – Apr 2008 · 1 yr 3 mos · Bangalore

• Configuration and troubleshooting of Sonicwall Firewalls / UTMs on various networks.
• LAN/WAN traffic analysis using Ethereal / Wire shark to understand the network packet flow and detect bottlenecks, attacks and performance issues.
• Implementation and troubleshoooting of VPN for various clients using technologies like IPSec/SSL and providing different levels of encryption/authentication.
• Implementing Network Security for our clients across the world by remotely managing Firewalls/UTMs, Creating security policies/rules and NAT policies as per the company rules and requirements.
• Implementing Intrusion Prevention and Intrusion Detection Systems (IDS/IPS).
• Configuring and troubleshooting VPN Clients for remote users.
• Implementation of VOIP and Video Conferencing over the VPN using H323 and SIP.
• Configuring High Availability-HA (WAN Fail over/Load Balancing)
• Reporting Virus Threats (Implementing Gateway AV solutions)
• Integrating RADIUS/LDAP servers with the firewall
• Configuring and Troubleshooting "Content Filtering" for URL and category based web filtering.
• Configuration of Firewall monitoring tools such as Viewpoint with Syslog servers.
• Configuring and troubleshooting Wireless Networks using Sonicwall access points and UTMs.