Documente Academic
Documente Profesional
Documente Cultură
PROFESSIONAL EXPERIENCE:
Responsibilities:
Perform security reviews of application designs, source code and deployments as required, covering all types of
applications (web application, web services, mobile applications, SaaS)
Performed functional testing of security solutions like RSA two factor authentication, Novel single sign on, DLP and
SIEM
Worked on Vulnerability assessment and penetration testing by using various tools like HP Web inspect and IBM
Appscan
Migrated network from EIGRP to OSPF.
Demonstrated experience with IPSEC VPN design connection and protocols, IPSEC tunnel configuration, encryption
and integrity protocols.
Management of proxies, firewalls and F5 load balancers.
Configuring rules on F5 Load balancers.
Migrated from Cisco ASA to Palo Alto.
Responsible to evaluate, test, configure, propose and implement network, firewall and security solutions with Palo
Alto networks.
Vulnerability assessment using Nessus and other monitoring tools like ESM for asset management.
Manage all repeated threats to all systems and perform vulnerability tests.
Assisted in managing Nessus Tenable Security Center across multiple platforms SMB exploitation using NMAP and
exploit from Metasploit Framework and implementing security policies within the client's infrastructure.
Performed network & infrastructure vulnerability assessment using automated tools such as Qualys Guard and
Nmap.
Identifying the critical, High, Medium, Low vulnerabilities in the applications based on OWASP Top 10 and SANS 25
and prioritizing them based on the criticality.
Security assessment of online applications to identify the vulnerabilities in different categories like Input and data
Validation, Authentication, Authorization, Auditing & logging.
Vulnerability Assessment of various web applications used in the organization using Burp Suite, and HP Web
Inspect.
Conducts regularly review of Global Security Incidents as well as reports and update the same to the internal
teams.
Configured Cisco ISE for Wireless and Wired 802.1x Authentication on Cisco Wireless LAN Controllers, Catalyst
Switches, and Cisco ASA Firewalls.
Used the data from Cisco ISE to trace out security violations in events of ransomware attacks.
Responsible in troubleshooting on Cisco ISE added new devices on network-based policies on ISE.
Makes recommendations on existing projects to improve network security created change Requests, Method of
Procedures (MOPS) and assisted on-call migrations and changes.
Performed Level 3-4 troubleshooting and analysis of disaster recovery issues, security implementations, firewall
configurations, vulnerability assessments, and intrusion detection and analyze, customer consultation.
Work on Change Management for migration from Cisco ASA to Palo Alto.
Used KIWI monitoring tool to troubleshoot network issues.
Monitors network performance and implements performance tuning when necessary.
Worked with IPSEC VPN and B2B VPN design connection and protocols, IPSEC tunnel.
Upgraded with Nexus 9k, 7k and 5k switches to deal with the vulnerability issues.
Manage firewall/security systems by establishing and enforcing policies.
Work closely with colleagues to meet team goals and improve processes and practices.
Performs network and security hardware and software maintenance.
Create and maintain detailed network documentation and procedures.
Performs maintenance and management of assigned security technologies and functions that include firewalls,
authentication devices, encryption, event log monitoring, reporting, incident response, security analysis and/or
Researches, evaluates, designs and implements new/improved security software and/or devices that meet risk
management objectives.
Upgraded Panorama version 7.0 to 8.0 on Palo Alto Firewalls.
Performs security analysis of assigned systems and functions. Reports findings and makes recommendations for
remediation to management.
Provides third level technical expertise in the identification and resolution of security related issues/events
Develops, documents and implements new processes and procedures which improve the department’s ability to
provide World Standard client service
In-depth knowledge in the area of deep packet troubleshooting with Wireshark and/or Riverbed ACE Analyst and
tcp-dump.
Responsibilities:
Worked on Nexus models like 7K, 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800
series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches
Performance monitoring of various applications and web servers to maintain quality of service and network stability.
Maintained core switches, creating VLAN's and configuring VTP.
Designed IP Addressing schemes, VLAN tables and Switchport assignments, Trunking and Ether-channel
implementation.
Gained hands on experience with VLSM, STP, VTP, VLAN Trunking.
Installed and set up Cisco routers and switches according to deployment plans.
Applied access lists and NAT configurations based on implementation guidelines.
Managed and developed network projects designed to strengthen network continuity and deploy security elements
in an attempt to meet and exceed contract requirements, including system analysis and troubleshooting.
Change management, monitoring network performance with network tools.
IP Distribution for existing devices and new devices as they were added.
Preformed maintenance on equipment as necessary, performing device upgrades, modification of configurations,
password changes and diagnostic testing.
Responsibilities:
Extensive Interaction with Onsite Coordinator in understanding the business issues, requirements, doing exhaustive
analysis and providing end-to-end solutions.
Conducting Web Application Vulnerability Assessment & Threat Modeling, Gap Analysis, secure code review on the
applications w.r.t guidelines provided by Cisco.
Configured Access List (Standard, Extended, and Named) to allow users all over the company to access different
applications and blocking others.
Managed and developed network projects designed to strengthen network continuity and deploy security elements
in an attempt to meet and exceed contract requirements, including system analysis and troubleshooting.
Change management, monitoring network performance with network tools.
IP Distribution for existing devices and new devices as they were added.
Preformed maintenance on equipment as necessary, performing device upgrades, modification of configurations,
password changes and diagnostic testing.
Worked with vendors and Engineering team to test new hardware and procedures.
Prepared and maintained documentation using MS Visio.
Configured STP for loop prevention and VTP for Inter-VLAN Routing.
Done troubleshooting of TCP/IP problems and connectivity issues in multi-protocol Ethernet environment.
Worked on network-based IT systems such as racking, stacking, and cabling.