SUMMARY:

• The Passion for Technologies (IoT, Cloud Computing, Mobility, Information Security) has played a vital role in my 17 years of industry experience with a broad exposure to Service Provider and Enterprise Networks.Information security expert with a proven ability to define, create, and implement information security architecture, risk and compliance functions, processes, and programs. An expert in assessing, planning, designing, implementing, integrating and troubleshooting various complex network and security solutions and participated in successful delivery of numerous projects.
• I have worked with multiple Vendor Products and have acquired various major vendors' certification and training courses with a focus of cyber security top threats, specifically; targeted attacks, information leakage, malware, insecure ICS infrastructure, third - party threats, insider threats, phishing, DDoS, exploit kits, spam emails, and botnets.
• A Trusted Advisor for Telecom & Enterprise Customers to resolve key cybersecurity challenges, helping them in aligning business needs and cyber security, provising them holistic view on cyber security architecture, controls, processes and standards, and finding gaps in change management process.

AREAS OF EXPERTISE:

• IS Security Design
• IS Governance, Risk, and Compliance (GRC)
• IS Project Management
• IS Vulnerability Management
• IS Control and Remediation
• IS Infrastructure Maintenance
• IS Policy creation
• IS Risk Assessment
• ISO/IEC 27001 Standard (ISMS)
• Data Leakage Protection (DLP)
• Access/Identity Management
• Cloud Security
• Product Management
• Project Management
• IT Controls
• IoT Security
• Telecom Security
• SIEM
• VPN
• NextGen Firewall
• IDS/IPS

PROFESSIONAL EXPERIENCE:

Sr. NETWORK & SECURITY LEAD

Confidential, Houston

Responsibilities:

• Lead daily tasks, responsibilities and services provided by the team mainly focusing on the acquisition, transmission and processing of SCADA data through LYNX RTU for many oil wells spreaded across USA.
• Providing 360 degree security on SCADA data that is used for the digital automation of oil field resources with a focus on Data Automation.
• Configuration, management, and troubleshooting of, Routers, Switches, Firewalls, Source IDS/IPS, MPLS, Load Balancers, BGP, OSPF and LAN.
• Design and implementation of converged networking solutions for key datacenter technologies
• Hands on experience with Cisco Nexus Switches (2K/5K/7K)
• Implement, manage and monitor the perimeter (Internet), security with firewalls , IPS systems.
• Design, develop, documentation and implementation of network and security policies and procedures.
• Recommends architectural changes and design enhancements to the infrastructure.
• Configure, troubleshoot and manage VTI, VPN, IPSec, and Cisco web based SSL solutions.
• Responsible to maintain remote authentication access control using, RADIUS, ACS, TACACS.
• Capacity planning and monitoring using multiple tools including Manage Engine, Cisco LMS, Cisco Prime etc.
• Ownership of complex network and security issues and troubleshoot them through to resolution.

Confidential

Responsibilities:

• Development of IoT Solutions based on Industry Security Requirements.
• Development of Secure Cloud Solutions with Application Vendors.
• Development of Digital Oil Field Solutions to provide Secure Real Time Operations & Colloboration.
• Testing & Qualification of Huawei Switches for O&G Vendors DCS Solutions.
• Designing of Telecom Security Solutions & proposals.
• Building Solution Partners Eco-System for Joint Go-To-Market Solution Offerings.
• Establishment of Joint Innovation Center for development of state-of-art Solutions.
• Designing of Security Controls for LTE/eLTE Networks.
• Designing of Security Solutions for ISP Core Networks.
• Designing of Anti-DDoS Solution for Telecom & Enterprise Customers.
• Designing of DPI Solution for Telecom Customers.
• Designing of Caching Solution for Telecom & Enterprise Customers.
• Designing of cyber security framework, information security technology roadmap, maturity assessments and policies.
• Performed investigation for major breach and generated incident reports.
• Developed Cyber security strategies for Customers to ensure that essential information is provided to Management to make decisions pertaining to cyber security strategy.
• A led effort to analyze and address gaps in IS utilizing industry standards such as ISO 27001 and NIST.
• Partnered with vendors to identify services and products and evaluate software solutions for Next Generation firewall, and Security Information Event Management.

NETWORK SECURITY CONSULTANT

Confidential

Responsibilities:

• Pre-sales support, collecting client’s expectations and then designing value-added projects involving multiple technologies.
• Product and Solution Design Presentations to the Clients.
• Conducting Scoping Workshop, Preparing Project Plans and conducting User Acceptance Tests.
• Training for Customer Engineers after completing implementation of the project.
• Implemented and rolled-out Security Awareness trainings.
• Building High & Low Level design for the projects and Network Implementation and Migration plan
• Cisco - Installation and Configuration of Cisco Switches (Cat 6500, 4500, 4900, 3700, 3500), Routers (3800, 2800, 1800 series routers), ASA, FWSM, ACS, WAAS and LMS using the latest Protocols and technologies.
• Responsible for verifying functionality and implementing F5 Vipron blade, Palo Alto firewall, Cisco nexus 7k and 5k for data center projects.
• Leading project in migrating Cisco ASA firewall and Checkpoint firewall to Palo Alto firewall.
• Bluecoat - Installation and Configuration of Bluecoat SG Proxies, MACH5, Reporter and Director.
• Brocade - Installation and Configuration of ADX Switches (L4-7 switches).
• Juniper - Installation and Configuration of Juniper ISG and SSG Firewall.
• Perform network maintenance and system upgrades including service packs, patches, hot fixes and security configurations.
• Provide Level-2/3 support and troubleshooting to resolve issues
• Responsible for representing Internal Audit in IT projects to provide guidance on security and controls for Technology Development.
• Validated routing and security performances and functionality evaluation for FWSM, Juniper, and Cisco firewall including NAT, VPN, throughput, VLAN, routing, QOS, DDOS, Multi-Protocol resiliency and Net flow.
• Work within established configuration and change management policies to ensure awareness, approval and success of changes made to the network infrastructure.
• Select and implement security tools, policies, and procedures in conjunction with the company’s security team.
• Liaise with vendors and other IT personnel for problem resolution.

NETWORK & SECURITY ADMINISTRATOR

Confidential

Responsibilities:

• Network Design, Development, Administration and Maintenance.
• Designing and Implementation of Routing Protocols and Network Security Policies (LAN/WAN & Internet).
• Supervision, Inspection, Investigation and troubleshooting of electronic and network devices i.e. Swicthes, Routers, Firewalls and Servers.
• Management of CRM (Customer Relationship Management) Project.
• Preparing guidelines for carrying daily maintenance tasks.
• Providing technical assistance to the maintenance team pertaining to equipment handling and configuration issues.
• Participating in development of network standards and procedures.
• Maintaining all network security related procedures and documents and ensuring that security is not breached.
• Troubleshooting hardware, software and LAN related issues throughout zone.
• Monitoring and maintaining smooth VPN connectivity of the Switft Registeration centers of the zone with Headquarters.
• Implementing software installation and internet access rules using firewall, Acrive Directory group policies etc.
• Keeping Servers, Computer Systems and devices updates with latest software patches, upgrades and antivirus definitions throughout Zone.
• Monitoring installation and usage of unauthorized software programs.
• Performing network evaluation by monitoring network performance and timely reporting.
• Presentation and technical workshops pertaining to operation of various products throughout zones