TECHNICAL SKILLS

CISOC ROUTERS: 800, 4000, 7606 & 7604

CISCO SWITCHES: Nexus 7k, Nexus 5k, Nexus 2K, Nexus 3k, 2960, 3750, 3650, 3850, 4500 and 6500

CISCO FIREWALLS: ASA 5505, 5510 &5520.

CHECKPOINT / PALOALTO / Fortinet FIREWALLS: R65, R75 & R76 (GAIA), R77.20, R80

PALO ALTO: PA 7000, 5200, 3000 & 820,850

LOAD BALANCERS: BIG IP (F5) LTM, ASM, APM

PROTOCOLS: Hands on experience of configuring and troubleshooting different layer 2 and layer 3 protocols like EIGRP, OSPF, BGP, HSHRP, VRRP, STP, RSTP, and MSTP.

TECHNOLOGIES: MPLS, VRF’s, IPSec VPN’s, SSL VPN, QoS, FEX, VDC, VPC, VSS, FABRIC PATH

PROFESSIONAL EXPERIENCE

Network & Security Architect

Confidential

Responsibilities:

• Building security policies for global, domestic and transparent based on the application requirement.
• Evaluating vulnerability reports for applications and fine tune security policy to protect against those vulnerabilities.
• Configuring checkpoint VSX and virtual firewalls for multiple projects.
• Auditing existing security infrastructure and remediating existing policies using AlgoSec, Tuiffin.
• Deploying, configuring and managing PaloAlto 850 for remote branches.
• Migrating checkpoint firewalls to Palo Alto, configuring and managing URL filtering, threat prevention and vulnerability management.
• Creating detailed method of procedure for upgrades, security rules and policies implementation and troubleshooting for SOC.
• Performing firewall code upgrades on checkpoint firewall R76, R80.
• Configuring and managing remote access and site to site VPN’s in multivendor environment

Network & Security Architect

Confidential

Responsibilities:

• Worked with build and design team to design and implement multiple network and security related projects.
• Conducted network vulnerability scanning and vulnerability assessment.
• Review security monitor logs from all systems (Firewall, IDS/IPS, LEMs, SIEM Tools, Email, etc.), propose and mitigate any threats based on findings.
• Worked on multiple EOL projects to refresh the hardware globally and locally in Canada which includes nexus switches, checkpoint, ASA & PaloAlto firewalls.
• Designing and implementing new security solutions to for internal and external clients.
• Routinely interface with IT and business unit management to assure security initiatives are aligned with business needs. Analyze business and security needs alongside requirements and communicate risks to management.
• Installing, configuring and patching new software’s to countermeasure security threats and protect against viruses/malwares.
• Working as a technical interface for new project initiatives including liaison with project managers, vendors, and business unit management to ensure all requirements are included in project planning and implementation and meet the customer standards.
• Working on multiple data center integration & EOL projects to install/Remove CISCO Nexus platform 5k, 7k &9k.

Network Security Architect

Confidential

Responsibilities:

• Worked with application development teams, project based development teams and Windows support teams, to continuously analyze and enhance the IT infrastructure and security posture using Checkpoint, Palo Alto, Qradar, Splunk and fireeye.
• Reviewed and Audited existing policies in firewalls and remote access solutions by using Tuifin / Splunk to highlight any possible vulnerability and strengthened end point security.
• Gathered detailed requirements necessary to develop a compliant cyber security solution and advised on data privacy and security compliance requirements.
• Created and designed Security Policies in checkpoint and Palo Alto firewalls to facilitate requests from internal/external clients. Building IPsec site to site and remote access VPN’s. Assisted in SSL decryption project.
• Upgraded checkpoint firewall HA clusters from R77.20 to R77.30.
• Creating, troubleshooting rules on PaloAlto firewalls for internal and external clients.
• Planned, designed, executed and monitored all security systems and their associated software and hardware.
• Performed SIEM platform performance health checks, tuning, optimization and analysis
• Manage, maintain, design, configure, and document security schema, such as Encryption, Firewalls, IDS/IPS, Anti - Virus / Host based or End Point solutions.

Network Designer / Consultant

Confidential

Responsibilities:

• Planned and managed moves, changes and implementation in multiple interconnected data centers.
• Created and/or audited Security Management Process to ensure maximum protection.
• Upgraded existing SIEM solution to improve logging, reporting and alert events.
• Creating new rules and security policies on Juniper and Fortinet Firewalls.
• Implemented network/security management solution for managing network/application fault and performance, security event collection, consolidation, correlation and configuration management.
• Configured standard and custom alerting, correlation and notifications.
• Performs technical configuration, administration and maintenance activities on IT systems to ensure the security of networks and related infrastructure.
• Performed content and filter development to identify data and events of interest.
• Worked as a technical interface for information security for new project initiatives including liaison with project managers, vendors, and business unit management to ensure that information /network security considerations are included in project planning and implementation and meet the Security Directives.