SUMMARY

• Certified Ethical Hacker, CEHv10; Pen Testing, Cyber Kill Chain, SIEM, Vulnerability & Risk assessment maintaining up - to-date threat intelligence and awareness.
• Certified Forensic investigator, CHFIv9; expert in CSIRT and Evidence Collection and Analysis, auditing, legal compliance, and regulatory issues.
• Cryptography, cipher encoding/decoding using Python, 03+ years of recent experience handling Computer, Network, Mobile, BYOD & Cyber Security
• Over 9 years of experience in IP Telephony, VoIP Gateway & Predictive Autodialer, IVR.
• Leading collaborator in Computer Security Incident Response Team (CSIRT) to manage incidents.

TECHNICAL SKILLS

Reconnaissance: Maltego, Nmap, whois, Recon-ng, nslookup, dig, Google searches etc.

Pen tools: Metasploit, aircrack-ng, burpsuit, Ettercap, Wireshark, sqlninja, BeFF, Nessus

Forensic & Security: Write block controller, Autopsy, FTK, HexEditor, The Sleuth Kit etc.

Connectivity & Firewall: TCP / IP, SNMP, Checkpoint, Paolo Alto, ACL, Fail2ban etc.

Cloud & Machine Learning: Amazon AWS (IAM, VPC, Cloud Watch), Neural / SVM Security Payload Analysis and detection.

SIEM & Log: TOR, QRadar, Splunk, ArcSight, ELK, Syslog, kiwi, Security Onion, etc.

Vulnerability & Compliance: NIST, ISO 27001, CoBit, PCI DSS, OWASP, CVE, CVD

Virtualization & Appliances: VMware, workstations, vSphere, vCloud suitLinux Advanced Kali, CentOS & Ubuntu, OpenSuse with fail2ban, SELinux, LDAP, NFS

System: Installation and configuration of SCCM/SCOM, Migration of win 7 to 10, other desktop and BYOD device management.

Developer: Python, C/C++, PHP / MySQL, Oracle, WordPress, PowerShell, Bash

PROFESSIONAL EXPERIENCE

IT Operations Analyst

Confidential

Responsibilities:

• 24/7 attention for responding to Security incident logged CSIRT ticket, SIEM events / intrusions,
• Providing front-line support for Mainframe, Network and Distributed applications for the entire IT infrastructure
• Incident / Alert Management with IBM Tivoli Net cool/Omni Bus/ Network manager IP Edition Web GUI 8.1.0; event viewer for alerts and request Incidents in ServiceNow to create delegate tickets
• Respond to Alarms and alerts for updates as in server reboots and action them and escalate them using severity impact assessment model to assess the impact and urgency of incident
• Communicating effectively with internal team members and various escalation teams by creating IA and xMatters and following emails and paging
• SCOM to check state performance and health information of computer systems
• Responsibilities include but not limited to: Escalating high impact issues, monitoring Omnibus alerts, paging support groups and providing 24/7 infrastructure support.

Deployment & Decommission Analyst

Confidential

Responsibilities:

• Provide on-site deployment and decommissioning, troubleshoot/upgrade the Network and Security
• Prioritize requests for support service by service level requirements.
• Provide feedback to Field Operations Manager on Upgrade / Migrate systems using OSD and SCCM

Migration and Support Analyst

Confidential

Responsibilities:

• Win 10 deployment using WDS; Install configure and troubleshoot soft / apps, Backup - Restore
• Bare metal / PXE installation or Migration, run Arrow tools for system configuration, CDU, Recycler Printers and other peripherals Probing & Troubleshooting,
• Install configure & troubleshooting of Pin pads, Card readers, Epson Printers, MSR Check Scanner, POS (Point of Sale), Visual & Sound System (if any) etc.
• Avamar configuration, HDD encryption using bit locker and McAfee Endpoint configuration

Desktop and Network Engineer

Confidential

Responsibilities:

• Install, Configure, and deployment of POS system, weigh scale, scanner, printer, receipt printer etc.
• Install, configuration of e-Sim networking through LTE Modem and setting Local Lan and gateway on remote Canada Post.
• Installation configuration of Fuji Photo Printing devices.
• Image scanning integration and photo printer troubleshooting.
• Replacing Hard Drives and re-staging POS and integration of scanners and printers.
• IBM zSeries Server maintenance and Raid HDD replacement, Data backup and restore.
• Rack mounting and background cabling and labelling.
• Internetworking of Meraki MR56 Ultra High-Performance Wireless
• Up-linking, IP addressing, Default gateway and DNS configuration
• Assist US command center setting up services and POS integration.

Technical Support Specialist

Confidential

Responsibilities:

• Direct engagement with Customers via Avaya IP office and sip phone.
• Proficient in core CDMA process like swap, port-in / Port -out,
• 3g/ LTE device troubleshooting network and coverage-related issues.

Sr. Information Security Analyst

Confidential

Responsibilities:

• Ensure government IaaS security best practices, IT Security Governance as per Act and Compliance standard, deployed IAM and data access controls.
• Virtualized CentOS and Oracle Linux server in state-owned datacenter & managed private cloud infrastructure, DRC, Backup, Recovery, synchronization, and prevent DLP.
• SCCM Upgrade / Configuration of systems, firmware patches to secure LAN / WAN, Firewall / ACL / Fail2ban / SELinux to protect government infrastructure from the emerging threat,
• Ensured IT services security (CIA) and audits as per government rules
• Co-ordinated development & migration of legacy system and prepare specifications for use in various RFQs, RFPs, REOI of Web Portal, Knowledge bank, Women TV (IPTV solutions), and Call Center in Cisco UCM and IVR.
• Review, evaluate, and comment on vendor proposals, ensure secure development life cycle.