Summary

Over 7 Years of Experience as a an IT Security Professional in IT Infrastructure, Information Security, Network Security, Enterprise Security, Project management.

• Certified CCNA, CCSA, DLP, CHFI, MCP, ITIL, A+, N+
• Experience in IT Audit, Data loss Prevention, DR activities.
• Security Incident handling, SIEM (ESEM) using RSA Envision/ArcSight products.
• Experience in Network Intrusion detection/Intrusion Prevention System and Firewalls.
• Experience in Implementing & managing Symantec Data Loss Prevention.
• Deployment of NAC - Network Access Control System. Knowledge in Proxy
• Possess in depth expertise in analysis, implementation, troubleshooting and documentation
• Experience with regulatory compliance audits such as PCI, SOX, ISO 17799.
• Experience in implementing application security solutions
• I am an enthusiastic team player and strive to contribute best practice, standards compliant approaches wherever possible and the ability to work well in a team or
  individual environment

• Have excellent communication skills, work ethics interpersonal and Client facing skills

Education, Certifications and Achievements

• MBA in Information Technology
• BS Degree in Electronics Engineering
• CCNA- Cisco Certified Network Associate
• CHFI Certified - Computer Hacking Forensic Investigator
• CCSA Certified - Check Point Certified Security Administrator
• MCP - Microsoft Certified Professional(MCP 3 Papers)
• Symantec Certified – DLP Data Loss Prevention Administration
• ITIL – Certified
• A+ (Hardware) and N+ (Network) Certified
• SIX SIGMA & CISSP Trained.
• Best Achiever Award- 2011 Certificate from the Client Target Corporation.
• Best performer award twice in Accenture.

Target Corporation Mineapolis, MN October 2010 – Present
IT Security Consultant – Lead

DLP Project (Data Loss Prevention): The project involves & has the ability to “look for” sensitive data (we define what is sensitive) in motion (through network taps), at rest (Windows servers, SharePoint servers, Databases...) and in use (as data is in use on a workstation) Schedule scan of Data at rest, Periodic scan of the environment, finally data on the endpoint. DLP can watch for data being written to removable media Or scan the local disk for sensitive data
TNAC Project: Target Network Admission Program seeks to implement a secure solution to identify network devices connecting to Target’s network and allow or disallow access based on the device type
IDS/IPS (Network Intrusion Detection and prevention System): The project involves the management of IBM Siteprotector Intrusion Prevention & Detection System device for block the attack in the Network. SIEM Security Information & Event Management ArcSight which provides Information security solution.

Responsibilities:

• Data Loss Prevention suite 11.5 – Symantec DLP Product - Implementation and deployment as the champion team.
• Work with data owners of different business functions to ensure solutions implemented for data loss prevention does not negatively impact the business.
• Lead efforts to deploy Symantec Vontu globally. Experience with incident response and forensics.
• Define rule and police in Symantec DLP Server as per the PCI compliance and Enforce IT Policies, Protect their Infrastructure, and effectively managing the Systems
• Deployment of Data loss prevention across the network – Data in motion, Data in Use & data at Rest servers.
• Network Access Control – Implementing a secure solution to identify network devices and profiling the Network devices to allow or disallow access based on the device type
• Signature Updates Deployment on the Management Components and all the Individual IPS/IDS devices.
• Intrusion Prevention System - IDS/IPS (IBM ISS IPS) Implementation and Upgrade for SiteProtector.
• Designing, Planning and Engineering support for the IPS
• Refining IPS Policy and Creating Rules according to the Security Standard.
• Analysis of the Network Attack, blocks, detects and regular Health Checkups in the real Environment.
• Contacting the Vendor for escalation and troubleshooting if required.
• Preparing the Knowledge Transfer document of Process and Technical specifications guide for the Transition/Internal purpose
• Ensure Smooth Transition for all the Security Applications, Preparing Team Metrics report and Project status report weekly/monthly presenting to the Customer. Client facing role and Understand the Customer requirement

 EDS/HP Chennai, India February 2009 – May 2010
Lead Infrastructure Engineer

Responsibilities:

• Manage the day-to-day log collection activities of source devices that send log data to ESEM (SIEM) RSA – Envision.
• Identifying the critical IT infrastructure that requires 24/7 monitoring.
• Extract the logs, Perform real time log analysis using SIEM technologies and Forensics Analysis of logs as per the request.
• Mentoring and Managing the Team for 10 Members & Handling the Security Request, Incident Requests
• Bi-weekly health checks of the RSA appliance storage drives
• Manage and execute client and implementation project requests for device(s).
• Change management adds, changes, deletes, authorized submitter’s lists. Metrics reporting for Operations team.
• Aggregate, correlate, and analyze log data from network devices, security devices and other key assets using SIEM technologies.
• Execution of maintenance projects as needed and Participate in Production Engineering on-call.
• Process documentation creation, updates and assistance to internal Audit team.

Accenture Bangalore, India March 2006 – January 2009
Security Analyst - Group Lead
Accenture network across the globe with Internal and External Firewall of checkpoint and Net screen for documenting the rules with the security standard with various projects. Team Leader for the Project
Responsibilities:

• Configuration of security policies in Net screen and Checkpoint.
• Reviewing & creating the FW rules and monitoring the logs as per the security standards in Checkpoint and Net screen Firewalls.
• Contact with the various projects and team regarding the rules, monitoring the Logs and document, disable or refine the rules as per the clients’ requirement.
• Auditing the rules based on security standards and refining it.
• Conducting Training for the Team Members.
• Experience in audit for ISO27001 & BS7799 standards, Information System Audit Process, compliance assessment, Business Continuity and Disaster Recovery.
• Vulnerability assessment, penetration testing, Risk assessment, Threat management, Security advisories, compliance audits, IT security assessment.
• Patch management analysis reports of Microsoft Baseline Security Analyzer for critical & missing patches. OS hardening. Incidents handling, Root Cause Analysis of security incidents.
• Coordinating all security related issues and with Internal Infrastructure Team, Validating the Expectation request and approving.
• Symantec Antivirus server console Management, Support for Symantec Enterprise product

Sutherland Global Services Chennai, India September 2004 – March 2006
Technical Support Consultant

Responsibilities:

• Active Directory and Exchange Administration.
• Work closely with other IT operation groups for identifying and remediation of system.
• Creating users and Groups, assigning various levels of permissions to the users
• Provide level three Technical supports in Workstation level in different Deals.
• Workstation Auditing & providing Recommendations based on Best practice.
• Installation, configuration and hardening Microsoft windows XP.
• Image Deployment and Edition using Norton Ghost server. Domain Migration
• Supporting users in troubleshooting of all software’s used in Development environment & Symantec Antivirus support for USA Customers
• Updating Service Patches, Hot Fixes & Critical Updates for Windows Family
• Installation and support of Application Software’s. Proxy servers.
• Setting up of Network printers, scanners, video conferencing devices
• Troubleshooting the basic Network Issues.