Network Security Engineer (NOC/SOC) - TeleTeachers and MIYO Health - Illinois, USA
(2023-02 - 2024-12)
Working as a Network Security Engineer part of Network Operations Centre in the Healthcare sector.
- Handling Security Devices Like Palo Alto Firewalls, Panorama, Juniper Firewalls, AWS/Azure Cloud Security.
- In depth knowledge on Network and security basics.
- Through understanding of OSI Model and TCP/IP suite.
- Policy checks and implementation of security rules / NAT rules on PaloAlto / NSX Firewall / Azure NSG / AWS SG
- Troubleshooting knowledge in analyzing the network and remediate the issue related to firewalls Knowledge in parsing the logs and understanding of log parameters.
- Maintain and enhance information security systems for maximum uptime, scalability, and integration with Fortinet Security Fabric and third-party tools
- SIEM for monitoring
- Utilize security tools, monitoring systems, and incident response procedures to detect and respond to simulated threats
- Comprised of skilled cybersecurity professionals or external penetration testers with expertise in ethical hacking and attack simulation.
- Employ a variety of techniques, tools, and tactics to mimic real-world cyber threats and test the effectiveness of existing security controls.
- Conduct regular vulnerability assessments using tools such as Qualys. Have knowledge of Nessus, Open VAS. Analyze scan results to identify security vulnerabilities, misconfigurations, and potential threats.
- Prioritize vulnerabilities based on severity, exploitability, and potential impact on the organization's security posture. Coordinate with system owners and IT teams to facilitate remediation efforts and track progress towards resolution.
- Implement and validate patches, configuration changes, and other mitigation measures to address identified vulnerabilities. Continuously review and update documentation to reflect changes in security tools, technologies, and organizational requirements.
- Identify opportunities for process improvements and automation to enhance the efficiency and effectiveness of vulnerability management practices. Assist in compliance scanning activities to ensure adherence to regulatory requirements, industry standards, and internal policies.
- Configure and run compliance scans using specialized tools to assess system configurations against security benchmarks. Support internal and external audit activities by providing documentation, evidence, and explanations related to vulnerability management processes and practices.
Senior Information Security Engineer - Accenture India Pvt. Ltd. - India
(2018-05 - 2023-01)
Vulnerability Management and Assessment Specialist within the Security Operations Center (SOC).
- Conduct regular vulnerability assessments using tools such as Qualys. Have knowledge of Nessus, Open VAS. Analyze scan results to identify security vulnerabilities, misconfigurations, and potential threats.
- Prioritize vulnerabilities based on severity, exploitability, and potential impact on the organization's security posture. Coordinate with system owners and IT teams to facilitate remediation efforts and track progress towards resolution.
- Implement and validate patches, configuration changes, and other mitigation measures to address identified vulnerabilities. Continuously review and update documentation to reflect changes in security tools, technologies, and organizational requirements.
- Identify opportunities for process improvements and automation to enhance the efficiency and effectiveness of vulnerability management practices. Assist in compliance scanning activities to ensure adherence to regulatory requirements, industry standards, and internal policies.
- Configure and run compliance scans using specialized tools to assess system configurations against security benchmarks. Support internal and external audit activities by providing documentation, evidence, and explanations related to vulnerability management processes and practices.
- Collaborate with network security teams to deploy and configure intrusion prevention systems (IPS) and intrusion detection systems (IDS). Monitor and analyze network traffic and security alerts to detect and respond to potential security incidents and intrusions.
- Communicate effectively with stakeholders, including IT teams, system owners, security analysts, and management, to convey vulnerability-related risks and recommendations.
- Collaborate with cross-functional teams to implement security controls, remediate vulnerabilities, and improve security posture. Provide training and guidance to IT staff on vulnerability management processes, tools, and best practices.
- Participate in security awareness initiatives to educate employees about the importance of vulnerability management and cybersecurity hygiene.
- Deploy Qualys Guard VM across Accenture's Network Infrastructure for comprehensive security coverage. Evaluate attack vectors and identify system vulnerabilities through network vulnerability assessments using Qualys Guard tool.
- Recommend corrective measures based on risk assessments derived from vulnerability scan reports, ensuring accuracy of existing information and security controls.
- Coordinate and support remediation activities in collaboration with asset owners to enhance overall security posture as Single POC. Investigate potential or actual vulnerabilities, working to identify false positives and optimize security controls.
- Contribute to the development of exception processes and risk evaluation. Transition new sites to Security Operations Center (SOC) for ongoing operational activities.
- Manage deployment exceptions raised by new locations, providing updates to management on a weekly basis. Attend Business Unit Connect calls to communicate site statuses and escalate issues if required.
- Collaborate with legal and compliance teams to ensure adherence to industry regulations. Engage in continuous research and learning to stay abreast of evolving security threats and industry best practices.
- Actively participate in issues management, handling exception and findings requests efficiently.
- Play a key role in the development and upkeep of security policies, standards, processes, and guidelines, aligning them with industry best practices. Conduct comprehensive security assessments on hardware/software technologies, both on-premise and in the cloud, as well as third-party vendors and service providers.
Network Security Engineer - Accenture India Pvt. Ltd. - India
(2008-05 - 2015-12)
Managed Banking & Finance Client & Internal NOC operations.
- Managing the network consisting of 700+ Firewalls Including Checkpoint, Juniper, Palo Alto firewalls & Application firewalls.
- Creating Security and NAT Policies on firewalls. Firewalls upgradation & Migration as and when needed. Log monitoring & reporting.
- Backup & restoration on weekly basis.
- Providing technical support (through the BAU role or otherwise) to firewall related matters
- Interacting with vendors and Implementation partners to ensure suitable design considerations and project completion.
- Performing Tier 2/3 Troubleshooting in conjunction with the Global Network Operations Centre as appropriate
- Coordinating the integration of network and security systems with Local Vendor (HP information system)
- Leading the Security standard operations like user validation, yearly Firewall certification, firewall auditing, device access elevation and de-elevation process
Network Engineer - Choice Solutions Pvt Ltd., Deputed to Accenture India Pvt. Ltd. - India
(2006-08 - 2007-05)
Global Client connectivity Operations.
Desktop Support Engineer - Swan Multimedia Pvt Ltd., Deputed to ADA (Aeronautical Development Agency) - India
(2005-08 - 2006-07)
