| | | 20,000+ Fresh Resumes Monthly | |
|
|
| |
Click here or scroll down to respond to this candidate Candidate's Name Chamakura
PHONE NUMBER AVAILABLE EMAIL AVAILABLE
Area of Expertise
IBM QRadar Symantec DLP Splunk
SQL Kali Linux Nessus
NMap Metaspolit Windows Server Street Address
Professional Experience
Company Name: iSecure (Xerox) (New York)
Designation: Security Consultant
From: September 2017 Present
Aggregated, correlated and analyzed log data from network devices, security devices and other
key assets in Qradar.
Configured log sources using Supported DSMs and Unsupported DSMs.
Created and ran QRadar searches for rules and reports.
Customized dashboards for various teams based on the log source type requirements.
Cleaned up log sources which were auto-discovered in QRadar by identifying duplicates,
correcting mis-identified log sources, and identifying log sources from their logs.
Wrote Security policies and procedures.
Created PCI and SOX reports by running searches for the required parameters and their values.
Experience in planning, developing, implementing, monitoring and updating security programs,
and advanced technical information security solutions, and sound knowledge in SOX and PCI
compliance requirements and understanding of NIST and ISO standards.
Company Name: Anthem (Ohio)
Designation: SOC analyst
From: July 2015 August 2017
Implemented IBM QRadar in distributed Architecture.
Integrated Threat Intelligence feeds with various SIEM Solution.
Aggregated, correlated, and analyzed log data from network devices, security devices and other
key assets using QRadar
Integrated the VA scanner with QRadar to feed the vulnerability details to log sources.
Created dashboards to monitor the behavior of network and traffic flow.
Created Executive Dashboard for management purposes.
Successful Implemented McAfee ePO 5.1.0 and ePO 5.1.1.
Successful migrated ePO application from physical to virtual server without any issue.
Received daily McAfee virus scan enterprise (VSE) and periodic Host Based Intrusion Prevention
System (HIPS) (Block High, Medium, and Low) signature updates from McAfee support
Wrote, edited, and formatted documentation including employee governance documents, standard
operating procedures, proposals, presentations, instructional manuals, and customer-facing
materials.
Participated in proposal development teams performing RFP analysis, response structuring,
response reviews and final proposal production.
Kept all employees up to date on HIPPA compliance
Managed the team to assist in performing Sarbanes Oxley (SOX) audit and SOC 1 reviews for
Anthem.
Performed installation , configuration and administration of Linux servers running Red Hat
Linux.
Hardened server security using SELinux and IPTABLES.
Created Linux machines using VMware virtual center (ESXi) and managing VCenter
Performed day to day LINUX/UNIX administration such as user accounts, logon scripts,
directory services, file system shares and permissions etc.
Implementation and Integration of Servers (Windows, Linux and Unix), Security devices like
Firewall, IPS, IDS, WAF, Nessus, McAfee Proxy, Symantec Endpoint Protection)
Assisted with the development of processes and procedures to improve incident response times,
analysis of incidents, and overall SOC functions.
Experience in Information Security Platform by providing support on known/ unknown
vulnerabilities/ threats found via security devices/ product. Experience in developing & creating
SIEM Procedures (SOP) documentation.
Experienced in developing & Fine-tuning SIEM rule alerts and reports.
Company Name: Montefiore Medical Center (New York)
Designation: Security Analyst
From: September 2012 June 2015
Worked in Security Incident and Event Monitoring SIEM platform IBM QRadar.
Monitored IBM QRadar dashboards to keep track of real time security events, health of SIEM
devices.
Investigated security logs, mitigation strategies and was responsible for preparing generic security
incident report.
Implementing McAfee Distributed repository for remote stores
Extensive experience in Installation, Configuration, and Migration, Trouble-Shooting and
Maintenance of Splunk, Apache Web Server on different UNIX flavors like Linux.
Utilized Splunk and the Enterprise security app to analyze incoming security events such as SQL
injections, Brute Force, excessive DNS failures, etc
Managed data logs in Splunk for security purposes.
Integrate Service Now with Splunk to generate the Incidents from Splunk and extracts all CMDB
Data from ITAM.
Monitored networks for SQL attacks, Brute force, Threat Activity Detected, and DOS attacks.
Responsible for preparing the root cause analysis reports based on the analysis.
Knowledge in Websense, NIPS, Symantec Antivirus, Checkpoint, Active Directory.
Another job function was to do IP integrity checks to make sure that IP addresses weren't on any
block list.
Setup Integration of FireEye alert in other security systems.
Setup Automation of FireEye alerts to block infected devices in other security systems
Collaborated with other departments in investigations for HiPPA & PCI violations
Provide consultative services at the time of PCI audits & reviews.
Created Compliance Security Baseline dashboard for Tripwire and compliance with Storage,
Database Server, Workstation and Server.
Utilized Security Information and Event Management (SIEM), Intrusion Detection & Prevention
(IDS / IPS), Data Leakage Prevention (DLP), forensics, sniffers and malware analysis tools.
Company: HCL (Noida, India)
Designation: Network Administrator
From: August 2011 June 2012
Working in Security Incident and Event Monitoring SIEM platform.
Security Incident raises according to the alerts and follow-up.
Monitoring various event sources for possible intrusion and determine the severity of threat.
Performed installation, configuration and administration of Linux servers running Red Hat Linux.
Maintaining and Troubleshooting Cisco Routers 1700, 2500, 2600, 2900, 3600, 7200 Series.
Configuring Cisco Layer 2 and Layer 3 Switches.
Take backup and reinstall the IOS. Network Configuration, TCP/IP Configuration.
Configuring & Troubleshooting Routing Protocols like Static, RIP, IGRP, OSPF, EIGRP, BGP &
Redistribution.
Maintaining and Troubleshooting Cisco Catalyst 2950, 3500 Series.
Configuring the features like Port fast, Uplink fast, Backbone fast, loop guard in switch to reduce
the Convergence time, DHCP Configuration, MPLS Configurations, PBR.
Configuring inter-VLAN communication Trunking protocols-DTP, VTP, HSRP and VRRP.
Creating IP-prefix-list, route-map, offset-list, and distribution list for performing route
manipulations.
Worked on Enterprise application load balancing using F5 BIG-IP LTM 6400 and Cisco CSM.
Worked on Firewall rule management as part of network operations to take care of Firewall ACL
requests. Maintained ASA 5580 to ensure high end security on the network with ACLs and
Firewall. I also performed firewall troubleshooting to resolve application issues in DMZ and
server farm.
Implemented VTP and Trunking protocols (802.1q and ISL) on 3560, 3750 and 4500 series Cisco
Catalyst switches.
Managing network security with respect to port-security on access layer and access control lists
on distribution layer.
Provided Technical support for improvement, upgradation, and expansion of the existing network
architecture.
Troubleshooting of TCP/IP problems and connectivity issues in multi-protocol Ethernet
environment.
Implementation and Integration of Servers (Windows, Linux and Unix), Security devices like
Firewall, IPS, IDS, WAF, Nessus, McAfee Proxy, Symantec Endpoint Protection).
Established and/or managed key processes, and procedures as they relate to the department and
network equipment.
Troubleshoot issues with the following types of routers Cisco (7200, 6500, 2600 and 3500 series),
to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as assisting with
customer LAN /MAN, router/firewalls.
Maintained wireless IPS infrastructure and coordinated with management, customers and peers
regarding wireless network innovations.
Ensure network connectivity of all servers, workstations, telephony equipment, fax machines, and
other network appliances.
Practice network asset management, including maintenance of network component inventory and
related documentation and technical specifications information.
logging, monitoring and response concepts and technologies for cloud networks, corporate
networks, and hosts in all environments.
TCP/IP diagnosis with IPConfig, Netstat, NSlookup, Nbtstat, Ping and Tracert utilities.
Designing and applying solutions/policies to meet or exceed functional & operational
performance while minimizing technical risks in implementation.
Independently administers and monitors all network management system (NMS) platforms to
ensure the health of operational services, networks, devices, and components. Independently
maintains (i.e., creates, updates, etc.) active and passive monitors and ensures all actively
monitored services, devices, and verifies system operation. Maintains mastery of established
standard operating procedures and processes.
Company: Wipro Infotech Hyderabad (India)
Designation: Network Engineer
From: June 2009 April 2011
Managing the service request tickets within the phases of troubleshooting, maintenance, upgrades,
fixes, patches and providing all-round technical support.
Commissioning and Decommissioning of the MPLS circuits for various field offices.
Preparing feasibility report for various upgrades and installations.
Ensure Network, system and data availability and integrity through preventive maintenance and
upgrade
Installation of Routers, Switches, Firewall and Network Cables in datacenter.
Implementation of routing protocols, configured firewall.
Troubleshooting complex networks layer 1, 2to layer 3 (routing with MPLS, BGP, EIGRP, OSPF
protocols) technical issues.
Providing support to networks containing more than 2000 Cisco devices.
Performing troubleshooting for IOS related bugs by analyzing past history and related notes.
Carrying out documentation for tracking network issue symptoms and large scale technical
escalations.
Involved in L2/L3 Switching Technology Administration including creating and managing VLANs,
Port security, Trunking, STP, Inter-Vlan routing, LAN security.
Worked on the security levels with RADIUS, TACACS+.
Modified internal infrastructure by adding switches to support server farms and added servers to
existing DMZ environments to support new and existing application platforms.
Configured switches with port security and 802.1 xs for enhancing customer's security.
Validate existing infrastructure and recommend new network designs.
Created scripts to monitor CPU/Memory on various low end routers in the network.
Configuring and troubleshooting multi-customer network environment.
Involved in network monitoring, alarm notification and acknowledgement.
Implementing new/changing existing data networks for various projects as per the requirement.
Education
Master of Science, Cyber Security (Governance, Risk management & Compliance)
DePaul University | Chicago, IL (2017)
Bachelor of Science, Animation & Multimedia
Birla Institute of Technology, Noida, India (2009)
|
