Information Security Engineer Archives

Configure and define parameters for installation or testing of Firewalls.
Provide telephone support and Onsite support related to networking or connectivity issues.
DUO (Multi Factor Authentication)
Qualysguard ( Vulnerability Assessment Manager)
Alienvault (SIEM)
Sophos Phish Threat ( Phishing Campaigns)
Sophos DLP (Data Loss Prevention method)

Sophos Endpoint Antivirus (Controls the Device and maintain the security)
Sophos Web Appliance (Controls the Web traffic)
Sophos Email appliance (Controls the email traffic)
Sophos MDM (Manages and controls Mobile devices)
Sophos Encryption (Manages and controls device encryption)
Darktrace ( Controls the Intrusion prevention & detection in the network)
Juno Space (Monitor the Intrusion prevention & detection through regular monitoring)

Regulate access to computer files, develop firewalls, perform risk assessments and test data processing systems to verify security measure.
Maintain accurate records of all diplomats’ accreditation and diplomatic matters with the US. Department of State.
Established compatibility with third party software products by developing programs
Provide technical guidance or support for the development or troubleshooting of systems. for modification and integration.

Coordinate, contribute to and finalize the process documentation, consistent practices, process maturity and improvement in all areas of IS Development, Infrastructure, Operations, and management, in consultation with / approval of stakeholders.
Coordinate and perform regular security related audits for IT environment for the organization globally and providing ISMS Trainings frequently.
Perform regularly scheduled security audits / process reviews / risk assessment of the infrastructure, applications, and systems – including people, process, and technology, as per the established policy requirements.
Interface with internal and external audit groups as well as risk management teams.
Perform the audit and assessments of the information security / Cybersecurity policy and procedures being implemented and monitor their compliance, including appropriate technical and administrative controls being maintained.
Vendor Security Risk Assessment, IT Security reviews IT audits based on ISO 27001 implementation and NIST Frasmework.

System Management
LAN/WAN
Maintain compliance 100% for servers and 90% for Workstations
Identify, analyze and document network signals, malware behaviors and threat reports related to trends and developments in adversary tactics, techniques and procedures (TTPs).

Design security architecture and developing detailed design
Installation, configuration and troubleshooting Security Information and Event Management, Privileged Access Management, Endpoint Protection and security product such as Firewalls and Load balance to protect customer’s sensitive information.
Develop security policy and recommend security enhancements to customer
Create and customize Parsing and Correlating Logs into useful informations from customer log.
Leads incident response, change configuration and service request to minimize the customer impact.

Performs triage on security events to determine whether there has been a breach or compromise
Develops web applications or automation scripts needed by the team
Regulate access to computer files, develop firewalls, perform risk assessments and test data processing systems to verify security measures.
Maintain accurate records of diplomats accreditation and diplomatic matters with the US. Department of State.

In DLP policy configuration like – Removable Media, Email Protection, Web Protection, Sensitive Keyword, Screen Capture etc.
Basic knowledge of Windows and Linux (RHEL) like Installation, Logs analysis, troubleshooting etc.
Worked in Symantec AV for HP-Unix.
Responsible for providing the technical support remotely for the Domain servers and clients.
Maintain compliance 100% for servers and 90% for Workstations.
Hands On Experience on Various McAfee products.

Carry out Security Monitoring (SecMon) and Security Investigation (SecInv)
Create, manage, and dispatch incident tickets
Create and continuously improve standard operating procedures used by the SOC
Design dashboards and implement Use cases in SIEM solutions like QRadar and ArcSight
Providing Training on various security solutions and alert analysis
Timely escalation of detected threats or anomalies to the respective team and providing appropriate resolution
Built use case coverage for security verticals based on Kill chain

Worked on the Web Application security of several State and Central Government websites.
Performed API and Web Service Security Testing for private and government organisations.
Responsible for Network Vulnerability Assessment & Penetration Testing Training for team.
Specialised in Automated, semi-automated and Manual Testing.
Good in Understanding, Executing and Explaining application level vulnerabilities given by OWASP.
Web Application Security Assessments and Audits: Executing application level attacks from OWASP Top 10/SANS Top 25/WASC such as SQL Injection, Command Injection, Privilege escalation, Cross-Site Request Forgery, Cross-Site Scripting, Malicious File Upload, Local File Inclusion, Remote File Inclusion, Authentication Bypass, Session Fixation/Hijacking and Business Logic’s etc.
Proficient or familiar with a vast array of security tools and technologies, including, but not limited to:

Conduct (and work closely with co-sourced stakeholders) internal audits (System VA) to assess the adequacy, effectiveness and efficiency of the established internal controls and procedures.
Prepare assessment reports and be responsible for the overall quality of the report.
Periodic follow-up with auditees of all agreed management action plans and monitor the timely implementation.
Assist in patch management, duties to analysis the server reports and come up with the compliance percentages.
Liaison with internal stakeholders for audits and compliance management activities.

information security engineer