Information Security Consultant (Nov-2017 to Present) – DeltaTech
Information Security Analyst (July-2016 to Nov-2017) – Naxxa Consulting
Information Security Engineer (July-2013 to July-2016) – 3SC World
Operations Engineer (Feb-2012 to July-2013) – Nayatel
1. Vulnerability Assessment & Penetration Testing
2. Security Hardening / Secure Configurations (CIS/DISA)
3. Information Security Management System (ISO 27001)
4. Pre-Sales Support/Activities/Meetings
5. Official Corporate Trainer (Penetration Testing)
6. Technical Reporting, Presentations and Briefings
1. Conduct application assessments to find and exploit vulnerabilities in applications.
2. Collaborate with software developers to enhance application security practices.
3. Use, implement, and monitor technical security controls to support defensive techniques.
4. Review, document, and analyze defensive security tactics and procedures.
5. Collaborate to analyze attack vectors, gather evidence, and interpret threat intelligence.
6. Analyze multiple data feeds to find cyber-security anomalies.
7. Leverage commercial products to conduct vulnerability assessments and penetration tests against external applications.
8. Improve applications and re-mediate identified vulnerabilities.
9. Prepare and present technical reports and briefings.
10. Analyze network traffic and identify anomalies for investigation.
11. Contribute to design, development and implementation of countermeasures, cyber security systems integration, and leverage tools specific to cyber security operations.
12. Work in a cyber-program focused on collaboration, partnership, and “out of the box” creativity.
• Vulnerability Assessment and Penetration Testing of Web Applications, Systems and Networks
• Documenting and implementing security standards, procedures, and guidelines
• Preparing status reports and response procedures on security incidents to analyze security risks
• Ensuring security incident detection and prevention throughout the organization by monitoring and responding to security incidents
• Deployment of ISMS (Information Security Management System) in official workplace
• Performing Information Security Risk Assessments to discover, correct and prevent information security threats
• Working on open-source security solutions, which include:
- Security Information and Event Management (SIEM) → OSSIM
- Network Intrusion Detection/Prevention System (NIDS/NIPS) → Snort
- Host Intrusion Detection Systems (HIDS) → OSSEC
• Troubleshooting LAN/WAN and other technical issues of the customers.
• Troubleshooting PPPoE and IP routed based connectivity issues.
• Providing technical support for DSL Network, FTTx (BPON/GPON) Network
• Providing Level 2/Level 3 Support to Corporate/SLA customers with L2/L3 connectivity
• Provisioning Value Added Services like Video on Demand (VOD), and IPTV.
• Configurations/Troubleshooting on Cisco Routers (7200/7600) and Switches (2950/3550).
• Configuration of CPEs (Linksys, ZyXEL, DLink, Huawei).
• Configuration of DSLAMs (Alcatel, Paradyne, and Cisco).
• IP pool assignment, configuration of ACLs, and troubleshooting of Layer 3 issues.
• Retrieving Noise Margin, Attenuation of Copper Line from DSLAM (Alcatel, Paradyne, Cisco).
• Extensive knowledge about DSL services/FTTU triple services which include router configurations, hardware/software installations, and to meet any other specific requirements of the customer.