Badges
70 Points
2 Years
User Activity
Over 2 years ago
Contributed a review of Aqua Cloud Security Platform: Excellent support, good flexibility, and works in hybrid environments
Over 2 years ago
Contributed a review of Qualys VMDR: A solution with flexible licensing, easy setup and great integration
Projects
Almost 2 years ago
Cloud CSPM • Global Cloud Solutions: AWS / Azure / GCP / IBM SoftLayer / Oracle Cloud (IaaS)
• Multi Cloud / hybrid Security
• MS Defender for cloud, MS Defender for Endpoint, MS Defender for Identity, MS Defender for CloudApps, MS Defender for O365, MS Defender for IOT
• Azure KQL
•…
Reviews
Over 2 years ago
Aqua Cloud Security Platform
About me
A passionate, dedicated and highly productive professional offering 17+ years of accomplished experience in IT and support functions in the progressive industries. Holds an expertise Multi Cloud Solution, Multi Cloud Security, Multi Cloud Migrations, Cloud Pre-sales, CloudOps DevSecOps, DevOps, CapOps, FinOps, Google Workspace Admin & Security, Administration, AI & ML.
Strong familiarity with IT Security Protocols, Azure Cloud and Security, AWS Cloud & Security, GCP Cloud & Security, IBM SoftLayer, VMware and Hyper Converged Infrastructure (HCI). Hands on experience in managing various process improvement projects, operating budget and IT resources for Security, optimization, and support of operations.
Earned a reputation for designing cloud deployment strategies that mitigate risk while meeting infrastructure, employee, customer, and budgetary needs. Also, prepared the planning for server migration from legacy and different cloud provider.
Possesses excellent Liaison and Negotiation Skills with demonstrated ability to effectively manage vendors providing superior customer service. Strong Strategic Skills with the capacity to create multiple back up plans, providing speedy and effective resolutions. Exemplary relationship building and problem-solving skills that foster vendor trust and dependability. An excellent communicator blended with solid management skill, demonstrating capabilities of contributing significantly. Can thrive well in a fast-paced environment with a remarkable ability to multi-task, constantly endeavoring to adapt and excel.
Certifications
- Microsoft Certified- Cybersecurity Architect Expert (SC-100) Microsoft Certified -Information Protection Administrator Associate (SC-400) Wipro- Solution Architect (Cloud Security and Compliance) L1- ACE WIPRO People Manager-L1 Azure Fundamentals Microsoft Certified Solution Associate: Cloud Charter Member Microsoft Specialist (MS): Implementing Microsoft Azure Cloud Infrastructure Solutions MCSE (Microsoft Certified System Engineer) Microsoft Certified System Administrator (MCSA) Microsoft Certified Professional (MCP) Microsoft Azure Security Engineer Associate SC-900: Microsoft Security
- Compliance
- and Identity Fundamentals AWS TCO and Cloud Economics (Digital) AWS Technical Professional (Digital) AWS Business Professional (Digital) AWS Partner: Migrating Your Application to AWS (Technical) AWS Partner: Migrating to AWS (Technical) AWS Well-Architected AWS Solution Architect GCP- Professional Cloud Architect GCP- Professional Cloud Security Engineer NSE (Network Security Expert) fortiGate-Fortinet API Security Architect ISO/IEC 27001:2013 ISMS- Lead Auditor NIST CSF and Risk management
Employers
Wipro Limited March 21- Till
Noida, India
Lead Consultant Cloud Security | Cloud Architect & Ops | AppSec | FinOps | DevSecOps | DevOps | CapOps | Google Workspace Admin & Security | AI & ML
Domain Expertise & Credentials-
• Global Cloud Solutions: AWS / Azure / GCP / IBM SoftLayer / Oracle Cloud (IaaS)
• Multi Cloud / hybrid Security
• MS Defender for cloud, MS Defender for Endpoint, MS Defender for Identity, MS Defender for CloudApps, MS Defender for O365, MS Defender for IOT
• Azure KQL
• 5 security archetypes for cloud security management platform umbrella:
Cloud Security Posture Management (CSPM), Cloud Workload Protection Platform (CWPP), Cloud Access Security Broker (CASB), Cloud Infrastructure Entitlement Management (CIEM), Cloud-Native Application Protection Platform (CNAPP)
• Cloud Security Governance (Incident, Vulnerability, Endpoint Protection, Identity Protection and Security Improvement)
• Cloud FinOps- Azure (Cost Optimization & Recourse Optimization) & AWS Cost Management console(ACM)
• Container Security
• Azure
#Cloud Adoption Framework (CAF) & Well-Architected Framework (WAF)
Compute, Storage, Network, Security, Compliance & Management
Azure Firewall & Firewall Manager, Azure WAF, DDoS Protection, Azure Key Vault, Azure Bastion: Secure RDP/SSH, Secure VM, Azure Lighthouse, Azure Backup, Azure Site recovery, Express Route, VPN, Vnet, Vnet peering, Private Link, Azure AD App Proxy: Secure Remote Access, Azure Arc: Hybrid and Multicloud Management, Azure Stack: Hybrid and Edge Computing,
VM, Web App
#Azure Active Directory: Password-less & MFA, Hello for Business, Authenticator App, FIDO2 Keys, Azure AD PIM, B2B & B2C.
- Identity Protection: Leaked Credential Protection.
- Identity Governance: Identity, Access, and Privileged Access Lifecycle, Entitlement Management, Access Requests, Workflow, Policy and Role Management, Governance Enforcement.
- Defender for Identity: User Behaviour and Activities, Investigate Alerts, AD FS Protection, Lateral Movement Detection
Blueprints, Management Groups, SecOps, AI- Az LUIS, ChatBot, AZ ADF, Data Lake, Azure AD Connect, DirSync and AAD Sync, SSO.
# Microsoft 365 Defender: Extended Detection and Response (XDR). Endpoint, Office365, Identity, and more
- Defender for Cloud: Cross Cloud XDR.
- Microsoft Sentinel: Cloud Native SIEM, SOAR.
- Microsoft Endpoint Manager: Intune and Configuration Manager.
- Microsoft Defender for Endpoint
• AWS Security Specialty Services:
# AWS Certificate Manager, AWS CloudHSM, AWS Resource Access Manager (RAM), AWS Secrets Manager, AWS Security Hub, AWS Artifact, AWS Control Tower, AWS Service Catalog. AWS Identity and Access Management (IAM), AWS Artifact, AWS Audit Manager, Amazon Cognito, Amazon Detective, Amazon Macie, AWS Directory Service, AWS Firewall Manage, Amazon Cloud Directory, Amazon Guard Duty, AWS IAM Identity Centre (successor to AWS Single Sign-On), Amazon Inspector, Amazon Macie, AWS Network Firewall, AWS Resource Access Manager (AWS RAM), AWS Secrets Manager, AWS Security Hub, AWS Shield, AWS WAF, Amazon Quick Sight, AWS Organizations.
#IAM, EC2, AMI, EBS, EIP, KMS, EFS, VPC, Endpoint, NACL, ELB & AS, S3 & Glacier, Cloud Watch & Cloud Trail, SNS, AWS (Work spaces/Directory/Organization/AppStream/Switch Role) End-User-Computing VDI, AWS Config, AWS Federated authentication with Active Directory Federation Services (AD FS), MFA, KMS, WAF, VPC, Logging and Monitoring, Trusted Advisor, AWS SSO with Azure AD.
• Google Cloud Platform (GCP)
#Implementation of cloud solutions: IAM, VPC Service Controls, Cloud Armor, Cloud KMS & Secrets Management, VPC Firewall.
# GCP SCC(Security Command Center)
# Cloud Logging and SIEM (i.e. Rapid 7 Insight IDR)
# Google Chronicle
# Google workspace Management.
• Backup Management: Druva Backup, Cloud Berry,
• Dynatrace, Splunk, Zabbix, SolarWinds,IBM QRadar, Aqua Container Security, Qualys, Nessus
• Repid7:
InsightVM, InsightAppSec, InsightIDR, InsightConnect, InsightCloudSec, tCell, Nexpose, AppSpider, Metasploit, Insight Agent, Insight Network Sensor, InsightOps
• Infra as a Code (IaC)- Terraform, AWS CloudFormation, Azure – ARM Templates
• LLD & HLD Creation.
Accomplishments-
NIST 800 series standards (specifically 800-53) Rev 4, upcoming to Rev 5
Risk assessment processes, policy development, proposals, work statements, product evaluations and delivery of technology
Understand enterprise business computing operations/requirements - particularly Cloud
Stand firm on issues yet be flexible and creative when working with customers to find effective solutions
Understand and interpret laws and regulatory requirements related to information protection and develop and implement appropriate processes to achieve and maintain compliance and reduce risk.
PCI, HIPAA, HITrust, ISmap, OWASP, country and geo specific controls certifications
Administering internet facing systems
Understanding the tools, design and architecture of Cloud, and networking security (including security systems such as firewalls, intrusion detection, vulnerability scanning, OS patching, health checking, etc.)
Container based architectures and implementations such as Kubernetes, docker, etc. Cloud Native Architectures
Illustrative Projects and Implementations-
Threat Modeling for multiple business units.
End-to-end Security Architecture Design for IaaS, PaaS and SaaS
Secured business processes with Azure integrating suitably with WAF, IPS, HA, IAM, MFA, MDM, DLP, CASB, SIEM, OWASP, SAST, DAST, CWPP, CSPM
Cloud Security (Azure, O365, CASB, MCAS, AWS, GCP, Cloud SIEM, Sentinel)
Data Security in Multi-Cloud
Cyber & Information Security
Governance, Risk & Compliance
SIEM/SOC (Build, Run)
Security Project Management
Security Architecture design & implement
Transition and Transformation program
Security Operation & Compliance
Security Service Maturity & Improvement
Security Monitoring
Log Mgmt & Security Incident Mgmt
HCL Technologies Limited Feb 2019 – March 2021
Noida, India
Sr. Cloud Security Expert | Cloud Architect | Multi Cloud Infra. & Ops | DevSecOps | DevOps | AI
Domain Expertise & Credentials-
• Global Cloud Solutions: AWS / Azure / GCP / IBM Softlayer / Oracle Cloud (IaaS)
• Infra as a Code (IaC)- Terraform, AWS CloudFormation, Azure – ARM Templates
• Cloud Security Posture Governance, Cloud Security Incident Governance, Cloud Security Vulnerability Governance, Cloud Endpoint Protection Governance, Cloud Security Improvement, Cloud Cost Optimization, Cloud Recourse Optimization
• Azure Arc and Blueprints, Azure- DevOps, AI- Az LUIS, ChatBot, AZ ADF, Data Lake, Cloud migrations
• AWS CLI, Azure CLI
• Azure AD Connect, DirSync and AAD Sync
• Azure Backup and site recovery, Druva Backup, Cloud Berry
• Dynatrace, Splunk, Zabbix, SolarWinds, Az Monitor, Azure Sentinel, IBM QRadar, Aqua Scan, Divvy Cloud, Qualys, Nessus
Accomplishments-
NIST 800 series standards (specifically 800-53) Rev 4, upcoming to Rev 5
Risk assessment processes, policy development, proposals, work statements, product evaluations and delivery of technology
Understand enterprise business computing operations/requirements - particularly Cloud
Stand firm on issues yet be flexible and creative when working with customers to find effective solutions
Understand and interpret laws and regulatory requirements related to information protection and develop and implement appropriate processes to achieve and maintain compliance and reduce risk.
PCI, HIPAA, HITrust, ISmap, OWASP, country and geo specific controls certifications
Administering internet facing systems
Understanding the tools, design and architecture of Cloud, and networking security (including security systems such as firewalls, intrusion detection, vulnerability scanning, OS patching, health checking, etc.)
Container based architectures and implementations such as Kubernetes, docker, etc. Cloud Native Architectures
Illustrative Projects and Implementations-
Threat Modeling for multiple business units.
End-to-end Security Architecture Design for IaaS, PaaS and SaaS
Secured business processes with Azure integrating suitably with WAF, IPS, HA, IAM, MFA, MDM, DLP, CASB, SIEM, OWASP, SAST, DAST, CWPP, CSPM
Cloud Security (Azure, O365, CASB, MCAS, AWS, GCP, Cloud SIEM, Sentinel)
Data Security in Multi-Cloud
Cyber & Information Security
Governance, Risk & Compliance
SIEM/SOC (Build, Run)
Security Project Management
Security Architecture design & implement
Transition and Transformation program
Security Operation & Compliance
Security Service Maturity & Improvement
Security Monitoring
Log Mgmt & Security Incident Mgmt
Vulnerability Mgmt
Freelance- Consultant & Trainer Dec 2018 – Feb 2019
Delhi, India
Consultant & Trainer- Azure| AWS Cloud
Working as a Freelance Consultant and Trainer for AWS and Azure Infrastructure as a service (provided the training as IAAS level) like- Deployment of virtual Machines, Their Networking, Security, Patching and hardening.
Provided online trainings On AWS and worked on ELB, SSL, Security Groups, RDS and IAM, VPC, S3, CloudFront, IAM, RDS, Route 53, CloudWatch, SNS.
• Cloud Cost Optimization, Cloud Recourse Optimization, Cloud Security, Cloud migrations, Azure- DevOps
• Backup Management: Azure Backup and site recovery, Druva Backup, Cloud Berry
• Monitoring: Dynatrace, Splunk, Zabbix, Nagios, HP EMS, SolarWinds
Brillio Technologies Pvt. Ltd April 2018 – Nov 2018
Client- Publicis.Sapient, Noida, India
Sr. Consultant- Multi Cloud Infra. & DevOps
• Global Cloud Solutions: AWS / Azure / GCP / IBM Softlayer / Oracle Cloud (IaaS)
• Cloud Pre-Sales Activities, Cloud Cost Optimization & Recourse Optimization
• Cloud Security, Azure- DevOps
• Cloud migrations, including of Mass Migration: Recemi and Carbonite
• Work Flow: Confluence
• DevOps: Jenkins, Ansible and Ansible Tower, Maven, ANT, Apache, Tomcat, Docker, Kubernetes and TerraForm
• Repository: Github and BitBucket, SVN,
• Search Engine: AWS Elastic Search
• Ticketing Tools: JIRA, Remedy and Service Now
• Monitoring: Dynatrace, Splunk, Pingdom, Zabbix, Nagios, HP EMS, SolarWinds, SonarQube
• Backup Management: Azure Backup and site recovery, Druva Backup, Cloud Berry
• Azure AD Connect, DirSync and AAD Sync
• Understand customer requirement
• Security and Vulnerability Measurement of Windows/ Linux and Treatment.
• Patch Management.
• PowerShell.
• Inventory Management.
Concentrix Daksh Services India Pvt. Ltd. July 2016 – April 2018
Gurgaon, India
Analyst - Cloud Infra. (Global IT)
• Global Cloud Solutions: AWS / Azure / GCP / IBM Softlayer / Oracle Cloud (IaaS)
• Cloud Pre-Sales Activities, Cloud Cost optimization & Recourse Optimization
• Cloud Security, Azure- DevOps
• Cloud migrations, including of Mass Migration: Recemi, Platespin, Appzero, DoubleTake Move
• Workflow: Confluence
• Hyper Converged Infrastructure (HCI)- Nutanix
• DevOps: Jenkins, Ansible and Ansible Tower, Nagios and Maven, Docker, Kubernetes and TerraForm
• Repository: Github and BitBucket, SVN, Sharepoint, Nexus
• Monitoring: Dynatrace, Splunk, Zabbix, Nagios
• Backup Management: Azure Backup and site recovery
• Azure AD Connect, DirSync and AAD Sync
• Storage Management: IBM StorWize V7000, QNAP, Dell.
• Security and Vulnerability Measurement of Windows/ Linux and Treatment.
• Patch Management,PowerShell.
• Budgeting, Inventory Management.
• Effectively organizing orientations and trainings with the users
• Actively monitoring and troubleshooting the backup related problems and ensuring scheduled and unscheduled backups as per the backup plans and restoration
• Meticulously preparing documentation for the server and all configuration settings
• Demonstrating latest cost-effective and scalable technologies, keeping an eye to the changing trends in the department and the marketplace.
• Responsibly managing and supervising executives and providing training on IT dynamics.
Shreshtha Softwares Pvt. Ltd. Jan 2016 – June 2016
Delhi, India
Manager– IT
• Global Cloud Solutions: AWS / Azure / GCP
• Cloud Pre-Sales Activities, Cloud Cost optimization & Recourse Optimization
• Cloud Security, Azure- DevOps
• Resource Management, IT Inventory Management, IT Help-desk Management, Cyber Security Analysis.
• Google Suite, VMware 6.0.
• Business Analysis, Managing all Technical Requirements for running projects.
• Vendor capacity creation and management.
• Tactfully performing Ad-hoc tasks and other IT support functions.
• Managing Over all Network and IT infrastructure across the board
• To ensure the streamlined operation of the IT Department in alignment with the business objectives of the organization
• Manage Centralized IT Support Operations and helpdesk.
• Manage Internal and External Datacentres.
• Effectively organizing orientations and trainings with the users
• Actively monitoring and troubleshooting the backup related problems and ensuring scheduled and unscheduled backups as per the backup plans and restoration
• Demonstrating latest cost-effective and scalable technologies, keeping an eye to the changing trends in the department and the market place
• Responsibly managing and supervising executives and providing training on IT dynamics
• Tactfully performing Ad-hoc tasks and other IT support functions
TechForce Education and Training Pvt. Ltd. / XSEED Education Oct 2007 – Dec. 2015
(iDiscoveri Education Pvt. Ltd), Gurgaon, India
Sr. Associate – IT
• Global Cloud Solutions: AWS / Azure
• Cloud Security, Cloud Cost optimization & Recourse Optimization
• VMware Management.
• Responsible for managing Networking Administration, User Orientation, Active Directory uses and groups, Server and Domains, including updating server with the latest service packs and hot fixes and troubleshooting Active Directory replication problems
• Accountable for Vendor Management, FTP Management, IT-Budgeting, Inventory Management, Backup Management, IT Equipment purchase.
• Efficiently creating a standard process for group policy deployment
• Involved in the implementation and administration of DNS, DHCP and WINS
• Proficiently configuring and assembling the computer systems for the users
• Extensively participating in the installation and troubleshooting of all Operating Systems and Software, including access point installation and troubleshooting wireless network through wireless Routers
• Effectively organizing orientations and trainings with the users
• Actively monitoring and troubleshooting the backup related problems and ensuring scheduled and unscheduled backups as per the backup plans and restoration
• Meticulously preparing documentation for the server and all configuration settings
• Demonstrating latest cost-effective and scalable technologies, keeping an eye to the changing trends in the department and the marketplace
• Responsibly managing and supervising executives and providing training on IT dynamics
• Tactfully performing Ad-hoc tasks and other IT support functions
Yasikan Enterprises Pvt. Ltd. Jan 2005 – Sept 2007
Delhi, India
Sr. Technical Support Engineer - Desktop and Network (M.T.N.L. Broadband)
• Involved in the troubleshooting with Network, Configuration of Outlook express and MS Outlook, Installation of software, and troubleshooting of Broadband (ADSL Router) With WIFI
• Demonstrated excellence in the installation and configuration of Proxy Server, ICS, and FTP Server with third party software and Windows Service, including Web Server and performing downloading and uploading of data on WAN using third party software and VPN client and VOIP
• Proficiently configured the Video Conferencing and Net Meeting
• Successfully installed and configured IP and Web camera services
Education
MS (CA) Swami Vivekanand Subharti University, Meerut, UP 2017
BCA Nice management college, C.C.S University, Meerut, UP 2004
Interesting Projects and Accomplishments
Almost 2 years ago