SUMMARy

• Knowledge in implementing Domain controller security policy and Securing Active Directory, Managing users and groups, file systems.
• Auditing and Testing of Security Loopholes through Qualys, Nessus, Snore, ISS, NMap.
• Implementing and configuring VPN Servers and Client parameters.
• Knowledge in ITIL Information Technology Infrastructure Library
• Responsible for Business Continuity Planning and Disaster Recovery.
• Adroit in analysing information system needs, evaluating end-user requirements, custom designing solutions, troubleshooting for complex information systems management. Expertise in working in fast-paced, high-tech environments requiring skills in scheduling, management and team building.
• Monitor network connectivity using TCP/IP utilities, Test and analyze network traffic.
• Worked extensively on IPSEC VPN on Checkpoint Firewall NGX series configured Site to Site and Site to Client VPN.
• Risk Assessment and analysis of Vulnerabilities Threat and their impacts in the business.
• Unify and Comply: - Monitoring, Measurements, and Reporting for the security compliance
• Rendered recommendations to ensure the system is compliant with BS7799 standard and the following the process of ITIL
• At ease in handling activities pertaining Business Continuity Planning and Disaster Recovery and ITIL Information Technology Infrastructure Library . Successfully handled Audits and Tests for Security Loopholes.
• Implemented IBM ISS Site protector and Proventia management tool.
• All standards of Information Security Management system and BS7799 ISO 270001 certification used for data security. Domain controller security policy and Securing Active Directory, Managing users and groups, file systems.
• Well versed with Penetration Security testing tools vulnerability assessment tools like NESSUS, Ettercap, SNORT, Core Impact, Retina, and ISS. Holds to credit the successful implementation of:
• Comprehensive understanding of networking concepts pertaining to LAN, WAN, security on SOX and HIPAA, IT communication, WAN protocols, Networking devices administration and maintenance in multi-platform environments.
• Upgrading IOS versions on Cisco Switches and Router Through Cisco Network Assistance and TFTP
• Installed, Configured, Maintained Syslog server and Network Management and Monitoring tool like, Solar Winds and Cisco Works and MRTG.
• Worked extenively on Intrusion Prevention Systems, IDS, Cyber security through Honey Pots, mail and mobile threat
• Configured and Maintained Cisco SWAN Cisco Wireless Network
• Designed and configured Cisco, Juniper, Nortel Infrastructure and Architecture with Core layer switch 6500 Series and Distribution Layers Switches 3750 series. Also worked on 2800, 3800 Series Router's, and Cisco Wireless Network like, Cisco Aironet, Cisco 4400 and 2100 Wireless devices. Avaya IP Telephony, HP ProCurve 6600 Switch series, Cisco ACE 4710 XML Gateway Application Control Engine , Crossbeam C Series, Juniper EX8200, Juniper EX4200 series, Juniper M10i Series Edge routers, Juniper BX700 series router and MX series Routers, ISG2000 VOIP. Also worked on the Migration of the Network, Cisco 880G Series 3G Wireless Integrated Router and Cisco 3G WWan Interface Card for Verizon EVDO. Bluecoat Proxy server, RSA ACE Radius Authentication server,
• Configured VLAN, VTP, Port Channels, RIP, IGRP and EIGRP, BGP, OSPF, MPLS, Multicasting, Unicasting, OC-3, OC-12 Circuits, IPSEC, E1/T1 and ISDN, ATM, PPP, HDLC, SONET, xDSL, GRE,PDSN,AAA, RADIUS,TACACS.
• Appeared CCIE Routing and Switching Written and Scored 95
• Configured and installed Cisco WAAS Wide Area Application Services .
• Installed and configured all Cisco,Juniper and Nortel Products including Layer 2 and 3 Switches as well as Routers.
• Adopt at planning, designing, implementing, integrating, managing and supporting LANs and WANs with diverse platforms and productivity applications.
• over 9 years' of experience in Information Systems Management, Networking, and System Security with expertise in implementation, operations support functions of business solutions using IT as tool.

The Highlights of career entail:

• An Excellence Award from Emirates Airlines on completion of project way before deadline.
• An Excellence Award for Customer Satisfaction from Microlink Solution Pvt. Ltd
• Appreciation letter from GE Capital for successfully setting up the LAN WAN and from the Gujarat Sports Club in Dec, 1998

SKILL SET

Technical

Platforms: Windows 2003/2000/NT4.0 Server, Windows XP/2000/NT/9x, Linux, Sun solaris.

Networking: Windows Administration, TCP/IP, DHCP, DNS, WINS, Active Directory, VPN, IIS, Installation

Configuration of Cisco Router, Switch, Terminal Services, Firewalls, VOIP Devices.

RIP, EIGRP.

Systems: Compaq Proliant, Dell Power Edge HP 9000 Servers, Backups, Desktops, Laptops.

Software/Tools: Microsoft Exchange Server 5.5 / 2000/2003 Lotus Notes, Microsoft Outlook, Microsoft Office, PCAnywhere, Ghost, Antivirus, Microsoft Project.

Web Technologies: IBM Web server, IIS Servers.

Databases: SQL Server 2000, Oracle, MS Access2000

Security: Pix firewall, Cisco VPN, Intrusion Detection Systems, Internet Security Scanners, Ettercap, Core Core Impact, Retina, Check point firewall, Nokia Ipso, Snort, Wire shark, App Detect, webscarab

Webinspect, Qualys, nCircle, ArcSight, AppScan.

Proven abilties in installing, configuring and maintaining:

• Windows 2000 / 2003 Active Directory.
• Cisco 1700 / 2600 / 7200 / 3750 / 3845 series switches Routers As well as Pix Firewall all Series
• Cisco Layer 3 switches and Alcatel Devices.
• Linux. MS Exchange Server 2000/2003
• Routing and Remote access, Terminal servers.
• Oracle 8i / 9i and tuning the Oracle system for optimal performance.
• Hardware/ software services in a TCP/IP, IPX network-based platform.
• Web sphere Commerce Server 5.4 and Web sphere Application Server 5.4
• Lotus Notes, Exchange server 2003 with cluster management, SMS 2.0 / 2000, SQL Server 7.0 / 2000. Worked extensively on HP Blade servers and VMware Servers.
• Client/Server with DHCP, DNS, SNMP and required protocol stacks like TCP/IP, NetBEUI, IPX/SPX, RMON, and HSRP.
• Extensively worked on BGP, IGRP, EIGRP, RIP, and OSPF, Multicasting, Unicasting, MPlS

CAREER HIGHLIGHTS

Feb 09 to Till date State Govt. of Minnesota Working Remotely from New Jersey

Confidential

• Configured Cisco Security Products VPN ASA 5505 with Site to site VPN with IPSEC. Also configured Client to Site VPN with Checkpoint and Cisco Pix, Also on Cisco Security ASA 5530 Firewall.
• Worked on Arc Sight Log Management, Event Management, and Event Collection Also worked on Solar Winds Network Management Tools, and MRTG for Monitoring, HP Openview Management tools, Cisco Works Cisco Access control Servers.
• Upgraded the Nokia IP560 to 1220 and 1260, Installed Configured Checkpoint VPN and Provider-1.
• Designed and configured Cisco, Juniper, Nortel Infrastructure and Architecture with Core layer switch 6500 Series and Distribution Layers Switches 3750 series. Also worked on 2800, 3800 Series Router's, and Cisco Wireless Network like, Cisco Aironet, Cisco 4400 and 2100 series Wireless devices. Avaya IP Telephony, HP ProCurve 6600 Switch series, Cisco ACE 4710 XML Gateway Application Control Engine , Crossbeam C Series, Juniper EX8200, Juniper EX4200 series, Juniper M10i Series Edge routers, Juniper BX700 series router and MX series Routers. Also worked on the Migration of the Network, Cisco 880G Series 3G Wireless Integrated Router and Cisco 3G WWan Interface Card for Verizon EVDO, RSA ACE Radius server, Blue coat proxy server,
• Configured, Maintained Pix Firewall and Configured Cisco 4710 Load balancer and QOS.
• Worked on Juniper ISG 2000 VOIP , where configured H.323 , and SIP on application layer Gateway, Configured MGCP on Application layer on Integrated Access devices with Set-top-box.
• Configured and Maintained CSS Cisco Content Switch Services 11000 Series, F5 Load Balancers.
• Configure , Installed and Maintained WAAS Wide Area Application Services . Configured Traffic interception, Planning and Designing.
• Worked on Symantec Endpoint Encyption and protection with Protection Suite Enterprise Edison, Configured Symantec NAC Network Access Control.
• Penetration testing of SQL Server along with code injection with Acunetix, Webinspect, Retina, Wireshark, Snort , Hot site and Cold site Disaster Testing, Vulnerability Assessment with ISS, Threat Assessment, Risk Analysis, Worked extensively on Appscan Audit Edition for Vulnerability management and to check the Softwares, Servers, and Network compliance.
• Implemented IBM ISS site protector SP6 and Proventia Management Tool.
• Configured and Maintained Cisco Call Manager for IP telephony.
• Installed and Configured Checkpoint and Crossbeam Firewall with RSA Secure ID
• Configured RIP, IGRP and EIGRP, BGP, OSPF,VTP,VLAN,STP, MPLS, Multicasting, Unicasting, IPSEC, E1/T1 and ISDN, ATM, PPP, HDLC, SONET, xDSL, GRE, NAT, PAT,QOS, RSVP, RADIUS, TACACS, AAA, PDSN, A11,A12 Authentication for CDMA
• Installing, Configuring and Maintaining Cisco and Juniper layer 3 switches, Routers and Firwall.
• Rendered recommendations to ensure the system is compliant with BS7799 standard and the following the process of ITIL
• Interpreting information security policies into operational use by Assessing the network Vulnerabilities and Penetrating
• Worked extenively on Intrusion Prevention Systems, IDS, Cyber security through Honey Pots, mail and mobile threat
• Continuous monitoring of security activities in the enterprise's infrastructure and business applications
• Planning, designing, developing, testing and implementing information security requirements into an enterprise's business process along with the team
• Responsible for disaster recovery planning and business recovery process with the senior management
• Performing Business Impact Analysis for any new software for AT T.
• To develop an implementation plan that meets security requirements identified in risk analysis with the team
• Designed and reviewed DMZ and IDS.
• Responsible for Penetration testing and Vulnerability Assessment, tools like App Detect, Webinspect, Burp suite, Webscarb, Qualys, APP Scan, Ethereal and Wireshark, Airsnort Sniffers, SMART,MIMIC, BMC-Patrol.
• Maintaining and configuring Security to the Databases on SQL Server, Also taking backups of SQL and Oracle Server.
• Competently managed projects in multiple geographies on SFTP, HTTPS, SSL/TLS, proxy servers, SSH and SCP.
• Taking care of external vulnerability reporting sources, which provide information that may require changes to the information security in application and infrastructure.

Adeptly:

• Risk Assessment and analysis of Vulnerabilities Threat.
• Designed and implemented quality processes and standards
• Defined process improvement plans.

Rendered consultancy advisory services for projects pertaining to:

• Vulnerability Management
• Infrastructure/Application Security Design Reengineering and working on ESM and Log Logic reports for events.
• Hacking Countermeasures with RSA Anti-Fraud on Phishing, Trojans, spywares
• Attack Synthesis and Countermeasure Tactics
• Enterprise Defense Strategies
• Reverse Engineering and Enterprise Audits and provided the OS Hardening guidelines to comply with the Security Policies and Standards of the company on Windows, Linux, and Solaris servers including Exchange server 2004.

Sr. Network / Security Team Lead

Confidential

Significant Contributions

• Monitored, evaluated and contributed to the resolution or escalation of network infrastructure, security operations, other IT infrastructures and business critical applications
• Installed Configured and Maintained the Checkpoint NGX65, with Site to Site and Site to Client VPN with IPSEC, Configured IKE certificates for the sites, Also worked on Juniper firewalls, Crossbeam C series.
• Provided assistance in the implementation of mitigating controls and processes.
• Configured Maintained Cisco Call Manager and AVAYA IP Telephony on 8500 Series Switch and QOS.
• Designed configured the Cisco Network infrastructure and Architecture.
• Configured and Maintained CSS Cisco Content Switch Services 11000 Series, F5 Load Balancers
• Designed and configured Cisco, Juniper, Nortel Infrastructure and Architecture with Core layer switch 6500 Series and Distribution Layers Switches 3750 series. Also worked on 2800, 3800 Series Router's, and Cisco Wireless Network like, Cisco Aironet, Cisco 4400 and 2100 series Wireless devices. Avaya IP Telephony, HP ProCurve 6600 Switch series, Cisco ACE 4710 XML Gateway Application Control Engine , Crossbeam C Series, Juniper EX8200, Juniper EX4200 series, Juniper M10i Series Edge routers, Juniper BX700 series router, Cisco 880G Series 3G Wireless Integrated Router and Cisco 3G WWan Interface Card for Verizon EVDO, RSA ACE Radius Server, Blue coat proxy server.
• Worked on RIP, IGRP and EIGRP, BGP, OSPF,VTP,VLAN,STP, MPLS, Multicasting, Unicasting, IPSEC, E1/T1 and ISDN, ATM, PPP, HDLC, SONET, xDSL, GRE, NAT, PAT,HP open view, Cisco works, QOS, RSVP,RADIUS,TACACS,AAA,PDSN. A11,A12 Authentication for CDMA
• Installing and resolving issues on Windows XP, 2000, and Applications like Lotus Notes, Microsoft Exchange.
• Ensured equipment sitting and protection for UPS, Cabling Security, fire, theft, explosives, smoke and water.
• Provides references to documentation which may support the policy, e.g. more detailed security policies and procedures for specific information systems or security rules users should comply with.
• Handled Active Directory Migration Tool for migrating users and computers from Novell 4.9 to Windows 2000 Server.
• Installed, configured and maintained:
• MS Exchange Server 2000, Along with Windows 2003 on HP blade server and configured VMWare Server.
• Cisco VOIP Device.
• Reverse Engineering and Enterprise Audits and provided the OS Hardening guidelines to comply with the Security Policies and Standards of the company on Windows, Linux, and Solaris servers including Exchange server 2004.
• Group policy objects issues.
• Trust relationship issues.
• User profiles, Network Drives, manual migration, rights issues.
• Carried out Troubleshooting for:
• Batch scripting for network backup and automation
• Penetration testing of SQL Server along with code injection with Acunetix, Webinspect, Retina, Wireshark, Qualys, Snare, Nessus, Snort , Hot site and Cold site Disaster Testing, Vulnerability Assessment with ISS, Threat Assessment, Risk Analysis, Worked extensively on Appscan Audit Edition for Vulnerability management and check the Softwares, Servers, and Network compliance.
• Worked on Symantec Endpoint Encyption and protection with Protection Suite Enterprise Edison, Configured NAC.
• Worked extenively on Intrusion Prevention Systems, IDS, Cyber security through Honey Pots, mail and mobile threat
• Played a pivotal role in the successful implementation of the Active directory and Group Policy for 50,000 Users Desktop in two Domains.
• Worked extensively on Penetration testing tools like App Detect, webinspect, SQL code injections, ASP code injections.
• Executed responsibility for internal security audits and Penetration Testing.
• Configured Cisco Security Products VPN ASA 5505 with Site to site VPN with IPSEC. Also configured Client to Site VPN with Checkpoint on Splat, Nokia and Cisco Pix, Also on Cisco Security ASA 5530 Firewall.
• Instrumental in ensuring Network Printer administration for 500 Printers, Printer server with scan to email, FAX, Scan to File with LDAP. Installation of TCP/IP Printers for Windows printing and for Mainframe Printers with optra forms.
• Managed documentation for SOP and Blackberry Support, Desktop Support across USA, CANADA, JAPAN, MEXICO, UK ,Support to Level 3 Helpdesk for Desktop issues, Creation of Dell PC /laptop images using Symantec Ghost
• Configuration Troubleshooting of TCP/IP, DHCP DNS, RAS, Windows VPN. Providing technical support in a client service based environment as well EIGRP, RIP, OSPF, OC-3, HSRP.
• Provides Local Network support NT Security. Using Dame Ware Desktop remote control, Windows Net meeting, TridiaVNC that allows troubleshooting user issues remotely from a host machine.
• Using REMEDY Ticket Software for trouble tickets and managing Inventory, 30 Help desk support for other locations through out Mexico and Canada.
• Handled successful migration of Plotters and Printers from one domain to another and troubleshooting if not migrated.
• Ensured 24/7 Support and on call Support for Datacenter.

New Jersey Sr. Network / Security Engineer

Significant Contributions

• Head team of Project Engineers for timely execution and completion of projects
• Competently rendered support to over 3000 workstations and 50 servers in the distributed computing environment with high availability requirements and disaster recovery.
• Worked extensively on Cisco switches like 2950 Access layers switch , 6500 Core series Switch and 2800 and 3800 Series routers, Cisco ACE 4710 XML Gateway Application Control Engine , Cisco ASA 5500 series, with Checkpoint NGX and Pix firewall, Juniper firewall, CrossBeam C series, Nortel passport 8600, 8100 Edge switch, Nortel 1150 Routing Swtich, Nortel passport router 5430, and Nortel Contivity Vpn, Juniper EX8200, Juniper EX4200 series, Juniper M10i Series Edge routers, Juniper BX700 series router, RSA ACE Radius server, Bluecoat proxy server, Cisco Security Products like ASA , Pix , VPN and IDS
• Worked on BGP, OSPF, EIGRP, Multicasting, VPN,VTP, STP,Muliticast,MPLS,RADIUS,TACACS,AAA
• Worked on Cisco Call Manager and Avaya IP Telephony switches 8500 Series
• Worked extensively on Penetration Testing and Vulnerability Assessment.
• Configured and Maintained CSS Cisco Content Switch Services 11000 Series, F5 Load Balancers
• Monitored LAN/WAN infrastructure with Open View and third party tools.
• Worked extenively on Intrusion Prevention Systems, IDS, Cyber security through Honey Pots, mail and mobile threat
• Backup/restore operations on Exchange 2000, SQL 2000, and Windows 2000 Server.
• Installed configured the VMWare Servers. Also worked on HP Blade servers for installing Exchange server.
• Penetration testing of SQL Server along with code injection with Acunetix, Webinspect, Retina, Wireshark, Qualys, Nessus, Foundstone, Snort , Hot site and Cold site Disaster Testing, Vulnerability Assessment with ISS, Threat Assessment, Risk Analysis, Worked extensively on Appscan Audit Edition for Vulnerability management and check the Softwares, Servers, and Network compliance.
• Competently performed IIS Server configuration for FTP and Intranet Services, SFTP, HTTPS, SSL/TLS, proxy servers, SSH and SCP.
• Creation, Computer System validation, and rollout of new desktop/laptop images.
• Training of new technicians staff personal.
• Asset management, deployment, recovery.
• Help desk and call tracking support using Remedy.
• Ensured:
• Active Directory Migration Tool for migrating user passwords from Windows NT 4.0 or Windows 2000 Server to Windows Server 2003 domains.
• Migrating of NT4 network to Windows 2000 platform, Exchange 5.5 migration to Exchange 2000.
• Backing up all users data, migrating data from old NT 4.0 server to new Windows 2000 server
• Agent data migration, multi castings' imagine new server rollout. Client upgrading from old NT 4.0 server and workstations OS to 2000 server and XP workstations.
• Configuring ISMS Information Security Management System BS7799
• Proficiently executed the responsibility of:
• Configured and maintained Symantec endpoint protection and Symantec Critical System Protection.
• Nokia 440 and Barracuda firewall solution.
• ORACLE 9i Server and Client.
• Cisco and SONIC TZ 170 Firewall with VPNs connecting Remote offices.
• Installed, configured and maintained:
• Established and administered corporate client Internet services, dialup access, wireless, and VPN remote networking and also configured Symantec's PC anywhere.
• Effectively performed rollout/implementation of new servers, workstations, laptops, printers, wireless access points, and network infrastructure.
• Infrastructure/Application Security Design Reengineering and working on ESM and Log Logic reports for events.
• Hacking Countermeasures with RSA Anti-Fraud on Phishing, Trojans, spywares