SUMMARY

• IT professional with 5 Years of extensive hands on experience in Security and SOC and proven expert proficiency in designing, engineering, configuring, and maintaining of large enterprise firewalls using as SIEM tools, IPS/IDS and vulnerability scanning(Qualys).
• Skilled & technically proficient with multiple firewall solutions, network security, and information security practices
• Firewall technologies including general configuration, risk analysis, security policy, rules creation and modification of Check Point Next - Generation Firewalls R65, R70 & GAIA R77.30 and R80,40, Palo Alto Next-Generation firewalls, Bluecoat proxies and Cisco ASA. knowledge in Cisco ASA 5000 series, configuration and maintenance, configuration and installation of IOS security features and IPS module, security risk analysis, attack mitigation & penetration tests
• Knowledge in IPSEC VPN design connection and protocols, IPSEC tunnel configuration, encryption and integrity protocols.
• Maintaining Corporate Firewalls by analysis of firewall logs and implementation of security firewall policies for the migration of Datacenter
• Knowledge of Intrusion Detection and Prevention System, DMZ, encryption, IPsec, proxy services, Site to Site VPN tunnels, SSL/VPN.
• Proficient in design, implementation, management and troubleshooting of Check Point firewalls, Palo Alto IDS/IPS modules, Data Center Migration, Foundry/F5 Load Balancers, F5-GTMs, Cyber Security, Amazon Web Service (AWS), and Bluecoat URL filtering & Packet Shaper systems.
• Knowledge in IPSEC VPN design connection and protocols, IPSEC tunnel configuration, encryption and integrity protocols.
• Experience on PCI, SOX, ITIL and ISO compliant security implementations on the firewalls and perimeter devices
• Advance Knowledge in Penetration testing tools such as Qualys, and NMAP.
• Good knowledge and experience in Installation, Configuration and Administration of Windows Servers … TCP/IP, Active Directory, FTP,SNMP,SMTP,DNS,HTTP,HTTPS,DHCP, TFTP, LDAP, Linux OS under various LAN and WAN environments

PROFESSIONAL EXPERIENCE

Confidential, Washington DC

Cyber Security Engineer

Responsibilities:

• Configuring, Administering and troubleshooting the Checkpoint and ASA firewall.
• Checkpoint hardware upgrading from 21300’s to 23900’s.
• Migration of checkpoint r77.30, r80.10 r80.20 and R80.40 software upgrade and also hardware upgrade from and 2300s to 26000s.
• Attending weekly diamond call with Checkpoint Diamond Engineer to discuss about weekly issues.
• Managing Cisco ASA 5585 through CLI and CDO.
• Working on Remedy tickets of ACLS and troubleshootings.
• Configuring failovers and deploying the ASA 5585 firewalls to agencies.
• Created Multi-context firewall for new agencies and separate subnets for agencies.
• Worked on Palo Alto Firewalls (5060 and 5200) of implementing ACLs, URL Filtering and APP filtering.
• Worked on F5-LTMs/GTMs migration Project for whole Enterprise approx. 2000 plus sites
• Worked on Datacenter migration project for DC-Gov.
• Worked on SSL Cert (Digi Cert) installing on F5 side and issue a self-signed cert to Backend servers.
• Worked on Arbor Prevail to monitor the outbound and Inbound traffic based on Protection groups based on our environment.

Confidential, Norristown, PA

Sr. Network Security Engineer

Responsibilities:

• Configuring, Administering and troubleshooting the Checkpoint and ASA firewall.
• Managing Checkpoint Multi-Domain manager (Provider-1), R77.20 Gaia, Checkpoint VSX clusters and cluster XL solutions.
• Managing Cisco ASA 5540, 5580 and Firepower modules via CLI and Cisco Security Manager (CSM).
• Deployed Paloalto-500 series device to the both Lab and production environment, managed them via Panorama.
• Worked on the migration of Cisco ASA firewalls to Palo Alto firewalls.
• Worked on IBM Qradar SIEM tool to monitor the traffic and analyze the traffic.
• Worked on Clear quest tool for solving all PJM users firewall forms and also reviewed by compliance team for approvals.
• Creating ACLs as per PJM user’s requirement to getting access for different servers like internal firewalls, dmz firewalls and inet firewalls and also worked on splunk for troubleshooting.
• Worked on emergency changes as per user’s requirements and creating ACL’s in cisco ASA firewalls in cisco CSM and checkpoint firewalls.
• Worked on Tufin Firewall optimization tool for firewall cleanup project by running reports and deleting unused rules.
• Involved in migration of Cisco ASA and checkpoint firewalls.
• Creating many ACL’s in both CISCO-ASA and Checkpoint firewalls R75 and R77.
• Configured Cisco ASA firewall to use multiple security levels and interfaces.
• Managed Cisco firewallsfrom both the Command line, ASDM and CISCO-CSM.
• Worked on expired firewall forms and firewall cleanup activities.

Confidential

SOC Analyst

Responsibilities:

• Worked as SOC analyst to monitor the Phishing attacks by using different McAfee SIEM
• Blocking unauthorized IPs and URLS by using Palo Alto External Dynamic List.
• Responding users Phishing email attacks and blocking it.
• Monitoring the enterprise traffic 24*7.