DAY TO DAY WORK • Part of Engineering Team tasked with Securing On-Prem and Cloud Enterprise infrastructure by Designing, Maintaining, Updating and Optimizing Firewalls, IPS, DLP, EDR/XDR, Remote Access, WAF, Proxy, Load balancer, SIEM, IAM , etc. • SME for Security Platforms such as Checkpoint, Palo Alto, Fortinet, Arbor, Cisco firepower, Fire Eye, Algosec , F5 , Ivanti, Qradar, Splunk, Bluecoat , Elastic, AWS, Azure-Microsoft , etc. • Create, Manage, Update and decommission Firewall Policies and Third Party IPsec Site to Site VPN Tunnels • Use of ServiceNow platform for Change management and fulfilment requests. • Identify and Implement automation for Repetitive Task and Processes using Scripts and APIs • Address and resolve incidents effectively. Conduct Root Cause Analysis (RCA) and outline action items to prevent future occurrences • Participate in On call rotation duty for Operational Issues. • Conduct Risk Analysis to Identify Threats and Vulnerabilities and designate Risk level and cost/benefit of safeguards. • Create and Maintain Policies and Procedures based on International Frameworks such as CIS, NIST, ISO27001, PCI-DSS PROJECTS (Lead Role) • Implement Decryption of Encrypted Traffic across the Network using Palo Alto Firewalls • Migration of Checkpoint Firewalls to Palo Alto Firewalls • Secure Applications in the Cloud • Implement Algosec Solution for Automation • Implement Zero Trust Network Access for Remote and Hybrid Workforce • Moving some Branches to Palo Alto Prisma solution (SASE) for certain Application and Internet Access

DAY TO DAY WORK • Part of the Elite Diamond Team – Top Support Engineers of Checkpoint supporting most valuable customers (Fortune 100 companies). • Promoting compliance with Security policies and standards such as Network Attacks, cyber threats, Information loss, privacy, etc. • Remote / on-site Technical assistance, on-site projects (Migrations/upgrades) and technical training. • Troubleshooting large scale enterprise Networks through security analytics, data correlation, core dump/kernel panic analysis, log analysis, TCP/IP packet capture, etc. • Replicating real life enterprise network scenarios in lab environment. • Auditing of customer network and IT infrastructure for security vulnerabilities and performance bottlenecks. • Meeting SLA requirements for customer tickets, maintain high customer satisfaction including weekly conference calls with Customers’ Senior Network and Security Teams. • Coordination with R&D to report Bugs and testing hot fixes / patches. • Providing Assistance and guidance to Tier1, 2, 3 and Escalations Engineers. • Create How-to Documents, Presentation and Knowledge base articles for customers and Junior engineer. PROJECTS • Installation and configuration of Checkpoint Hardware and Software to replace other vendors (Cisco/Juniper/Fortinet,etc) at Customer DCs (multiple times) • Upgrade of Checkpoint Hardware, Software and Migration of existing Configuration (multiple times) • Installation of Multi-Domain Security Management and Dedicated Log Servers ( multiple times)

Certified Information Systems Security Professional

ISC2

2018

Certified Information Systems Auditor

ISACA

Certified Security Expert - CCSE R81.20

CheckPoint Software Technology