Lokesh R
Details
• Responsible for the planning and deployment of Nessus within the organization.
• Managing the enterprise infrastructure of the System Security team, such as configuration of File Integrity Monitoring systems, Data Loss Prevention (DLP) toolsets, enterprise Antivirus solutions, and endpoint encryption.
• Supported customers on various implementation of Windows Azure AD, MS office 365, Azure Single Sign On, On-premise, Single Sign On, Windows Azure.
• Provided expertise with incident response, security event monitoring, vulnerability management, asset security compliance and Data Loss Prevention utilizing McAfee Nitro (SIEM), McAfee ePO, McAfee DLP
• Managed Security and Compliance Dashboard inside Office 365 Tenant.
• Administration of Cyber Ark Privilege Accounts and Vaulting services.
• Build Safes and add servers into the safes as needed. Troubleshoot and fix all problems that arose in Cyber Ark due to ill-usage of the cyber ark from different users.
• Reviewed security logs (LogRythm SEIM) to ensure compliance with policies and procedures and identifies potential anomalies.
• Integrated IDS/IPS to Arc Sight ESM and analyzed the logs to filter out False positives and add False negatives in to IDS/IPS rule set
2021 : Present
Valley National Bank
Cyber Security Engineer / Information security Engineer
• Managed on boarding projects such as security hardware/software implementations and updates
• Manually Installed McAfee NDLP Prevent 10.x ISO.file and configured in McAfee ePO server
• Provided assistance to management with administration and configuration of critical enterprise security systems and software such as McAfee ePO, McAfee DLP, McAfee Complete Endpoint Protection-Enterprise, Proofpoint, etc.
• Provided expertise with incident response, security event monitoring, vulnerability management, asset security compliance and Data Loss Prevention utilizing McAfee Nitro (SIEM), McAfee ePO, McAfee DLP
• Managed McAfee ePO A/V environment using ePO console to pull reports to validate security protection compliance via DAT file updates, and take appropriate action to correct issues found within the ePO environment
• Generated security reports utilizing enterprise security systems such as McAfee McAfee ePO
• Provided technical security proposals, security presentation, installing and configuring Checkpoint and Palo Alto firewalls, VPN networks and redesigning customer security architectures
• McAfee WGW / Email Gateway - Managed proxy health and deployment of white and black lists
• Responsible for IMS (Incident Management System), an application for reporting issues
• Reviewed and created the FW rules and monitoring the logs as per the security standards in Checkpoint and Net Screen Firewalls
• Researched, designed, and replaced aging Checkpoint firewall with new next generation Palo Alto appliances serving as firewalls and URL and application inspection
• Assist in the implementation, setup, and management of Symantec DLP (Data Loss Prevention)
2020 : 2021
Radian
Security Engineer
• Knowledge of Authentication, End Point Security, Internet Policy Enforcement, Firewalls, Database Activity Monitoring (DAM), Identity and Access Management (IAM) solutions.
• Worked on design and implementation of Cisco Meraki MX64, MX400, MX320 for specifically DMVPN with split tunneling
• Responsible for Palo Alto configuration and troubleshooting of User-ID, APP-ID, Content-ID through Panorama
• Managed Fortigate 50,500 and 1000 series through Fortimanager
• Worked on design and implementation of Cisco Cloud Web Security with Cisco 1800,1900,2800 series routers with split tunneling
• Worked on configuration of Bluecoat Threat Pulse Cloud web proxy in all field sites
• Implemented DMVPN connecting to Head Office and the branch offices. Configured remote access VPN solutions for remote user using Juniper SSL VPN
• Configured NAT, Security Policies, and SNMP in SRX for CCTV sites
• Working experience in EIGRP, BGP, OSPF
• Advanced knowledge, design, installation, configuration, maintenance and administration of CheckPoint Firewall R75 up to R77.20 versions, SecurePlatform Installation, VPN
• Responsible to manage Checkpoint cluster and troubleshooting experience with Smartview tracker, Smartview monitor, kdebug and zdebug
• Experience in Aruba Wireless controller, i.e. Provisioning AP, Troubleshooting Wireless issue with users, Wireless profiles, etc.
• Worked on Netscout packet sniffing tool for troubleshooting
• Worked on JUNOS Space to integrate all CCTV site for monitoring and Configuration purposes
• Upgraded about 900 Juniper devices using JUNOS Space to recommended code
2018 : 2020
Avalon Healthcare Solutions
Firewall Security Engineer
• Support proactive detection and analysis of security incidents by Splunk Enterprise security
• Periodic assessment on incident trending to guide the strategy
• Conduct Digital Forensics research, Malware Analysis, Cyber Threat Intelligence.
• Vulnerability Assessment, reach conclusions, and make recommendations by Splunk
• Monitor networks for security events and alerts clients to potential (or active) threats, intrusions, and compromises by Splunk & Fire Eyes.
• Performing application vulnerability assessments
• Performing code review across a variety of programming languages
• Led IT service refresh efforts for large enterprise SOC environments with a focus on security solutions such as firewalls, data loss prevention solutions, web application firewalls, intrusion detection/prevention solutions, network sniffers, and more.
• Sound knowledge of TCP/IP networking, switches, routers, firewalls, VPNs, and encryption. possess demonstrated analytical ability and the ability to handle a large, complex workload. Monitoring indicators and warnings of threats and potential threats to voice, video, and data networks and associated systems;
• Reports and documents on business use cases, the creation and maintenance ArcSight rule sets, channels, and customized views;
• Short and Long-term security event trend analysis performed on a regular basis using Splunk, FireEye, and a dozen other cyber security tools
2016 : 2018
Calix
Cyber Security Analyst
• Performs event correlation using information gathered from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system IDS logs) within the enterprise to gain situational awareness and determine the effectiveness of an observed attack By using Splunk, Fire eyes, Snort, SIEM/ArcSight and Scanning tools& Network security tools (Nmap.Nessus, Wireshark, and tcp dump).
• Daily evaluation and update of SOC security posture, including firewall policy and other network devices in order to provide secure connectivity.
• ToDevelop and execute security processes, policies, and procedures.
• To Proactively identify, troubleshoot, and resolve vulnerabilities
• Performing code review across a variety of programming languages
• Work closely with our developers and management on security practices
• Participate in incident response and management as required 24x7
• Participate in multiple Projects and manage large projects as required
• To defense-in-depth security for the organization to protect critical IT assets and data.
2015 : 2016
Glance Fin
Data Security Analyst
About
Cyber Security Engineer with 8+ years of experience in implementing and reviewing Policy documents and remediating POAMs/Incidents as well as vulnerability scanning with extensive experience in network devices (switches, routers, hubs) and continuous monitoring (SIEM). I thrive under pressure in fast - paced environment while directing multiple projects from concept to implementation and working to prevent cyber-attacks especially in business and corporate settings. Experienced in Vulnerability management and remediation. Experience configuring and deploying McAfee modules and products like McAfee ePO, McAfee VSE, McAfee HIPS, McAfee Endpoint Encryption, McAfee Network DLP, McAfee DLP Endpoint, McAfee SIEM. Experience with SIEM tool like Qradar, Splunk. Experience in planning, developing, implementing, monitoring and updating security programs, and advanced technical information security solutions, and sound knowledge in SOX and PCI compliance requirements and understanding of NIST and ISO standards. Experience with industry recognized SIEM (Security Information and Event Management) solutions such as SNORT, Splunk, Log Rhythm and many other tools. Worked on McAfee HIPS product for Get the broadest IPS coverage, Safeguard against malicious threats, Get automatic security updates, Protection around the clock. Experienced in SIEM tool such as Arc Sight to manage security events and big data analytics. Manage and perform Nessus and Nmap scans before all production releases and analyze vulnerabilities and report to all stakeholders. Performs vulnerability assessments and penetration testing using automated tools on web applications. Switching tasks include VTP, Trunking, VLAN Change, ISL and 802.1q, IP and GRE Tunneling, VLAN, Ether Channel, STP, PVSTP and RSTP. Network security including NAT/PAT configuration, ACL, IDS/IPS and ASA/PIX Firewalls. Implementation and troubleshooting of technologies such as MPLS VPN, IPsec VPN, DMVPN, LDAP, AAA. Well Experienced in Protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, PAP, CHAP SMTP and PoP3. Expertise in IP Addressing, Sub netting, VLSM and CIDR. Implemented traffic filters using Standard and • Extended access-lists, Distribute-Lists, and Route Maps
Profile Photo
