Network Security senior consultant | 14+ Years Experience | WAF, Firewall, Azure

With over 14 years of experience in the Cloud and Network Security domain, I bring deep expertise in managing teams, leading transformation and transition projects, and implementing robust security solutions. I have hands-on experience with a wide range of security technologies, including:

• Web Application Firewalls (F5, Azure, AWS)
• Next-Generation Firewalls (Palo Alto, FortiGate, Check Point, Cisco)
• Intrusion Prevention Systems (IPS)
• Secure Web Gateways and Proxies

Throughout my career, I have successfully driven initiatives that enhanced security posture, optimized performance, and aligned IT strategies with business goals. I am passionate about continuous learning and eager to expand my horizons across different areas of Information Technology. I am currently seeking opportunities where I can leverage my experience, knowledge, and skills to contribute meaningfully to organizational success while continuing to grow professionally.

WORK EXPERIENCE:

• Senior Consultant, Capgemini India (July 2021 - Present) - Multi-Client Cloud and Network Security Project and Support
• Senior Security Consultant, Infosec Ventures (Jan 2020 – June 2021) - IDFC Bank
• Senior Security Engineer, Softcell (Oct 2019 - Jan 2020) - HDFC Bank
• Senior Consultant, Capgemini India (April 2016 – Oct 2019) - France Region Network and Security Team
• Network and Security L2 Engineer, National Stock Exchange Of India (Jan 2011 – Mar 2016) - IT Network and Security Department

EXPERIENCE

Senior Cloud and Network Security Consultant Capgemini India July 2021 - present Airoli, Currently leading the security operations for Canon's applications, with a focus on fine-tuning and optimizing security postures across F5 ASM, Azure WAF, and AWS WAF based on traffic analysis for onboarded applications, ensuring signature set is up to date, impact analysis of new security features, and applying it on technology, strengthening the application security at the same time ensuring zero or minimal disturbances for genuine traffic also guiding and supporting operation team for new application onboarding and any issues, ensuring documentation, Change, and Incident process is properly followed, arranging KT session within a team, managing resource availability, promoting for teamwork, cooperation, team building, ensuring client is up to date with all information related to tasks performed/ ticket handled by a team, Participating in monitoring, detecting, reviewing, and adjusting WAF Policies rules during Application Code Change, participating and helping to solve Major incidents with other teams, ensuring clients requirement is understood appropriately and responded on timely manner.

• I led the transition project for the Fresenius Digital Technology account, prepared a plan, and received handover from the client technical team, closed minimum required open positions; was actively involved in hiring for FDT and other accounts, ensuring all risks and KT sessions were recorded and documented correctly, and obtained sign-off from the client, built a team to support operation work by arranging knowledge sessions and transferring knowledge, arranged technical sessions to build technical competency within a team and successfully build a team to meet go-live deadline for handling security operation within 4 months from a transition start date.

• For the CSL account performed a migration from Cisco firewall to Palo Alto firewall, replaced old out-of-support Palo Alto firewalls with new Palo Alto firewalls, migrated from Virtual panorama to M600 Physical Palo Alto Panorama, deployed new Palo Alto firewalls, performed security posture strengthening, configuration, testing and troubleshooting on newly deployed Palo Alto firewall for multiple site locations.

• For the Network Rail account Analyzed the Azure cloud infrastructure and prepared a plan to deploy Fortigate HA on Azure by creating a new transit vnet, built connectivity between Firewall and Other application VNET using Vnet peering and between Firewall and another site over IPSEC VPN, restricted traffic using Firewall policy and Network security group feature of Azure, Performed Routing changes on firewall and Azure Cloud, deployed Internal and External load balancer to achieve HA connectivity between Firewall.

• For VPK Group and Capri account planned and deployed Azure Firewall and Azure WAF, Performed planning of connectivity between Azure Firewall and VWAN and between Azure Firewall and Application VNET, Planned and performed routing and connectivity configuration changes on Azure Firewall, VWAN, and Application VNET.

• For the Follette account performed security posture strengthening on Palo Alto firewalls, Performed Vulnerability assessment and deep analysis of logs and alerts to ensure whether alerts are false positive or not, applied.