Technical Support Security

Mohammad Talib Hasan Shekh

Mobile No: - +966-*********

E-mail – *****.*****@*****.***

Career Objective

Seeking a position to utilize my skills and abilities to achieve professional growth while being resourceful and innovative for the organization I am associated with.

Certifications / Trainings

Cisco Certified Network Associate- Security (CCNA-S)

Cisco Certified Network Associate (CCNA)

Certified Ethical Hacker (CEHv9)

Zscaler Certified Cloud Administrator-IA (ZCCA-IA)

Accredited Configuration Engineer (ACE) - Palo Alto Networks

Network Security Expert (NSE-1)

ITIL v3 (Training from CyberAry)

Technical Preview

Platform

Product

Skills

Security

Firewalls-Cisco ASA, Checkpoint, VSX, Fortinet Firewalls, FWSM, Palo Alto, Juniper SRX

DDOS-Arbor Peakflow SP, Arbor APS, Checkpoint DDoS Protectors,

Plan, Implement, Administration, upgrade, troubleshoot and Health Checks

VPN

Site-to-Site, SSL VPNs,

Plan, Implement, Administration, troubleshoot and Health Checks

DDoS

Arbor Peak flow SP, Arbor APS, TMS, Checkpoint DDoS Protector, Akamai Kona Site Defender

Implement, Administration, troubleshoot and health checks

Networks

Routers and Switches, Wireless Routers, Access Points

Implement, Administration, troubleshoot and health checks

Microsoft

Windows server 2008, 2003, 2000

Administration, health checks

Professional Experience Profile

CCNA-S, CCNA and CEH v9 Certified with 8+ years’ experience in the areas of Network Security and Technical Support. Experience in installation, administration and maintenance, troubleshooting, up gradation of network security devices. Possess strong communication, analytical, problem-solving and relationship management skills.

Company Name: - Halian International

Duration: 20 August 2017 to till date

Designation: - SOC Engineer

Project- Symantec (Mobily Telecom) - Saudi Arabia

Working as a part of SOC team for Mobily telecom (Saudi Arabia). Responsibilities includes deploy, maintain, troubleshoot network security infrastructure and monitor and mitigate DoS / DDoS Attacks.

Job Responsibility: -

Act as technical expert on network security technologies like multi-vendors firewalls (Cisco, Checkpoint, VSX, Juniper SRX, Fortinet), VPNs (Site to Site and SSL VPN) and DDOS Solutions (Arbor Networks APS), ACS, ISE.

Maintain, deploy, upgrade and troubleshoot network security infrastructure solutions including firewalls, VPNs, DDoS Solutions, ACS, ISE and Intrusion Prevention Systems

Perform analysis and diagnosis of complex networking and security problems

Deploy and support multi-vendor network & security solutions

Deploy and support network and security monitoring & management tools

Prepare/update HLD & LLD, SOP and technical documentation

Support on Sev 1, 2 incidents to resolve within SLA

Perform RCA based on OEM inputs

Provide improvement opportunities and recommendations on network and security

Perform tool evaluation and produce recommendations for improvement in network security technologies.

Work with Global IT support groups, OEMs, vendors, partners and service providers

Provide training to operations team (L1)

Learn and keep up-to-date with the latest technology products

Previous Employer

Company Name: - HCL Technology

Duration: 18 June 2015 to 6- June 2017

Designation: - Senior Specialist

Project- DNB Bank (Norway)

Worked with one of the largest financial customer in Nordic region. Responsibilities include Maintain, deploy, upgrade and troubleshoot network security infrastructure.

Job Responsibility: -

Maintain, deploy, upgrade and troubleshoot network security infrastructure solutions including firewalls, DDoS Solutions (Arbor Peakflow SP, Akamai Kona Site Defender, Checkpoint DDoS Protectors), VPN solutions (Site to Site and SSL VPNs), ISE and skybox firewall assurance tool.

Troubleshooting day to day related issues on security devices.

Monitoring and management of security devices like checkpoint firewall, DDOS protector, skybox etc.

Managing the DDOS protector / AKAMAI Cloud based DDOS solution/ ISP DDOS solution to protect customer network from DOS / DDOS Attacks.

Co-ordination / escalation for security related calls.

Providing technical support to Customers and assistance in deployment of their network security infrastructure

Managing multi-vendor devices as Cisco, Arbor, and Checkpoint, Arcsight, Skybox etc.

Providing the monthly / weekly / daily report as per customer requirement.

Providing security solution as per customer requirements.

Company Name: - Wipro InfoTech Ltd

Duration: 8 July 2013 to 13 June 2015

Designation: - Engineer - Security Management

Project: Bharti Airtel (India)

Worked as a part of GSOC team. Responsibilities includes to Maintain, deploy, modify existing links to monitor for DoS/ DDoS attacks and mitigate DoS / DDoS Attacks using Arbor Peakflow SP solutions.

Job Responsibility: -

Manage the Arbor Appliance Threat Management System (TMS-3050); Collector Platform 5500; Flow Sensor 5500; Portal Interface 5500.

Create the Manager Object, TMS Template & TMS Group as per customer requirement.

Analysis the ISP Label Packet and check the Alerts High/ Medium in TMS.

Packet analysis & Mitigate DDoS attack in Airtel Bharti ISP Network.

Create the ACL as per DDoS Attack Outgoing TCP RST Misuse Attack; Incoming TCP RST Misuse Attack; Incoming Profiled Bandwidth Attack; Incoming Profiled Protocol UDP Attack; Incoming UDP Misuse Attack & apply the ACL in customer Alert Mitigation Templates.

Configure the Countermeasure Setting TCP Connection Reset; TCP SYN Authentication; HTTP Rate limiting as per customer requirement.

Check the routing path in Airtel ISP network & check the community for DDoS mitigation.

Share the DDoS Report Daily/Monthly/Weekly to Client.

Checkpoint Firewall configuration troubleshooting & up gradation.

Providing technical support to Customers and assistance in deployment of DOS / DDOS solutions.

Managing multi-vendor devices as Cisco, Arbor, and Checkpoint etc.

Configuring and Troubleshooting Virtual Private Networks (VPN).

Planning, Configuring and Troubleshooting Access Control Lists (ACL).

Planning, Configuration and Troubleshooting NAT

Company Name: - Vcare Call Centers India Pvt Ltd

Duration: 27 Oct 2011 to 1 July 2013

Designation: -Network Administrator (Network & Security)

Worked as a part of internal IT team. Responsibilites was Deploy, maintain, and troubleshooting of network / security devices like firewalls, routers, switches and servers.

Job Responsibility: -

Network designing and implementation as per the complex requirements but at the same time providing complete redundancy in allotted budgets.

Deployment, configuration, maintenance and Troubleshooting firewalls, routers, switches for various services like protecting internal network, VPN solutions, NAT solutions etc.

Providing VPN Solutions for the connectivity between our branch offices and our clients.

Handling Escalated operational calls of High Value clients related to Browsing issues, Application related issues, bandwidth related issues, high latency & packet drop issues, Mail Related IP blacklisting query, and spamming, particular host unreachability issue etc.

Coordinating with upstream bandwidth Provider for issues like Route optimization, bandwidth issues, IP reachability issues, etc.

To increase speed and fast convergence configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.

For Security purpose disabled all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed.

Implemented STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP

Implementing various NAT solutions to protect networks from different domains.

Planned, tested and evaluated various equipment, systems, IOS and procedures for use within the Network / security infrastructure.

Company Name: - Amadeus India Pvt. Ltd.

Duration: 9 April 2009 to 25 October 2011

Designation: Network Support Executive

IT Infrastructure Management & Technical Support for internal and external Customers. Amadeus India provides complete IT enabled services for the travel and tourism industry.

Job Responsibilities:-

Installation and configuration of Routers, Switches.

Backups of Network Devices- Routers, Switches on regular basis.

To monitor alarms of the network using Whatsup gold monitoring tool.

To manage the alarms by raising trouble tickets and performing defined troubleshooting steps.

To perform regular network throughput analysis, capacity planning with detail analysis of the network behavior.

Troubleshooting the Network issues and links, follow up with service provider to find fault tolerance.

Conducting Periodic reviews with the customer and analyze calls and their trends to take proactive measures to reduce knowledge-based calls.

Assisting in the implementation & monitoring of the network (WAN), troubleshooting network problems and conflicts. Addressing performance bottlenecks and ensuring maximum network uptime.

Suggesting improvements in the operations and processes to make the system foolproof.

Identify any network abnormalities like bandwidth usage, traffic pattern and immediately notify identified stake holders of the same

Academic Qualifications

Passing year

Qualification

Institute

2008

B.Com

Nagpur University

I hereby declare that all the above particulars are true and correct to the best of my knowledge and belief.

Date: (Mohammad Talib Hasan Shekh)

Contact this candidate