SRIKANT DASONDHI

Information Security Specialist

Email - ac54w1@r.postjobfree.com, Mobile - +971-*********

A dynamic, driven, business-oriented core IT/Information Security Specialist with more than 9+ years of experience in Cyber Security, MSS, SOC operations and expertise in ISO 27k, PCI-DSS, Incident Response, Security Risk Assessments & Audit, BCP & DR, user access review, SIEM & Endpoint security.

Detailed knowledge of security tools, technologies and best practices, resilient experience in various domains of information security such as Security Incident Analysis & Response, malware Analysis, Threat Analysis for protecting networks, systems and information assets for diverse companies and organizations.

Experience: Over 9+ Years of experience.

EDUCATIONAL QUALIFICATION:

Secured FIRST CLASS Degree in Bachelor of Computer Application (BCA) from Bangalore University, India, in the year 2008.

Secured FIRST CLASS Degree in Master of Computer Application (MCA) from Akhil Bhartiya Mukt Vidyapith University India.

Technology Specialized:

Information Security Domains – Security monitoring, Malware Analysis, Incident Response, Threat intelligence, Vulnerability Assessment, Penetration Testing, Risk Assessment, Cyber forensics, Security Audits, Compliance, Change Management System, Firewall Audits, Impact Assessments, GAP Assessments, PCI-DSS, ISO 27001,User Access Review, Privileged identity management.

SIEM Solutions - IBM Qradar, HP Arcsight & RSA envision.

Vulnerability Assessments/PT – IBM App scan, Quest VA & CCM, Burp suite, GFI Languard, Nessus & Beyond trust Retina scanner.

Firewalls – Cisco ASA, Checkpoint, Juniper, Fortigate, RSA two factor authentication, VPN's

Network and Host based Intrusion Detection - Tipping point, Cisco, IBM Site protector, Mcafee NSP.

Cloud – AWS and Microsoft Azure

DLP – Forcepoint Triton, Symantec

ATP – Crowd strike, Fireeye

PAM (Privileged access Management) – Arcos, BT

Security awareness and Phishing – Wombat, Phishme

PROFESSIONAL CERTIFICATION:

AWS Certified Solution Architect – Associate

Microsoft Azure Certified- MCSA Cloud

Cloud Computing Security Knowledge (CCSK)

Checkpoint Certified Security Administrator (CCSA)

EC-Council Certified Security Analyst (ECSA v8)

Cisco Certified Network Professional (CCNP)

Certified in Ethical Hacking (CEH)

Cisco Certified Network Associate (CCNA)

Cisco Certified Security Administrator (CCNA Security)

Certified Information System Security Professional (CISSP)

Arcos Certified Administrator (Privileged Access Management)

WORK EXPERIENCE:

From Aug 2014 to Till Date

Company : OSN – Gulf DTH FZ LLC (United Arab Emirates)

Designation : Information Security Specialist

Handling Incident Response, Malware analysis, Threat Intelligence and security awareness portfolios.

Reviewing policies on SIEM, creating rules for 0-day attack scenarios to detect the IOCs and IOAs.

Implement and manage information security for the organization. Perform regular information security risk assessments and mitigation plans. Collaborate with internal auditor for enhancing information security processes.

Managing Security incident management, Malware analysis, and Threat Intelligence and security awareness program portfolios.

Preparing RFPs and RQPs for multiple security projects and helped OSN to choose the suitable solutions to achieve their security roadmap and engaging for future business strategic decision making.

Developing test use-cases and performed POC on DLP, PAM, Change tracking and APT projects.

Technical lead for DLP project and successfully deployed the DLP agents on endpoints for 1500+ users in 7 regions.

Deployed DLP with Web GW and Email GW in 7 regions.

Investigate security incidents and coordinate their resolution as defined in the IT security policies.

Support the technical security and engineering design review for proposed IT infrastructure changes.

Monitor and respond to network, system, and application logs security events.

Perform historical analysis of defined security devices and logs to look for threat trends (past 7 days, past 30 days, past 90 days). Perform triage activities on potential threats discovered during historical analysis.

Coordinate the development and maintenance of information security policies and standards.

Conduct regular risk assessment on the IT infrastructure and services.

Define methodologies and risk assessment tools.

Develop / Implement /Review security baseline documents.

Perform Vulnerability scanning on our network and make sure that vulnerabilities are addressed.

Managing Security tools DLP, SIEM, Vulnerability scanner and Penetrations test.

Perform automated and manual security assessments to identify configuration and patch related vulnerabilities using commercial and open source tools.

Receive network alerts, outage notifications, or other networking issues affecting the department/unit and disseminate such information to appropriate Team.

Define and implement processes for assigning User access, revoking User access privileges, and setting file protection parameters.

Ensure processes are in place for the detection of security violations.

Monitor compliance with information security policy and standards.

Control and Monitor physical access to information assets, including physical security of equipment and authorization procedures prior to physical access to restricted areas.

Maintain ongoing internal audit processes, which record system activity such as log-ins, file accesses, and security incidents.

Perform penetration testing for internal network and follow-up end to end with security vendor for the web application PT and make sure that vulnerabilities are addressed.

Maintain and publish corporate-level information security standards, procedures, and guidelines, including compliance monitoring procedures.

From Nov 2012 to July 2014

Company : Union National Bank (United Arab Emirates)

Designation : Information Security Consultant (Security Operation Centre)

Job Profile :

Worked in IT Risk & Security Team, Managing the overall (Global) security of Union National Bank.

Participated and closely worked in achieving PCI-DSS and ISO 27001 certification for the Bank.

Perform investigations relating to suspected breaches of information security policies and standards or security compromise.

Perform Vulnerability Assessment of all the bank application and clients on quarterly basis.

Monitor and continuously review the systems on an on-going basis, for the compliance with the bank information Security Policies, procedures and standards and initiate corrective actions in the event of any violations.

Coordination of external penetration testing activities. Coordination of end point security & File integrity software Implementation and other specific security tools across bank infrastructure.

Conduct security awareness programs. Perform audits and physical reviews, and conduct application Security reviews.

Quarterly presenting threat landscape to VP and Directors, preparing security presentations for senior manager on ad-hoc basis.

Implementation, Administration and troubleshooting various Network Security (firewalls, proxy, IPS) and SIEM Products (HP Arcsight).

Implemented HP ArcSight express solution for the bank and integrated all the devices with Arcsight to collect the logs from that.

Monitoring security devices from monitoring tool HP ArcSight and resolving the issues.

Creating channels in ArcSight tool and monitoring the events from all kind of devices.

Implemented / Deployed ArcSight Box for our bank environment.

Installing ArcSight connectors, creating rules, query, and active channels and analyzing the events from the devices/servers.

Following the ITIL process as per the organization SLA.

Monitoring IPS/IDS, update the sensor whenever required and analyze the logs and taking necessary action as per the event.

Intimating concerned team about the issues / incidents. Interacting with concern Team to get the solutions for the unresolved issues.

Developing flex connectors for the events which are not supported by ArcSight agent.

Providing useful and required reports to the customers by generating from Arcsight.

Taking necessary action if any vulnerable traffic is captured and intimating customer about the vulnerable traffic to take action.

Taking back up if the event retrieval is critical.

Signature Fine-tuning, Creating Responses, Database Management, Software Upgrade, Troubleshooting IDS / IPS component related issues, SDEE, RDEP.

Configuring Site-to-Site VPN, Remote access VPN in Cisco ASA Checkpoint, Netscreen Firewall and Cisco VPN Concentrators. Trouble-shooting the VPN problems, creation of new ID’ s and passwords for secure client users, assigning tokens for RSA Token ID users, importing/exporting tokens, creating groups and assigning group authentication ID and password to the users.

Worked on implementing Tripwire and monitoring the security devices from

Managing F5, cisco, Juniper, Tipping point, Ironport, Symantec Endpoint Protection Devices of our Bank.

From Jul 2010 to Sep 2012

Company : Wipro Limited (India)

Designation : Network Security Engineer (Managed Security Services MSS)

From Jan 2010 to June 2010

Company : DELL Computers (Bangalore)

Designation : Network Support Engineer (Server and Network)

From Oct 2008 to Dec 2009

Company : Accenture services Pvt Ltd (Mumbai)

Designation : L1 Support Engineer

Achievements & Projects:-

Participated and worked closely to achieve PCI-DSS and ISO 27001 certification for union national Bank.

Implemented HP ArcSight SIEM solution and integrated all the systems for Wipro customers.

Implemented IBM Qradar SIEM solution in OSN & UNB.

Implemented Vulnerability management tool Beyond Trust Retina in OSN.

Implemented VA scanner & patching solution (GFI Languard) in OSN.

Implemented Forcepoint DLP solution in OSN.

Implemented Arcos Privileged access management solution in OSN.

Implemented Forcepoint DLP, WG and Email gateway solution in OSN.

Implemented APT solution in OSN.

Implemented change tracking tool Tripwire in OSN.

Received Best Employee certificate by Union National Bank for achieving the PCI DSS certification for the Bank.

Received Best employee of the year certificate by ING Vysya Bank customer during working with Wipro Limited.

OTHER ACTIVITIES & HOBBIES: -

Listening music, Travelling, Playing Badminton, Cooking.

Personal Details

Date of Birth 14th June 1988

Nationality Indian

Marital Status Married

Languages Known English, Hindi and Bengali

Present Address Dubai (United Arab Emirates)

Permanent Address Dhanbad, Jharkhand, 828103

I hereby declare the information furnished above is true to the best of my knowledge.

(Srikant Dasondhi)

Contact this candidate