Post Job Free
Sign in

Security Manager

Location:
United States
Posted:
November 10, 2014

Contact this candidate

Resume:

Resume

Sandip Bankewar

*.* years of experience in Information Security.

E-mail: *********@*****.***

Mobile: +91-844*******

EXECUTIVE SUMMARY

. Total 6.6 years of experience in Information Security domain in

organizations like Leo Technosoft, Infosys Technologies and SecurView

System Pvt. Ltd. Subsidiary of SecurView Inc. USA.

. Work experience as Team Lead, Handling SIEM Operations, Designing and

preparing policy documents for SOC, preparing technical videos for

SIEM, Escalation of Incidents, Managing Cloud Infrastructure using

Vsphere, doing analysis of Security Events observed in customer

environment to ensure that the client IT infrastructure is secured.

Duties include incident handling, incident response and escalation

management in a 24x7 environment. Perform routine actions to monitor

security, service outage and performance issues on customer sites.

. Worked on Identity and Access Manager(OpenIAM), Handling as a

Secondary Responsibility

. Handling reposposibility of Sales: Preparing videos, SIEM demos to

customer

TECHNICAL SKILLS

. Security Information and Event Management (SIEM) - eIQ, Sentinel,RSA

Envision,Alienvault's OSSIM

. Incident Handling, Incident Management

. Risk Assessment

. Vulnerability Management

. Implemented, Configuration and Maintenance of Kayako Helpdesk

. Nagios, MRTG, OpenVAS, NMAP, Nessus etc.

. Unicenter Service desk for ticketing system

. LAN/ WAN, Cisco Routers, Cisco PIX Firewall, Cisco IPS.

. Implemented, Configuration and Maintenance of Squid Proxy Sever

. Implemented, Configuration and Maintenance of Symantec Management

Console

CERTIFICATIONS

. CCNA with the score of 97 %.

. ISO27001 LA

. ACSE-ACSA (Alienvault OSSIM SIEM Product certification)

. ITIL with the score of 85%

PROFESSIONAL EXPERIENCE

Leo Technosoft Pvt. Ltd.

Duration - 02nd May 2011 till date

Designation -Information Security Expert

Location -Pune

Roles and Responsibilities:

. Handling SIEM operations includes Designing and preparing Security

Operation Center Documents like SOC Manuals, SOC Process Manual,

and Security Analyst Manual.

. Implementation, Configuration and Maintenance of Alienvault's

OSSIM.

. Customer Interaction

. Designing Correlation rules

. Defining an Escalation flow for all customers.

. Worked on Policies and procedures.

. Escalation of Incident

. Configuration of all SIEM components i.e. Server, Sensor, Database

and Framework.

. Maintenance and Management of all components using Vsphere

. Analysis of Security Events

PROJECT EXECUTION

Name: - Implementation & Configuration of Alienvault OSSIM

Security Information and

Management tool.

Description: - Aim of this project is Implementation, Configuration, and

Analysis of

Security events in customer environment to ensure

that the client IT infrastructure is

Secured & troubleshooting of issues. Timely

escalates to the client for any

Malicious or Suspicious activity on Client's

Network Devices and their

Application/Database Servers.

Role: - Information Security Expert (Team Lead)

Responsibity:-

Building SOC and SIEM Team in India.

Analysis of Security Events Using Security Information and Event

Management

(SIEM) tool Alienvault's OSSIM

Handling the team of 5 person

Work on Baselining

Work on Client Onboarding

Administration of OSSIM

Interacting with clients for any issues.

Name: - Integration of Identity and Access Manager with SIEM

Description: - Aim of this project is to Integrate Identity and Access

Manager with SIEM,

Collecting logs from different cloud

applications for Security Analysis,

Collecting logs from Identity and Access

Manager,

Graphical Representation of data for easier

analysis,

Role: - Project Lead

Responsibity:-

Dashboard Design

Architecture Design

Implementation and Configuration.

Building rules to detect threats in cloud applications.

Name: - SIEM in Amazon Environment.

Description: - Aim of this project is Implementation, Configuration of

SIEM tool in Amazon

Environment.

Role: - Information Security Expert (Team Lead)

Responsibity:-

Architecture Design

Implementation and Configuration.

Name: - SIEM Development.

Description: - Aim of this project is to develop SIEM tool.

Role: - Business Analyst

Responsibity:-

Working with Development Team to understand them

@ SIEM product.

How SIEM work, Architecture.

Adding SIEM features to make product effective.

Functional Testing of SIEM Product

Name: - (Logstash/Kibana/Elasticsearch) Log Management tool

Implementation

Description: - Aim of this project is to Integrate

Logstash/Kibana/Elasticsearch with

CloudAccess SIEM.

Role: - Implementation Lead

Responsibity:-

Working on Installation, Configuration of

(Logstash/Kibana/Elasticsearch) Log

Management tool.

Integration with CloudAccess SIEM tool.

PROFESSIONAL EXPERIENCE

Infosys Technologies

Duration - 28th Feb 2011 to 17th April 2011

Designation -Senior Information Security Engineer

Location: Chennai

Key Responsibilities: Malware Analysis, Analysis of websense logs.

PROFESSIONAL EXPERIENCE

SecurView Systems, subsidiary of Securview Inc, USA

Duration - 03rd March 2008 to 17th Feb 2011

Designation -SOC Engineer

Location-Pune

Roles and Responsibilities -

. Monitoring customer networks in the Security Operations Center to

identify security breaches, service outages, network performance

issues.

. Intruder Detection by using the software Sentinel and eIQ on

firewall, IDS, IPS.

. Administration of Service Desk Ticketing System.

. Initiate incident resolution process by opening tickets and keep it

up to date with additional information.

. Verify periodic security analysis reports for customers.

. Update customer's security devices for signatures, rules, ACL's,

patches, etc.

. Managing and maintaining event correlation systems and

discovery/detection tools.

. Update daily shift reports.

. Keeping up-to-date on the latest security information including

security vendor's products.

. Interacting with clients for any issues.

. Designing Report format for clients to be delivered on

daily/weekly/monthly/quarterly basis.

PROJECT EXECUTION

Name: - Implementation & Configuration of Novell's Sentinel

Security Information and

Management tool for Axtel

Description: - Aim of this project is Implementation, Configuration and

Analysis of

Security events in customer environment to ensure

that the client IT infrastructure is

Secured & troubleshooting of issues. Timely

escalates to the client for any

Malicious or Suspicious activity on Client's

Network Devices and their

Application/Database Servers.

Client: - Axtel

Role: - Network Security Consultant

Responsibity:-

Analysis of Security Events Using Security Information and Event

Management

(SIEM) tool Sentinel

Handling the team of two person

Work on Baselining

Work on Client Onboarding

Administration of Sentinel

Customer Interaction

PROFESSIONAL EDUCATION

QUALIFICATION UNIVERSITY/INSTITUTION YEAR OF PERCENTAGE

PASSING

B.E. (I.T.) Government College of 2007 62.03

Engineering

Amravati

HSC Phulsing Naik College 2003 73.33

Pusad

SSC Aided Highschool 2001 72.14

Darwha

EXTRACURRICULAR ACTIVITIES

. Active member of organizational community in college.

. Head of Programming Contest in College Technical Festival

. Arrange the blood donation camp in college.

. Participative member of various committees in School and College

PERSONAL PROFILE

Date of Birth : 02nd June 1985

Languages Known : English, Hindi & Marathi

Correspondence Address: Shraddha Bunglow, ground floor, Near Mointara

Hospital, Behind

Vaibhav Theater, Hadapsar, Pune

411028

Marital Status : Single

Nationality : Indian

Sandip Bankewar



Contact this candidate