Engineer Manager
Resume:
RAJASEKAR SUBBAN
Contact: +91-984******* ~ E-mail: *********.**********@*****.***
Professional Summary
Expertise in Endpoint Protection using Symantec Endpoint Protection tool to monitor file and system activities on every endpoints, analyzing reports from the centralized management console and securely enabling endpoints to interact with the third-party or native hardware devices though various communication ports.
Working with Vulnerability Assessment using Nessus to scan internal and perimeter systems against known vulnerabilities and coordinating with remediation group.
Working with Infra monitoring tools like OpManager and ObserveIT to monitor the infra devices availability and to ensure the compliance of those devices by detecting insider threats and help forensic investigation.
AWS, VMware & Microsoft Certified Professional with 15 years of rich experience in effective management of IT Infrastructure Project for new facilities, Data Center Upgradation of Hardware & Software, Microsoft Technologies, VMware Virtualization, Storage Design, IT Asset Management and Network Security.
Demonstrated excellence in leading enterprise-wide virtualization effort with accountability of overseeing vendor / hardware qualification, architecture / design, installation, configuration, migration & documentation.
Expertise in Business Continuity and Disaster Recovery Planning; delivered maximum business value for Infrastructure, Data Centre Technologies, Large Scale Systems and Networks.
Adept at maintaining complete IT infrastructure including Server Hardware, VMware Environment, Data Storage, Switching & Routing, Backups, E-Mail, Firewall, Spam Filtering, AV, VPN, Mobile Devices, VOIP Systems, Network Monitoring and all Microsoft Technologies.
Demonstrated excellence in building & implementation of ITIL and ISO27001; adept in aligning IT processes with ITIL by establishing Change, Incident and Problem Management meetings and decreasing turnaround time.
Strong Customer Centric Approach with excellent analytical, coordination, presentation and leadership skills; skilled in grasping the big picture and conceptualizing solutions.
Professional Certifications / Training
AWS Certified Security - Specialty (SCS)
InsightVM Certified Administrator
AWS Certified Solutions Architect - Associate - CSAA
VCP6 - VMware Certified Professional 6 Data Center Virtualization
CCA-V – Citrix Certified Associate - Virtualization
MCSA - Windows Server 2012
CCA - Citrix Certified Administrator for Citrix XenServer 6
VCP510 - VMware Certified Professional 5 Data Center Virtualization
MCTS - Administering and Deploying System Center 2012 Configuration Manager
Prince 2 Foundation
ITIL-V3 - Foundation Certification in IT Service Management
IBM Certified Associate System Administrator - Lotus Notes and Domino 6/6.5
Experience Chronology
Oct’98 to July’99 - Customer Support Engineer at Softgen Systems – India,
July’99 to May’01 - Customer Support Engineer at Info Services (ESP FOR IBM) – India
June'01 to July'03 - System Engineer at Mohsin Haider Darwish L.L.C. - Sultanate of Oman
Oct'03 to Mar'04 - System Administrator at Info Services (ESP FOR IBM) – India
Mar’04 to Dec’04 – Test Engineer at HCL Technologies Limited – India
Dec’04 to Feb’19 – Verizon Data Services India Pvt. Ltd - India
Since Feb’19 with International Flavours and Fragrances India Private Limited, Chennai as Vulnerability Management Specialist
Key Accountabilities
Symantec Endpoint Protection Manager Upgraded, Deployed and Implemented on Servers and workstations
Block the Malicious Domains and IP’s in Symantec Endpoint protection Firewall
Quick respond to virus outbreaks by identifying out-of-date clients and deploy updated virus definitions
SIEM: Core relating the logs in Dell Secureworks for Intrusion Monitoring, Analysis and Threat Intelligence
Potential Threats are monitored and analysed in Endpoint Detection and Response (EDR)
Secure Email Gateway Threats are Analysed and Administrated using Mimecast
Asses and submit infra devices against known vulnerabilities using Rapid7
Monitoring and Analysing Office 365 Security and Compliance Reports
Analysing security event logs and threat logs from Zscaler
Recommend improvements in security systems and procedures
Anti-Malware Administration and analysis using Malwarebytes
Audited networks and security systems to identify vulnerabilities
Based on reports the Endpoints are Monitored with up to date virus definitions and Patch management
Dec’04 to Feb’19 - Verizon Data Services India Pvt. Ltd., Chennai as Consultant System Administrator
Key Accountabilities
Security Compliance
Symantec Endpoint Protection
Install and maintain Symantec Endpoint Protection Manager 12.x.x, 14.x.x that manages 10000+ clients (Servers, Thinclients, VM and Desktops)
Enable and manage the devices connected to client by Using Device control policy on SEPM (e.g. restrict the USB devices connected & allow Storage devices as read-only and logging the file copied to storage devices)
Prevented users from accessing hardware devices on their computers (e.g. USB drives, Serial & Parallel Ports, DVD/CD drives, Portable devices)
Whitelisted Hardware Devices are controlled by using unique Device ID’s and GUID
Password protected to prevent the SEP Client uninstallation, Stop SEP Service in Endpoint Devices
Application control allows or blocks the defined applications that try to access system resources on Endpoint Devices through Network and Physical devices (USB drives, DVD’s, Network Drives)
System lockdown configured to allow Whitelist applications to specified client groups (secured Desktops) by using checksum utility to create a file fingerprint list, to block unapproved applications
Firewall policies configured to allow/block, traffic/devices based on the location awareness (corp. n/w or Non-corp. n/w), from which client is connected. The managed clients require similar access levels are configured by Location Settings. So the client can access the network from different location applying different policies
Customize the Thinclients, Laptops with Organization standards by installing endpoint security, to restrict access only to Verizon VPN Severs
To reduce the scan time and increase the system performance on Endpoint devices exclude files, folders third party applications by using Exception policy
Replication Partner enabled data to be duplicated between databases on separate sites
Quick respond to virus outbreaks by identifying out-of-date clients and deploy updated virus definitions
Moving to NextGen application Crowdstrike which performs Endpoint Protection, malware detections and USB device Controls
Safend Installed and configured enable granular level of device restriction (Allowing specific USB devices on specified clients). Later we migrated to Symantec Endpoint Protection
Airdefense
WLAN network Monitoring for protection against wireless attacks
The Whitelist devices are controlled by WIFI MAC Address
Real-time detection of rogue devices with Automatic rogue termination for rapid response to attacks, protect the network until the device removed physically
To Track Rogue device in WLAN, location tracking used by the received Signal Strength Indications of the device as seen by at least 3 sensors to triangulate a position.
The Spectrum Analysis to monitor and troubleshoot even elusive, Intermittent interference sources
Vulnerability Assessment (Nessus)
Asses and submit infra devices against known vulnerabilities using Nessus tool.
Coordinate with application/system owners to fix and re-assessment.
Scan internal and perimeter devices using different profiles in the view of security standpoint.
Information Network Security Monitoring (OpManager and ObserveIT)
Monitoring the availability
Infra application service port monitoring
ObserveIT identifies and eliminates insider threats from employees. Detect potential insider threats in real time, using user activity monitoring data captured on UNIX/Linux, Windows, and Mac endpoint devices
Session monitoring tools used to be alerted potential breach of policy
ObserveIT initiates forensic recording for high-risk activity, which makes it easy to watch exactly what users are doing and reduce investigations to minutes instead of months
Incident Management / Problem Management / Change Management
Ensuring that the goals of the Incident Management process are achieved; restoring normal service as soon as possible based on customer perspective and within defined SLA; detecting, logging, categorising and prioritising incidents; providing initial Incident Support.
Closing incidents after verification from users; defining and planning separate procedures for major incidents; ensuring adherence to SLA and priority based management.
Resolving problems & issues within set timelines thereby developing the Knowledge Base; ensuring that the issue does not happen again.
BCP - Business Continuity Plan
Responsible for development of Plans for IT Support Teams, including Analyse, review and test implementation plans
Act as the designated person in the Incident Response process during an outage
Conduct studies to determine the required level of BC/DR intervention necessary for continuing its operation
Consult with individual areas, identifying needs, gathering information, and analysing data to assist in their development of BC/DR plans.
Prepare management reports for IT Support Teams and overall plan status as necessary
Project Details – dCloud, Verizon
Deploy and manage a large infrastructure of Desktop Virtualization, capable of handling 4000+ virtual desktops, accomplished with help of Citrix Xen Desktop 5 on top of VMware ESX 4.0
The Application virtualization is accomplished with Citrix XenApp 6.0 with Rollup Pack 1 wherein we have installed more than 200+ applications
Provisioning and De-Provisioning users in cloud with preliminary information collected as part of end-user calibration exercise
Incident management with Citrix Desktop Director & vCenter
Problem management with Citrix provisioning server
Change management based on organization policy for cloud environment
Responsible for coordination of remote infrastructure implementation/integration and complete implementation of the project through all stages.
Design, deployment, and maintenance of a broad range of Microsoft Technologies including:
Windows Server 2003, 2008.
VMware ESX 5.0,5.5
Citrix Xen App 7.6
SQL Server 2008, 2012
Netapp FAS 3240
Symantec Endpoint Protection 12.1.x, 14.x.x
ObserveIT (Screen Capture End Users Activity)
Airdefense (WLAN Network Monitoring)
Education Chronology
BBA from DDE, University of Madras.
Diploma in Electronics and Communication Engineering from State Board of Technical Education, Chennai.
Advanced Diploma in Computer Hardware & Network Engineering from Micro Code Consultants, Chennai.
Awards and Appreciations
2005 - On the Spot Award for Outstanding Performance
2007 - U Deserve Award towards for Airdefense Implementation
2009 - Recognition and Appreciation for 5 years of Dedicated Service in Verizon
2014 - Recognition and Appreciation for 10 Years of Dedicated Service in Verizon
2015 - Spotlight Award for Creating a Fabulous Customer Experience
2015 - Spotlight Award for Performance Excellence to ObserveIT Infrastructure (New
Technology Implementation)
2018 - Recognition for Migrating Endpoints from SEP to Crowdstrike Endpoint Protection
2018 - Spotlight Award for commitment to Verizon’s core values
Personal Details
Date of Birth - 11-Jun-1973
Passport Number - L2891217
Telephone - +91-984*******
Address - D61, Anandham Flats, 156 HIG Flats,
Sidco Nagar Main Road, Villivakkam, Chennai – 600049.
Email - *********.**********@*****.***
Project Management
Virtualization & Enterprise Storage Design and Implementation
Network Infrastructure Design and Maintenance
Windows 2008/2003/ 2000 & Active Directory Administration
Data Center Operations
Service Delivery
ITIL Framework
VMWare Administration
Mail Administration
Windows Administration
Security Administration
SLA Adherence
Process Improvement
Cost Reduction
Contact this candidate