Network Security Vulnerability Management
Resume:
Naveen Panjala
Contact: 469-***-****
Email: ******.**************@*****.***
LinkedIn: linkedin.com/in/naveen-goud-206326106
Career Objective:
An open-minded individual with a flexible approach to work, which enables accommodation of change. Able to work well with a group or on own initiative. Willing to take any responsibilities and assignments, regardless of the challenge. A self-reliant individual with the ability to pick up new ideas and concepts quickly.
Professional Summary:
Having 10+ years of experience in Network& Security, Cloud Infrastructure Operations and RPA Ui-path installations.
Good hands-on experience in all Security components like firewalls, proxy and Load balancers and mail gateway, CISCO, Wireless, SIEM Operations, RightFax, Azure, Google Cloud, and Infra Operations.
Highly proficient in Planning, Configuration and Troubleshooting of LAN, WAN, CISCO ISE and RADIUS and TACACS based networks.
Good hands-on experience in working as a Cloud Administrator on Microsoft Azure, involved in configuring virtual machines, storage accounts, resource groups.
Hands on experience in SIEM * LogRhythm & ArcSight – and integration with security products.
Experience on Mailing Security, DLP Solution’s - WAF [Web Application Firewall]
Extensive experience in analyzing information system needs evaluating end-user requirements and security systems such as network security software and hardware, security monitoring systems, encryption software, threat, and management services & identity management solutions.
Having strong knowledge on ACI operations and Network connectivity.
Hands on experience on CyberArk, incident response and vulnerability assessment.
Strong knowledge and experience in the areas of security assessment, vulnerability management, risk based threat analysis, security mitigation techniques and tools like Nexpose and RedSeal, Qualys.
Having a expert knowledge of project management and handling individual projects.
Good understanding and approach in security products like FortiGate, checkpoint, Palo Alto, watch guard, F5 and Symantec mailing gateway.
Experience in security incident management
Good hands-on experience in Networking & Troubleshooting (LAN & WAN), Security issues, TCP/IP, Routing Protocols (BGP, OSPF).
Good Exposure on Troubleshooting, Backup, application support, Networking issues, TCP/IP network connectivity across MPLS, VPN and Point-to-point WAN.
Exposure in Discussion by attending the management review meetings (Weekly and monthly operation reports) and discuss on various projects and technologies.
Educational Qualifications
Bachelor’s Degree in Electronics & Communication Engineering from JNTU-Hyderabad
Professional Certifications
CCNA (Routing & Switching) Certified Cisco ID # CSCO12829349
CCNA Security certified Cisco ID # CSCO12829349
ESCRM L1 SIEM certified.
Azure Cloud Associate AZ103 ID# H373-0091
Certified Network Security Specialist – ICSI
Fortinet Network Security expert NSE-1 & NSE-2
CyberArk Trustee certified #593767
Oracle Cloud Infrastructure Associate
Oracle Cloud Infrastructure Cloud Operations Associate
Oracle Cloud Infrastructure 2019 Certified Architect Associate
Foundations of Operationalizing MITRE ATT&CK
Technical Skills
Networking
LAN/WAN, MPLS, VPN, DNS, CCNA (Routing & Switching), Dynamic Routing (OSPF, BGP) Static Routing (Configuration), Routers and Nexus Switches, WLC wireless, DNAC, ACI, Infoblox (DHCP), RightFax, IP Subnetting and Telnet/SSH Clients.
Security
Firewall: Palo alto, Panorama, Fortinet, and check point and Watch Guard.
F5- Load balancers, DNS, Proxy and Mailing Gateway.
Wireless technology (Cisco, Aruba, 802.11a/b/n/ac), WAF, IPS, ISE, SIEM, CyberArk, incident and vulnerability assessment.
Cloud
Cloud Solutions: Microsoft Azure, Google Cloud Platform (GCP), Oracle
Operating Systems/Scripting
Windows, Linux, Unix, Python
Monitoring systems
SolarWinds, Splunk, Qradar, Qroc(Cloud), LogRhythm, ArcSight, Spectrum, skybox, netbrain, Rendezvous, Cacti, Netscout, Kentik, Darktrace, Netround, Cisco Umbrella and ExtraHop.
Tools
Nimsoft, Nagios, Qualys, CyberArk, Jenkins and NFAST, OCR (Intelligent character recognition, Intelligent word recognition and Optical mark recognition)
Ticketing Systems
BMC remedy (ITSM), Service now, and JIRA.
Incident Management
Service Management
Problem Management
Change Management
Professional Experience
Client
Standard chartered Bank (US Project)
Location
Malaysia
Period
Dec 2021 – May2023
Role
Delivery Consultant (Network and Security Manager)
Responsibilities:
Liaise with a wider team to achieve our client’s business outcomes.
Worked in banking environment to provide Network Solution for various network projects over APAC region.
Worked together with engineering functions, reviewed and updated infrastructure designs based on standard engineering principles, and could incorporate local, enterprise and strategic requirements into the designs and product produced.
Strong background in the area of telecom networks and/or enterprise networks.
Experience in delivering comprehensive architecture strategy, proposed delivery ecosystem, and multi-year implementation plan.
Worked both independently and leading teams and be comfortable working in unstructured situations and solving non-standard problems.
Providing technical and business input for IT infrastructure projects related to data networking, and related technologies. Understand and support global telecommunication technology directions.
Worked on Security products like FortiGate, Palo Alto, Checkpoint, Cisco and Watchguard firewalls.
Worked on Wireless technologies – Cisco, Aruba wireless configurations and 802.11a/b/n/ac).
Installing, troubleshooting and maintaining the network and firewalls.
Worked on DNAC center for configuring the access switches and access points.
Coordinating with the Network Security Engineers in developing and documenting processes/procedures used by the Network Security Department.
Worked on Google, Azure cloud operations. Migrating the on-premises applications to cloud.
Monitoring and reporting operational status of production network attached devices.
Worked on DNS naming server with DNS BIND source and DHCP for IP mapping.
Liasing with internal stakeholders and senior leadership
Driving optimisation of incident impact assessment and response times
Responsibility for managing the end to end vulnerability management workflow
Working with the Information Security Engineering team in the identification, design and implementation of new tools as requirements arise, consolidating and rationalizing the various vulnerability data from different scanning tools to remove duplicates, apply additional context to provide meaningful information for metrics that help prioritize and drive remediation activities
Strong knowledge and experience in the areas of security assessment, vulnerability management, risk based threat analysis, security mitigation techniques and tools like Nexpose and RedSeal
Worked on Change, Service, and Incident management.
Create security reports used for troubleshooting and problem resolution.
Integrating various platforms with CyberArk, such as different LDAP providers, Windows Servers, UNIX Servers, Databases, and networking Devices.
Perform health check monitoring on all CyberArk servers to ensure consistent availability of system to end user.
Knowledge of CPM and PSM connector customization.
Worked on Documentation for client operations review – weekly and monthly.
Preparing the LLD and HLD for Network governance projects.
Preparing the design and diagram for network architecture on Visio.
Worked on SDWAN and ACI operations.
Worked on CISCO ISE and wireless for user connections and authentications.
Worked on RightFax in delivering the upgrade, troubleshoot and custom solutions.
Worked on providing the access to users on AD, RightFax Enterprise manager and Microsoft exchange.
Configured Wireless controller Cisco, Aruba, and access points.
Worked on site survey for wireless environment.
Responsible for performance analysis, proactive troubleshooting, and capacity planning for the Wireless Network platforms.
Monitoring application security through implementation of security policy & maintenance of security tools and operational maintenance to network components.
Worked on Telnet/SSH clients for accessing the network and security components.
Performing the Risk assessment and vulnerability assessments on the network setup.
Preparing the documentation for Risk Management register and incident management reports.
Worked with ISP providers for MPLS connectivity and configurations.
Provided training to the L1 engineers on network and security operations.
Worked on network administration and monitoring tools - SolarWinds, Rendezvous, Splunk, LogRhythm, ArcSight, Spectrum
Worked on Integration and configuration for tools - Nimsoft, Nagios, Qualys, CyberArk, Jenkins and NFAST.
Company
Nitco Solutions SDN BHD
Location
Malaysia
Period
Nov 2020 – Oct 2021
Role
Sr. Technical Consultant (Infra Operations Lead)
Responsibilities:
Liaise with a wider team to achieve our client’s business outcomes.
Leading a team of 4 people and involving in designing and implementing contracted security services in customers' environments according to their project requirement.
Work directly with the sales teams to identify and refine end-client business requirements and associated security services solutions.
Working on Security products like FortiGate, Palo Alto, Checkpoint and Watchguard firewalls.
Coordinating with the Network Security Engineers in developing and documenting processes/procedures used by the Network Security Department.
Monitoring and reporting operational status of production network attached devices.
Worked on CyberArk, incident response, vulnerability assessment.
CyberArk configuration, responsible for creating, maintaining and monitor the CyberArk policies and onboarding process. Responsible for application integrations, manage Vault Failover-Failback.
Intermediate to expert support of the following hardware, software and protocols: Cisco Routers (2600, 2800, 3800, 7200, ASR), Cisco Switches (3500, 3800, 6500, 7600), Nexus (3000, 5000, and 7000) firewalls, SNMP, RADIUS, TACACS, VPN and CISCO ISE.
Working on deployment, mainly on MBSS (Minimum Baseline Security Standard) across Network security infrastructure.
Upgradation of Network Security Devices like next generation firewalls Palo Alto, Checkpoint, Fortinet, Watch guard and Bluecoat Proxy.
Managing F5 LTM across the network, renewing SSL certificates (Certificate Authority).
Preparing reports or other necessary documentation as required to meet project deliverables.
Participating in strategic and tactical objectives to include new product offerings, identify additional client needs and generate new business leads.
Providing solutions on security operations - switching, routing and firewall technologies.
Configured Wireless controller Cisco, Aruba, and access points.
Currently working on Windows and or Linux operating systems.
Experience working with network administration and monitoring and troubleshooting tools e.g., Solar winds, Spectrum, Nagios, Nimsoft and Splunk.
Client
Celcom
Location
Malaysia
Period
June 2017 – Oct 2020
Role
Network and Security Operations Lead
Responsibilities:
Incident Response within SLA.
Work with cisco routing and switching in all parameters.
Worked on Wireless technologies – Cisco, Aruba wireless configurations and 802.11a/b/n/ac).
IOS up-gradation of all cisco switches and routers like Nexus, 2960, 2911, 3900 and etc.
Firmware upgrade of Firewalls, F5 and WLC’s.
Worked with teams in FortiGate and Palo Alto firewall configuration & implementation within production and DR data center.
Hands-on deployment experience on MBSS (Minimum Baseline Security Standard) across Network security infrastructure.
Worked on firewall issues and applying the rule base polices on firewall.
Worked on DNAC center for configuring the access switches and access points.
Worked on DHCP for IP mapping and DNS registrations.
Having exposure in SOC and supported other security technologies like Symantec Email Gateway, F5 and Bluecoat proxy configuration.
Upgrade Network Security Devices like next generation firewalls Palo Alto, Checkpoint, Fortinet, BlueCoat Proxy.
Build, manage and troubleshoot Site-to-Site Cisco VPNs, traffic flow issues, inspection.
Manage F5 LTM across the network, renewing SSL certificates (Certificate Authority).
Packet Capture, Log Analysis, handling Daily operations issues and troubleshooting related to user’s access issues, Traffic flow monitoring, managing users on AD, provisioning VPN access, LDAP Browser, Process Explorer, Access-List changes on firewalls.
Preparing the design and diagram for network architecture on Visio.
Managed Windows 2012 servers, troubleshooting IP issues and working with different support teams.
Using Power shell to write, debug scripts to automate the processes and do migration of VM, involving copying and creating of VHDS.
Analyzed information system needs evaluating end-user requirements and security systems such as network security software and hardware, security monitoring systems, encryption software, threat and vulnerability management services & identity management solutions
Worked with customers to deploy, troubleshoot and monitor devices on live networks to ensure error-free networks implementation.
Worked on multi-vendor security infrastructure in enterprise as well as service provider networks with working knowledge of Firewalls, Proxy, WAF, Threat and Malware analysis tools.
Configured of Microsoft DevTest Labs to migrate the virtual machines from one subscription to another subscription.
Managed day to day activity of the cloud environment, supporting development teams with their requirements.
Creating Labs, Virtual Machines along with setting up policies and using Formulas and Custom Images to deploy the network.
Managed the ticketing system of Rackspace to resolve issues on the cloud environment with the cloud management third party team.
Worked on Visual Studio Team Confidential to manage a backlog for the daily activities.
Performing the Risk assessment and vulnerability assessments on the network Infra.
Monitoring application security through implementation of security policy & maintenance of security tools, user’s rights management, vulnerability assessment, and so on
Implemented network security policies, application security, advanced malware protection with remediation techniques, WAF, access control and corporate data safeguards.
Acting as a security expert in information systems, including security systems such as network security software and hardware, security monitoring systems, encryption software, threat & vulnerability management services, software, identity management solutions, and other required solutions.
Responsible for project execution/sustenance and problem troubleshooting on multiple technology areas related to Network and Security.
Working to F5 load balancers like creating DNS entries, A records and renewing certifications for business applications
Configured Wireless controller Cisco, Aruba, and access points.
Worked on Google, Azure cloud operations. Migrating the on-premises applications to cloud.
Configured the Express route for Azure cloud and migrated the applications to Google and Azure cloud from on-premises.
Involved the major issues like P1 and P2 cases and brought up with the right resolution within the SLA.
Worked on CyberArk, incident response, vulnerability assessment and Monthly risk.
Developed and designed security devices and software to ensure the safety of clients’ or internal products and information.
Experience in the information security and/or IT risk management field related to network, host, database and/or application security in multiple operating system environments is required
Experience with vulnerability management tool (Qualys, others)
VM Operate: Focused on processing Security Advisories to Rate and Profile Vulnerabilities as well as providing a deep understanding of the issue, impact to the firm, and solutions needed to mitigate/remediate
Acts as lead on incident and vulnerability response
Operating regular inspections of systems and network processes for security updates
Conducting audit process for initiating security and safety measures and strategies
Customizing access to information per rules and necessity
Maintaining standard information security policy, procedure, and services
Monitoring of company’s network security controls
Updating the latest security and technology developments research/evaluating emerging cyber security threats and ways to manage them plan for disaster recovery in the event of any security breaches.
Monitor for attacks, intrusions and unusual, unauthorized or illegal activity
Determine security needs, developing and implementing solutions and creating and enforcing security policies
Point of Contact in design, deployment and support of IPSEC site to site VPN with Customers
Perform Monthly Audit of Corporate tools
Work closely with network architects to ensure network infrastructure can Provide Tier 2 and 3 network support.
Day-to-day monitoring of network operations: configuration, capacity, access, performance and security management
Maintaining and working with all Network monitoring tools like(NMS,Spectrum, Rendezvous, and Solar Winds and Splunk and skybox)
Worked on Integration and configuration for tools - Nimsoft, Nagios, Qualys, CyberArk and NFAST.
Work with end to end in all daily operations issues.
Maintain Network Connectivity and analyzing monitor network flow.
Manage inventory and Prepared Monthly reports.
Client
Celcom
Location
Malaysia
Period
August 2015 – June 2017
Role
Network Engineer Specialist
Responsibilities:
Worked on Incident Response and Management for supported devices
Worked on cisco routing and switching in all parameters.
IOS up-gradation of all cisco switches and routers.
Monthly risk and vulnerability audit
Monitoring of company’s network security controls
Determine security needs, developing and implementing solutions and creating and enforcing security policies
Point of Contact in design, deployment and support of IPSEC site to site VPN with Customers
Perform Monthly Audit of Corporate tools
Worked on Telnet/SSH clients for accessing the network and security components.
Worked with employees and customers to troubleshoot client/server VPN issues
Worked closely with network architects to ensure network infrastructure can Provide Tier 2 and 3 network support
Day-to-day monitoring of network operations: configuration, capacity, access, performance and security management
Respond to tickets opened by customers, routine alarms and network issues.
Worked and maintained all Network monitoring tools like (NMS,Spectrum, and Solar winds)
Maintain Network Connectivity.
Analyzed and Monitor network flow and Implement equipment upgradation.
Manage inventory and prepared Monthly reports.
Company
Ninemind Software Solutions
Location
Hyderabad
Period
May 2013 - June 2015(Internship)
Role
Network Engineer
Responsibilities:
Worked as L2 support and providing the best possible solution for the faults and maintaining the committed SLA rate.
Monitoring network outages, degradation and hardware failures received via monitoring tools (NMS), troubleshooting and taking necessary remedial actions.
Monitoring and troubleshooting windows based system/server issues.
Reporting, Resolving and escalating incidents to appropriate vendors.
Identifying problems proactively and providing inputs for problem resolution.
Generate various technical and management reports.
Continuous interaction with IT Service desk and technical Management teams during major incidents and alarms.
Ensuring maximum Network Uptime.
Initiate backup procedures during network outages.
Monitoring and troubleshooting LAN and WAN Components through Everest and Putty Tools.
Maintaining network management tools.
Utilize various tools to isolate impairments in LAN/WAN and Voice network environments.
Momentary log in to address customer complaints and requests.
Co-oordinating and giving Proper handover on pending calls that needs follow up for resolution and closure.
Ensure on SR updation, FTR, resolution, interim updates, subsequent updates, RFO and closure with in committed SLA with clients.
Sharing technical input / interaction with customer addressing complaint and requests. Sharing of trouble shooting guidelines within the team.
Achievements
Certificate of Participation in “BIOS” Workshop Conducted in college.
Outstanding teamwork award for handling the incidents with 100% efficiency in the year 2014.
Certification of participation in Workshop Conducted in College For the stream Embedded Systems.
Attended training for Microsoft Certified Solutions Expert 2015
I have supported Palo Alto firewall deployment and implementation on different Datacenters.
Received Appreciation from client on resolving the issues within SLA.
Received PAT on the BAT Award in organization for performing IOS upgradations and for supporting.
End to end daily operations in 2017.
Received Bravo Award for handling the incidents within SLA and also configuring all network and security devices in NMS and CA tools in 2018.
Received Championship award for Network and security team for annual program ceremony.
Received Standing Ovation award in first half 2019.
Highlights:
Skills and Strengths
Quality oriented mind setup.
Enthusiasm to learn new things.
Good communication & drafting skills.
Good judgment skills.
Adaptable to any type of work environment depending on situation.
Contact this candidate