ABHISEK ROY

Designation: Design and Implementation professional

Configuring, Installation, Manage, troubleshoots Palo alto and checkpoint.
Configure the Policy, Nat and Routing at firewall as per client requirement on daily basis along with troubleshooting and delivering the end-to-end communication.
Configure the Remote VPN, Site to Site VPN &Troubleshooting in VPN.
Maintaining the policy package for the customer's network and troubleshooting firewall and authentication related issues.
Migration of old firewall box config to new Firewall box.
Hands on experience on upgrading Devices Deploying in HA mode & Upgrade time to time.
Hands on experience on troubleshooting issues like Cluster XL fail-over, before Upgradation.
Responsible for upgrading the existing firewalls to the required version and backup/restore activity.
Providing the support to operation team case P1 & P2
Creating LLD design for network with reference to Security Part.

Managing and resolving user access issues, ensuring seamless authentication and security compliance.
Assigning appropriate privilege levels to local and domain administrators based on security policies.
Maintaining password management for secure authentication, including verification, change, and reconciliation processes.
Building and managing CyberArk Safes, adding and maintaining servers as per security requirements.
Troubleshooting and resolving CyberArk-related issues, ensuring system integrity and operational efficiency.
Hands-on experience with PVWA, CPM, PSM, PSMP, Vault, and Private Ark Client.

Designation: Cyber Security Operations

Ensuring SOC team success in security incident monitoring, identification, assessment, quantification, reporting, communication, and mitigation for clients.
Coordinating with teams to provide platform support solutions, such as Microsoft Defender and EDR to clients.
Conducting incident monitoring, analysis, response, and investigation using tools like Microsoft Defender, Splunk Enterprise, and remediation techniques.
Gathering information on potential dangers from commercial and publicly available sources, monitoring threats, and summarizing findings for management.
Interacting with clients for continuous improvement on escalations, use case fine-tuning, and rule adjustments.
Fixing vulnerability assessments on servers based on OEM and Internal VA Team suggestions.
Weekly client interactions to discuss challenges and showcase reports.
Daily fine-tuning of signature patterns and IPS rules based on observations.
Collaborating with Internal SIRT (SOC Team) for the analysis of high severity and critical signature logs triggered for threat prevention and IPS profiles.
Identified issues, analyzed information and provided solutions to problems
Worked well in a team setting, providing support and guidance

• Level 2 Security Engineer at HCL Technologies Ltd within the Global IT Team, responsible for multiple global sites.
• Regularly fine-tune Signature Pattern Conditions and IPS rules, and analyze triggered signatures in collaboration with the Internal SIRT (SOC Team) for threat prevention.
• Monitor WAN to DMZ and WAN to LAN segments, addressing Vulnerability Assessments on servers, and collaborating with the Internal VA Team.
• Analyze network traffic anomalies, integrate McAfee and Cisco IPS in the SEIM tool, and ensure effective IPS platform operation, including console access for exporting IPS device logs.
• Fine-tune IPS Signatures, deploy IPS in line with other devices, and manage daily updates from different vendor servers.
• Proficient in managing Cisco ASA/FMC, Palo Alto/Panorama, Checkpoint/Smart console, and McAfee NSP platforms.
• Handle day-to-day tasks related to firewall policies, VPN, and NAT policies, utilizing tools like NSM Servers, Smart Consoles, and Panorama.
• Implement proactive measures such as blocking malicious file hashes and URLs in IPS and firewalls.

• Providing detailed technical designs and architectures for Enterprise Security Solutions.
• Ensuring maximum availability of network and security services for all clients.
• Configuring, implementing and troubleshooting major Firewall, router, and switch platforms.
• Managing, maintaining, configuring, and implementing changes in Firewall,router and switch infrastructure.
• Establishing guidelines and standards for change procedures.
• Leading security projects, including technical design, sign-off, infrastructure build, and support.
• Remote troubleshooting and fault finding during initial installations.
• Auditing, analyzing, and correlating firewall and network device's log information, and taking action to remediate any discovered threats to the environment.

• Daily deployment of configurations on Sophos firewall.
• Conducting root cause analysis and diagnosis for networking issues with firewalls, routers and switches.
• Monitoring and maintaining Firewalls, IPsec gateways, and related equipment/services.
• Ensuring network redundancy, fault tolerance, and performing installations, upgrades, restores, and backups of network devices.
• Planning, scheduling and implementing network upgrades, implementations, and migrations with minimal impact on users.
• Providing layer 2 support and first-level security support for implemented client projects, covering LAN, WAN, wireless, and remote networking issues.