Abhishek Singh

• Working on SIEM incidents and take appropriate action as per SLA matrix
• Configuring, commissioning and Monitoring Firewalls (Checkpoint, Fortinet, and Cisco ASA), VPNs, Proxy-Zscaler, Cisco ISE, Skybox-Firewall Assurance, and intrusion detection & prevention systems to detect and prevent cyber-attacks
• Upgraded Checkpoint Gateways from R77 to R81.10 and Manager from R80.20 to R81.10
• Orchestrated a multinational cybersecurity risk assessment program, identifying and mitigating potential threats, which led to a 30% reduction in vulnerability exposures across critical business units.
• Developed a comprehensive risk management framework utilizing NIST standards, which was adopted company-wide, enhancing the security posture and reducing incident response time by 25%.
• Managed a team of 12 security analysts in the deployment of a real-time risk monitoring system, resulting in a 40% improvement in threat detection accuracy.

Penetration Testing Coordination & Management:-

Initiated and Scoped Penetration Tests:

• Defined the objectives, scope, and target systems for penetration tests in alignment with cybersecurity goals and project requirements.
• Collaborated with stakeholders to ensure that critical areas and potential vulnerabilities were adequately covered during the testing phase.
• Vendor and Third-Party Collaboration:Acted as the primary point of contact between the internal team and third-party penetration testers, ensuring smooth communication and clarifying testing goals and expectations.
  Reviewed vendor proposals and selected appropriate third-party penetration testers based on expertise, project needs, and timelines.
  
• Report Analysis and Risk Assessment: Conducted in-depth analysis of penetration testing reports, identifying critical security vulnerabilities, misconfigurations, and potential threats.
  Mapped vulnerabilities to potential risk impacts on system integrity, confidentiality, and availability, aligning findings with the overall cybersecurity threat landscape.
  
• Remediation Planning & Implementation: Collaborated with development and security teams to prioritize vulnerabilities, ensuring high-risk issues were addressed promptly.
  Developed and tracked remediation plans to ensure that vulnerabilities identified during penetration tests were fixed in a timely manner.
  Monitored the implementation of security fixes and validated their effectiveness in mitigating the identified risks.
  
• Post-Test Validation: Requested follow-up testing to confirm that remediation steps effectively closed the identified security gaps.
  Provided post-remediation reports to stakeholders, summarizing the outcome of pen tests and the implemented security improvements.
  
• Continuous Improvement: Leveraged insights from pen tests to refine security controls, enhance cybersecurity policies, and improve the overall security posture of the system.
  Updated cybersecurity documentation and guidelines to incorporate lessons learned from penetration test findings and remediation efforts.
  

• Responsible for Perimeter and endpoint (Firewall, Anti-Virus) Security Analyst
• Assisting Client by providing Off-shore lead assistance, monitoring team training and professional growth
• Support implementation of Security Operation Center processes and perform periodic check for compliance issues
• Managing and implementing different AV policies
• Performing and managing different scan activities
• Responsible for LAN Troubleshooting
• Managing and preventing virus outbreak
• Performing regular product upgrades after checking compatibility
• Enabling/Disabling USB for end users, updating patches, fetching backup, updating Anti-Virus on servers and configuring/Modifying policies
• Working on McAfee VSE, McAfee ENS, McAfee Agent & DLP
• Decommissioning of the server from Anti-Virus environment as per the request
• Working on CISCO firewall configuration changes (ACL, NAT & Route) and knowledge on configure and implementing CISCO ASA firewall 5555 series
• Performing ACL, NAT and Route configuration changes on checkpoint firewall as per customer request and knowledge on configuring and implementing checkpoint firewall with various deployment mode
• Troubleshooting issues like client to server communication by using packet tracker, Packet capture firewall monitor, TCP dump and analyzing logs by using Wireshark
• Worked on McAfee DLP tools with effective communications and excellent analytic problem solving and interpersonal skills
• Working on CISCO ASDM-IDM Launcher (Hands-on) to configure firewall policies
• Working on Vulnerability Security patching
• Fetching and creating reports on daily, Weekly and monthly basis as per customer requirement
• Monitoring events and resolve or notify the incidents to business unit where the sensitive data/information and policy violate
• Investigating the cases which are notified to Business unit as per SLA matrix on legal and compliance basis
• Client Interactions for monthly, weekly and daily health check, capacity with trend analysis report, tracking space upgrade requirements and taking care of them as per process
• Provide guidance and mentorship to junior security team members
• Provide content creation and policy tuning for multiple security detection and alerting tools, including CISCO ISE, McAfee DLP and Websense.

• Responsible for Incident Management activities, performing schedule, with proper Investigation and preparing reports
• Classify and prioritize the risk of all vulnerabilities taking into consideration mitigating factors and impacts of internal and external threats
• Understanding phishing activity and take necessary steps to check and prevent it.