Bhavesh Tekade

• Architect and implement security solutions across the enterprise, including Endpoint Detection & Response (EDR), Data Loss Prevention (DLP), Key Management Systems (KMS), Security Information & Event Management (SIEM), and Cloud Security Posture Management (CSPM).
• Lead a team of security engineers and analysts; drive their growth through mentorship, training, and goal-setting.
• Oversee security solution integration with critical business systems; work closely with IT leadership and executive stakeholders to develop roadmaps and ensure security aligns with business objectives.
• Extensive experience in on Microsoft Defender suit for cloud, Endpoints and servers.
• Conduct ongoing risk assessments, vulnerability management, and mitigation activities, reducing the organization’s threat landscape.
• Manage the enterprise SOC, ensuring effective monitoring, detection, and incident response for rapidly evolving threats.
• Regularly brief C-suite and IT executives, translating technical risks into business impacts and actionable strategies.
• Oversee deployment of advanced security controls, including identity and access management, endpoint protection, SIEM, and zero trust architectures.
• Led the Proof of Concept for Microsoft Azure Sentinel solution, and Successfully implemented Azure Sentinel (SIEM) solution evaluating its potential to enhance the organization's security operations.
• Managing Vendor for SOC L1 monitoring and lead them to deliver the task.
• Extensive experience on Microsoft Azure Logic Apps for automating various solutions.
• Designed and deployed the CA Root Server infrastructure, including hardware, software, and network components, to establish a trusted and reliable foundation for digital certificate management.
• Experience working with security protocols and standards like SSL/TLS, PKI, Certificates.

Key Achievements:

• Designed and successfully deployed a company-wide DLP and EDR solution, improving endpoint security across all business units with minimal business disruption
• Developed scalable vulnerability management processes that increased remediation rates and improved audit compliance.
• Automate the process by bash scripting, shell scripting, Logic App and Python programming.

• Conducted proactive research and investigation to identify new and emerging cyber threats and vulnerabilities by actively participating in external security communities.
• Managed the collection, analysis, and dissemination of cybersecurity threat information to ensure the organization stays ahead of potential risks.
• Utilized standard frameworks such as Cyber Kill Chain and MITRE ATT&CK framework to analyze and interpret threat information effectively.
• Monitored real-time threats and stayed updated on emerging risks from various channels including FS-ISAC threat feeds.
• Analyzed and interpreted results of vulnerability management activities using standard frameworks like CVSS to prioritize remediation efforts.
• Conducted in-depth research on new and emerging vulnerabilities, including 0-day events, to promptly address potential security gaps.
• Collaborated with stakeholders to standardize and streamline vulnerability remediation procedures, ensuring a cohesive approach across the organization.
• Integrated information from various sources to create tactical intelligence relevant to protecting the business from potential vulnerabilities.
• Reviewed and validated external penetration test reports to identify and address weaknesses in the organization's security posture.
• Provided consultative expertise on security solutions tailored to the specific needs of the business.
• Conducted thorough reviews of infrastructure designs to identify and address any security gaps in line with established security design principles.
• Performed comprehensive security risk assessments of new deployments and changes in existing IT infrastructure to mitigate potential security threats.
• Evaluated application architecture and the placement of components to ensure alignment with security design principles.
• Conducted data security and risk assessments to safeguard critical assets and minimize potential security risks.

• Troubleshooting and managing Websense proxy, RSA Envision, Symantec Brightmail Gateway.
• Vulnerability Assessment of the network devices and servers.

• Manage the day-to-day Security operation like reviewing & validating of reports from different security tools like DLP, Mcafee ePO, Safenet End point protection, Websense Proxies, Accellion FTP, Nessus.
• Implemented McAfee ePO infrastructure in conjunction with McAfee Engineer.
• Troubleshooting and managing the issues related to McAfee ePO products.
• Managing the McAfee ePO policies related to Antivirus and DLP.
• Enterprise Mcafee Antivirus management of more than 100,000 clients and maintaining their compliance level as high as possible.
• Perform Network Vulnerability Assessment using Qualysguard & Nessus.
• Remediate vulnerabilities, both internally and externally.
• Managing and troubleshooting Websense issues related to connectivity, filtering and fine tuning the internet access to maintain the network secure and reliable.
• Have implemented the Websense Proxy on the company infrastructure. Created and fine tuning the policies as per the clients requirement.
• Attending the P1 calls and resolving them regarding the internet connectivity.
• Troubleshooting RSA Secure ID issues regarding VPN issues and managing connectivity issues from Primary site to replicas.
• Investigate potential or actual security violations or incidents in an effort to identify issues and areas that require new security measures or policy changes.
• Managing and troubleshooting Safe End related issues for end point encryption.
• Incident management related to any security policy either from Tools like DLP, Mcafee ePO Websense Proxy or any physical Environment.

• Monitoring and managing Data Loss prevention, Bluecoat proxy, McAfee Intrushield Network Prevention system IPS and Tumbleweed firewall email security System.