Summary
Overview
Work History
Education
Skills
Certification
Languages
Timeline
Generic

Jaywant Nalawade

Pune

Summary

Results-driven IT Security Consultant with 22+ years of progressive experience in Linux Cybersecurity, IT Infrastructure, and Compliance Management. Currently serving as a Consultant – Linux Cybersecurity & Compliance at HCL Technologies Limited (HCLTech), Pune, India. Demonstrated expertise in Information Security Management, IT infrastructure design, process documentation, and regulatory compliance frameworks (NIST). Proven ability to lead cross-functional teams, manage enterprise-level security audits, and deliver large-scale infrastructure projects — including a notable international deployment building SharePoint infrastructure for the Government of Ghana (Accra, 2011). Adept at bridging technical and managerial responsibilities with strong communication, stakeholder management, and problem-solving skills.

Overview

26
26
years of professional experience
1
1
Certification

Work History

Consultant – Linux Cybersecurity & Compliance

HCL Technologies Limited (HCLTech)
Pune, Maharashtra, India
06.2023 - Current
  • Currently engaged with State Street Corporation project as a Linux and Cybersecurity expert, performing roles across Security Compliance, Vulnerability Management, Linux Engineering, and Patching
  • Leading end-to-end vulnerability lifecycle under the VESPA project — Qualys scan execution, findings analysis, POC, multi-platform remediation (Solaris, AIX, RHEL 6/7/8/9) via Ansible automation and manual intervention, SLA adherence, and final report presentation to State Street Senior Management
  • Executing GCS Configuration Management processes — analyzing Splunk compliance reports, preparing remediation plans, and implementing corrective configurations on RHEL 6/7/8/9 to meet NIST/CIS compliance requirements
  • Collaborating with vendors (Red Hat, Qualys, Oracle) to validate and execute remediation strategies for complex vulnerabilities
  • Administering RHEL 6/7/8/9 servers — installation, configuration, hardening, patching (Yum), and firmware updates (HP-iLO, BIOS)
  • Monitoring server health and security exposure using Splunk; delivering weekly security updates to State Street leadership
  • Managing change tickets for vulnerability remediation, break-fix, and baseline policy implementation aligned with NIST framework
  • Leading regulatory, third-party, and internal audit preparation; developing COP scripts and security controls to meet compliance and business risk requirements

SME-Subject Matter Expert, Linux and Cyber security Expert

IBM/KYNDRYL India Pvt Ltd
Pune
08.2015 - 06.2023
  • Worked for State Street Corporation Project as an expert on Linux and cybersecurity assignment.
  • Performing various roles including Security Compliance and Vulnerability Management, Linux Engineering, and Patching.
  • Identifying and applying security patches and firmware updates on Linux Servers based on identified vulnerabilities.
  • Contributing to the implementation of NIST framework through Ansible automation.
  • Acting as a Linux Administrator (SME) and working on critical tasks.
  • Utilizing the Qualys tool to perform vulnerability scanning and remediation.
  • Providing weekly security exposure updates to State Street leadership.
  • Responsible for installing, building, configuring, troubleshooting, and administering RHEL 5/6/7/8 Servers.
  • Applying regular updates and patches on Linux Servers (Production & Development Environments) using Yum and updating Firmware such as HP-iLO and BIOS.
  • Actively monitoring server health, investigating abnormal log activities, and performing necessary actions.
  • Working on various change tickets including vulnerability remediation, brake fix, baseline policy implementation, and more based on NIST framework.
  • Possessing knowledge of Splunk tool for security exposure and server health monitoring.
  • Addressing various vulnerabilities and enterprise baseline policy in the cloud environment.
  • Participating in monthly/quarterly/annual cyber security audits activities.
  • Preparing remediation plans for any audit findings.
  • Familiarity with CA-Privileged Access Manager (CA-PAM) and reviewing weekly CA-PAM report for identity and access management.
  • Lead preparation activities for regulatory inspections, 3rd party and internal audits requirements.
  • Evaluate, recommend, and develop security controls, policies and standard practices based on business needs, risk assessments and regulatory requirements.

Senior Implementation Consultant

Allscripts India Pvt. Ltd.
Pune
05.2012 - 03.2015
  • Responsible for building IT Infrastructure like server installation, security patches, user permission, etc.
  • Handled IIS 7/7.5 configuration as per web application requirement.
  • Carried out deployment Health Care IT products on various data center and Allscripts cloud.
  • Ensured meaningful use (MU2) of product implementations for various Hospitals and clinics.
  • Administered sales force (SFDC) cases for resolving MU2 & IT related issues.
  • Lead Patient Portal Implementation Team.
  • Handled Health care products on various data centers and client servers.
  • Worked with the following: EEHR (TWEHR) Development and SaaS team for client escalations.
  • Third party vendor 'Intuit' for patient portal implementation.
  • Handled: Hyper-V server installation, VM creation, VM network configuration and Backup Management.
  • VPN server implementation, adding users account to VPN server and making sure they can access it from public network.
  • Oversaw Fail over clustering, file server clustering, Hyper-V clustering, SQL clustering and adding services in Cluster.
  • Worked on server monitoring and performance tuning.
  • Highlights Successfully set up a Linux based sendmail email solution for Caldiatech (https://www.caldiatech.com/), worked with client IT Program Managers for solution design and implementation.
  • Managed IT infrastructure projects for Medfusion (http://medfusion.com/portal/) in a global delivery framework.
  • Managed data centers over a large user base and maintained data center servers / backup operations for integration of new systems with the existing systems.
  • Researched on key hardware technology products and developed solutions for laptops and personal computers.
  • Built a Service Catalogue for the KPMG Denmark (http://www.kpmg.com/DK/en/Pages/Default.aspx) Centre of Excellence (CoE) and took efforts towards migrating from a cost to revenue center.

Lead Consultant- IT Infrastructure - Lead Level II

C3IT Software Solutions Pvt. Ltd.
Pune
12.2003 - 04.2012
  • Responsible for the following: FTP server configuration and user access management.
  • IIS server configuration and administration.
  • Applications and servers backups tools Configuration and management of windows and hardware based firewalls.
  • VSS Installation and configuration and backup of source code.
  • Webmin Installation and configuration.
  • WSUS server Administration.
  • Monitored system events, application and security logs and based on logs provided resolutions to development team and clients.
  • Involved in generation of server security reports and on weekly basis shared with client and management.
  • Offered local development support to .NET development team.
  • Handled desktop support team and provided assistance in critical tasks.
  • Oversaw domain controller on windows 2008 server.
  • Participated in complete system builds, upgrades, migrations, code deployments and patch management.
  • Symantec Antivirus Installation and configuration.
  • Implemented security policy and virus protection for DMZ environment.

Lecturer

Modern College of Arts Science And Commerce
Pune
09.2001 - 03.2003
  • Lecturer to BCS Faculty.

Lecturer

Padmashree Dr. D.Y. Patil Arts, Commerce and Science College
Pune
09.2000 - 02.2001
  • Lecturer in B.C.S Faculty.

Education

M.Sc. - Electronic Science

Modern College of Pune, University of Pune
Pune
01-1999

B.Sc. - Electronics

Yashavantrao Chavan Institute of Science, Satara, Shivaji University Kolhapur
Satara
01-1997

Diploma in Cyber Law - Cyber Security

The Government Law College Mumbai
Pune, India
01-2009

Skills

  • Linux Security and Compliance

    • Configuration Management & Vulnerability Management: Design and implement secure configuration baselines; perform vulnerability validation, assessment, and remediation across Linux server environments

    Security Compliance Frameworks: In-depth expertise in NIST (National Institute of Standards and Technology) and CIS (Center for Internet Security) benchmarks for Linux hardening and compliance auditing

    Qualys Vulnerability Management: Analyze Qualys scanner reports, prioritize critical vulnerabilities, track remediation progress, and generate compliance dashboards for stakeholders

    Server Hardening: Apply security hardening guidelines to Linux systems (permissions, SELinux/AppArmor, firewall rules, SSH hardening, audit logging, kernel parameter tuning)

    Patch Management: Plan and deploy Linux security patches in production environments with minimal downtime; validate patch success and regression testing

    Access Control & Authentication: Implement RBAC, sudo policies, PAM configuration, and multi-factor authentication for Linux systems

    Security Monitoring & Incident Response: Configure syslog, auditd, and SIEM integration; detect and respond to security incidents and unauthorized access attempts

    Compliance Auditing & Documentation: Support security audits, maintain compliance documentation, generate evidence for internal/external audits (SOC 2, ISO 27001, PCI-DSS)

    Cryptography & Data Protection: Manage SSL/TLS certificates, disk encryption (LUKS), file integrity monitoring (AIDE/Tripwire), and secure data transmission protocols

  • Linux Server Administration: Apache Web server configuration, DHCP and DNS configuration, File system Management, Iptables Firewall, Linux LVM, Linux RAID, Nagios Monitoring Tools, netstat, NFS, NIS server and client, Nmap, Postfix, Proxy, Red Hat Linux Enterprise Server, Samba, Sendmail, Squid, Squirrel Mail, TCP wrapper, VSFTP
  • Microsoft Wintel Servers: 2000/2003/2008/2012/SCCM – AD DS, ADFS, AD LDS, ADRMS, Backup/Restore, DFS, DHCP, DNS, Firewall, GPO, Hyper-V, IIS, IPAM, PowerShell, Remote Desktop Services, Replication, RODC, SMTP, SNMP, VPN, WDS, WSUS, User/Group/Computer Accounts
  • Networking: DHCP, DNS (BIND), FTP, HTTP, ifconfig, NAT, netstat, NFS, nslookup, route, TCP/IP, Telnet, VOIP
  • Mail Server: Postfix, Sendmail, with IMAP and POP3
  • Admin Tools: NMAP port scanning and network security admin tool, Pgadmin for Postgres, PhpMyadmin for MySQL, Webmin for Linux
  • Backup Solution and Storage Solution: Amanda, dump, HP Backup solution, ntbackup, rsync, scp, tar
  • Security: Iptables, password crackers, port scanners, Remote Server Management (RDP), SSL, TCP Wrappers
  • Mailing Systems: Postfix and sendmail (Installation and configuration on red hat Linux server)
  • VSS: Managing and maintaining Visual Source Safe 2005 with Active Directory
  • Domain Controller: Managing and maintaining Active Directory
  • WSUS: OS and security patches through automated system
  • Virtualization: Hyper-V, Microsoft Virtual PC 2005 installation and configuration knowledge, VMware
  • SCCM 2007: Installation, configuration and Management
  • Anti-virus: Symantec Endpoint Protection 110 Installation, configuration and Management skill

Certification

  • AZ-305: Designing Microsoft Azure Infrastructure Solutions
  • AZ-500: Microsoft Azure Security Technologies
  • AZ-104: Microsoft Azure Administrator
  • SC-300: Microsoft Identity and Access Administrator
  • AZ-900: Microsoft Azure Fundamentals
  • Red Hat Satellite 6 Administration
  • MCP (70-290) -Managing and Maintaining a Windows Server 2003 Environment
  • MCTS (70-401) - Microsoft System Center Configuration Manager, Configuration
  • ITIL foundation certificate

Languages

English
Hindi
Marathi

Timeline

Consultant – Linux Cybersecurity & Compliance

HCL Technologies Limited (HCLTech)
06.2023 - Current

SME-Subject Matter Expert, Linux and Cyber security Expert

IBM/KYNDRYL India Pvt Ltd
08.2015 - 06.2023

Senior Implementation Consultant

Allscripts India Pvt. Ltd.
05.2012 - 03.2015

Lead Consultant- IT Infrastructure - Lead Level II

C3IT Software Solutions Pvt. Ltd.
12.2003 - 04.2012

Lecturer

Modern College of Arts Science And Commerce
09.2001 - 03.2003

Lecturer

Padmashree Dr. D.Y. Patil Arts, Commerce and Science College
09.2000 - 02.2001

B.Sc. - Electronics

Yashavantrao Chavan Institute of Science, Satara, Shivaji University Kolhapur

M.Sc. - Electronic Science

Modern College of Pune, University of Pune

Diploma in Cyber Law - Cyber Security

The Government Law College Mumbai

Similar Profiles

CREATE PROFILE
Jaywant Nalawade