Misba Bano
CyberSecurity Engineer
Jaipur
Summary
Seeking a position with a leading corporate organization that values dedicated individuals, where I can enhance my skills in line with the company\'s goals and objectives. Eager to expand knowledge and acquire new skills. With over 8 years of experience in Cyber Security, I bring an industrious mindset and a strong ability to learn and grow in a security-focused environment. Possessing a solid foundation in safety practices and technology, along with expertise in surveillance and incident response, well-prepared to utilize and further develop these skills in a cloud security engineer role.
Overview
8
8
years of professional experience
6
6
years of post-secondary education
3
3
Certifications
3
3
Languages
Work History
Cloud Security associate consultant
Accenture
12.2021 - Current
- Company Overview: A seasoned security professional (Cloud security, Information Security, Cyber Security and Threat intelligence.)
- As an enterprise security Consultant in the security domain crafted to ensure availability, reliability, security, scalability, and performance to address client’s business challenges and accelerate technology adoption to improve the products/services
- Working as part of Build and Transform team and handling implementation and integration of Cloud Native Security services on Azure
- Perform cloud security posture assessment of cloud environment and secure the cloud workloads
- Implementation and Integration of Microsoft sentinel, Microsoft defender for cloud, Microsoft defender for endpoint and other cloud native security tools
- Analyzing application portfolios, identifying dependencies & common infrastructure platform
- Working on sentinel integration, log source ingestion (Cloud native and 3rd party log sources), Creating use cases, workbooks
- Collaborate with other members of the technology and security teams to implement security best practices and procedures
- Continuously monitor and assess client’s security posture and implement improvements as per requirement
- Assisting other Security Analysts with investigating and resolving security incidents in line with organization’s incident management and response processes
- Creating build and design document, HLD and LLD
- Recommending security enhancements to management
- Creating use cases or correlation rules in Sentinel as and when needed
- Analyzing Security events and fine-tuning use cases
- Creation of reports, dashboards, metrics of SOC operations for Sr
- Management
- Coordinate with other teams for new device integration with Sentinel
- Identify devices not sending logs and take necessary action
- Identify attack patterns, identify user and take action
- Perform threat hunting to identify hidden threats in the network
- Identify malicious websites accessed by users and take necessary action
- Provide security advice and education to employees and project teams
- A seasoned security professional (Cloud security, Information Security, Cyber Security and Threat intelligence.)
Technology Security Senior Analyst
Accenture
12.2021 - 01.2023
- Working as a part of Security operations and Handling Security BAU operations /Change management by following ITIL process, adhering to SLAs’ as well as implementation projects
- On-boarding of public cloud environments on to Prisma cloud
- Deployment of defender agents
- Policy finetuning basis risk and business environment and reduction in alerts
- Integration of Prisma cloud with third party tools like ITSM and Siem
- Integration of flow logs into Prisma cloud compute, analysis of network traffic
- Developing security policies and procedures to secure data across the network
- Installing and maintenance of security software
- Working on changes required in network by following the ITIL process
- Working on incidents, Service requests, Problem incidents and security incidents, assigning incidents and resolving within SLA
- Recommending security enhancements to management
- Monitoring and document security breaches and assess liability
- Recommending data security solutions to improve data security
- Working as a super admin for Palo-Alto firewalls
- Creating Firewall rules as per the requirements, upgrading OS and hardware
- Troubleshooting issues related to firewall blocks and routing
- Creating Troubleshooting documents and RCA for critical issues
Senior Associate Consultant
Infosys
01.2020 - 12.2021
- Working as a part of Security operations and Handling Security BAU operations /Change management by following ITIL process, adhering to SLAs’ as well as implementation projects
- Providing Enterprise Support to Customers using CrowdStrike Falcon Endpoint Security on windows, MAC and linux environment globally
- Handled transition of project from Client and worked on documents and project reports for transition
- Working as a super admin for CrowdStrike Falcon, Palo-Alto firewalls, pulse Secure VPN for installation, configuration, and maintenance of Palo-Alto Firewalls
- Administer the PA firewall environment including Advance threat protection with security profiles, URL filtering, IPSec and GlobalProtect (Prisma access), User-ID, App-ID, File blocking, logging profiles, HA etc
- Contributing for training for the new hire and managing the new joiners to get used to the organization and helping them with their initial stages of work and acting as their first point of contact
- Handling routine calls with Support for maintenance and improvement of services, making changes in policies as per Support recommendations to avoid any impact and to be up to date with latest features and updates
- Giving presentations and training on technical concepts regarding Information security, contributed to knowledge management number of technical documents for use internal and external publication
- Extensive working in Security tools to maintain the client domain infrastructure clean from the threat and viruses
- Upgrading software and hardware as per requirement for EOL devices
- Creating SSL VPN tunnels, rules, VLANs, Zone as per requirement
- User Management (Adding and deleting users, assigning role etc.)
- Creating Troubleshooting documents and RCA for critical issues
- Providing training and KT to teammates and other teams
- Creating SOP documents and KB articles for team and client
- Identifying the Accept and the Recast Risk rules keeping the application/Device owners under confidence
- Creating the Reports on demand and weekly for new host discovery/compliance/Threat detection
- Managing health-checks for environment, Managing dashboard for monitoring
- Managing prevention policies, sensor update policies, Custom IOA policies, response policy, Real time protection
- Managing Sensors for endpoints
- Installing sensors, upgrading sensors, troubleshooting sensor issues
- Working on major virus outbreaks, detections, overwatch incidents and events for malicious activity on endpoints and servers
- Worked on API migration from Streaming API to OAuth2 API
- Managing third party tool integration
- Running scan on systems manually, Blocking malicious files and hashes
- Adding exclusion for files and path to avoid business impact for useful Servers, application, and process
- Working on new deployment of CrowdStrike sensors for newly added sites and hosts
- Testing and implementing upgrades as recommended by CrowdStrike by following the ITIL process and risk assessment
- Working on infected system to take necessary actions and avoid spreading of malware
- Working on changes required by following the ITIL process
- Working on incidents, Service requests, Problem incidents and security incidents, assigning incidents and resolving within SLA
- Worked on migration from TrendMicro Office Scan to CrowdStrike and Cylance
- Creating process document for sensor deployment, policy creation, group creation, blocking hash, managing detections, adding exclusion, removing duplicates, Scanning systems
- Providing inputs to the higher management regarding daily escalation and Monitoring Customer CSAT /DSAT
- Working on issues related to pulse secure, Allowing SSL VPN user access for third party users, Adding rules etc
Project Engineer
Wipro Technologies
03.2017 - 01.2020
- Working as part of Security operations and Handling Security BAU operations /Change management by following ITIL process, adhering to SLAs’ as well as implementation projects
- Creating rules on firewall, monitoring traffic on firewall, license management and certificate management
- Managing Web Filtering on Cisco Cloud Web Security
- SSL PKI certificate Management through Symantec VeriSign
- Managed PingFederate for integration of multiples applications as well as websites hosted internally for single sign on
- Worked on ping federate version upgrade
- Managing and configuration of end-point security with McAfee ePO
- McAfee ePO upgrade from version 5.3.0 to 5.9.1
- Migrated McAfee VSE 8.8 to ENS 10.5
- Dealing with threat alerts on the systems, managing duplicate system in EPO, Creating policies, tags, etc
- Maintaining AV compliance on servers and workstations and troubleshooting issues for non-compliant devices
- L1 level administration of Checkpoint Power-1/Firewall/devices
Education
B.Tech -
RTU Kota
01.2012 - 01.2016
HSC - undefined
Rajasthan board of secondary education
01.2010 - 01.2011
SSC - undefined
Rajasthan board of secondary education
01.2008 - 01.2009
Skills
Endpoint Security Management
Certification
CSA – (EC-council certified)
Timeline
Cloud Security associate consultant
Accenture
12.2021 - Current
Technology Security Senior Analyst
Accenture
12.2021 - 01.2023
Senior Associate Consultant
Infosys
01.2020 - 12.2021
Project Engineer
Wipro Technologies
03.2017 - 01.2020
B.Tech -
RTU Kota
01.2012 - 01.2016
HSC - undefined
Rajasthan board of secondary education
01.2010 - 01.2011
SSC - undefined
Rajasthan board of secondary education
01.2008 - 01.2009