Nitin Sharma
Senior Security Analyst
Jaipur
Summary
Information Security Analyst with 8+ years of progressive experience in cyber security industry. Background designing and implementing of solutions protecting networks, systems And information assets for diverse organizations. Detailed knowledge of security tools, technologies And best practices. Self-motivated and deadline-oriented with track record of on-time deliverables.
Overview
10
10
Certificates
9
9
years of professional experience
Education
Bachelor of Commerce -
University of Rajasthan
Jaipur 2010.01 - 2012.01
Higher Secondary -
A.N.S.S School From BSER Board
Jaipur 2009.01 - 20092
Secondary School -
A.N.S.S.S BSER Board
Jaipur 2007.01 - 20072
Skills
Microsoft Azure
Certification
GIAC Security Essentials (GSEC)
Timeline
FORTINET NSE 1,2 Network Security
2020-05
Senior Security Analyst
Norsk Hydro
2019.09 - Current
CyberArk Certified Trustee
2019-06
Splunk Certified Power User
2018-06
Splunk Certified User
2018-06
Senior Security Analyst
Wipro Consulting Services
2018.03 - 2019.08
Palo Alto ACE (8.0,8.1)
2018-01
Security Analyst
Accenture Services Private Limited
2017.09 - 2018.03
Network Security Engineer
Financial Technologies (India) Ltd
2016.02 - 2017.09
Network Security Engineer
WESNIA INFO SOLUTIONS PRIVATE LIMITED
2014.05 - 2016.01
Bachelor of Commerce -
University of Rajasthan
2010.01 - 2012.01
Higher Secondary -
A.N.S.S School From BSER Board
2009.01 - 20092
Secondary School -
A.N.S.S.S BSER Board
2007.01 - 20072
GIAC Security Essentials (GSEC)
2022-02
Microsoft 365 Security Administrator (MS-500)
2021-09
Security Operations Analyst (SC-200)
2021-09
Azure Security Engineer (AZ-500)
2021-08
Azure Fundamental (AZ-900)
2021-08
Work History
Senior Security Analyst
Norsk Hydro
Jaipur
2019.09 - Current
- Managed Office 365 Email Security and O365 Defender, Managing allow or block list and Implemented mail flow transport rules. Managing Defender for office 365 threat policy related to anti-phishing, anti-spam, anti-malware
- Investigating O365 Defender for endpoint alerts & O365 Defender for identity with using advanced hunting query
- Managed M365 for cloud app security and Created rules for cloud related services
- Managed Microsoft azure and different type of azure services for daily operations related task.
- Managed user risky sign-in policy in azure identity protection and monitoring and managing cloud resources security risk in microsoft Defender for Cloud
- Developed and implemented project management task and issue task with using JIRA and Utilized confluence for performance improvement SOP's plans to promote continuous improvement.
- Managed CSIRT user reported cases, implementing uncovered information into investigation processes to solve cases.
- Monitored and Configured different type of SEPM reports. Computer virus reports to determine when to update virus protection systems.
- Managed Symantec End-Point Security SEPM and McAfee ePO for two domain
- Maintained Trellix Skyhigh Security Cloud (CASB) for different type of cloud services, user anomalies and configured reports.
- Investigated security risk alerts with using Secureworks Red Cloak EDR and Taegis XDR
- Used Panorama - Palo Alto and Wildfire for investigation of security incident
- Conducted research, gathered information from multiple sources and presented results in Splunk
- Managed zscaler proxy, created rule for URL's block and exception policy and generated several type of reports.
Senior Security Analyst
Wipro Consulting Services
Jaipur
2018.03 - 2019.08
- Established Cyber Security Framework to assist BSDC to identify and Access cyber security threats, protect assets from cyber intrusions, detect when their system and assets have been compromised, plan for response when compromise occurs and implement plan for recover lost
- Security Orchestration automation & response Investigate potential or actual security violations or incidents in resilient effort to identify issues and areas that require new security measures or policy changes
- Managed SEPM Endpoint Protection
- Configuring whitelisting of any files and application
- Policy configuration like blocking any malicious application which is malicious in environment
- Monitoring and preparing daily, weekly, monthly reports & present to high level management and audit
- Conduct network vulnerability assessments using Qualys tool to evaluate attack vectors, identify system vulnerabilities and develop remediation plans and security procedures
- Sending Security Alert messages on newly found vulnerability to concerned security team and respective customers without fail
- Check Network Behavior Stealth watch, threat Intel feed to SOC, Dark web monitoring, Infoblox DNS security
- Utilized Security Information and Event Management (SIEM) with help of RSA, monitoring of events, identifying suspicious malicious traffic and generate different type of report, creating correlation rule
Security Analyst
Accenture Services Private Limited
Gurgaon
2017.09 - 2018.03
- Performed analysis of data across organization to identify and contain IT security incidents for re-mediate attacks
- Symantec End-Point Security SEPM server managing
- Symantec endpoint deployment & Managing risk report, Computer status, Threat reports
- Creating SEP packages, required exception policy and rule as per client request
- Managing Symantec DLP console
- Managing EDR CYBEREASON cyber security analytics console
- Deeply analysis malware and Ransomware attacks and Threats, managing white list and blacklist Malicious
- Manage daily log collection activities and real-time analysis of source devices that send log data to SIEM Splunk
- Provided safety reports and data analysis to building managers to inform security processes.
Network Security Engineer
Financial Technologies (India) Ltd
New Delhi
2016.02 - 2017.09
- Monitoring of Checkpoint firewall health and maintains logs and IPS
- Deployed of checkpoint Firewall on data center
- Configured ACL policy and NAT on Checkpoint Firewall
- Managing IPS Blade, Managing SMARTVIEW Monitor, SMARTVIEW Tracker, and SMARTUPDATE
- Managed policy packages and Database Revision control on checkpoint
- Creating users and Required Authentication on SSL VPN BOX
- Provide endpoint security support using KASPERSKY END POINT security center and Update patches
- Monitored computer virus reports to determine when to update virus protection systems.
- Weekly backup on CHECKPOINT Firewall and Juniper SSL VPN BOX
- Provide hardening process on network devices & Security Devices
Network Security Engineer
WESNIA INFO SOLUTIONS PRIVATE LIMITED
Bengaluru
2014.05 - 2016.01
- ASA Firewall managing and Creating rules
- Worked on security event logging and Monitoring services
- Internet Security, Antivirus Installation and Configuration
- Reviewed and Recommended secure system configuration for workstations and laptops
- Configuring routing protocol static routing, default routing, Router Filtering ACL
- Switching operations, configuring VTP, HSRP, VLAN, L2 security, Switch Stacking
- Provides first-level support for network operation centre by Monitoring clients implemented projects based on customer agreements
- Ticket resolution and Coordinates with onsite team.
- Weekly Backup on ROUTERS and SWITCHES
Similar Profiles
Deepak VijayDeepak Vijay
Team Lead (Manager) at Hydro BS India Pvt. Ltd.(Part of Norsk Hydro)Team Lead (Manager) at Hydro BS India Pvt. Ltd.(Part of Norsk Hydro)
Pratiksha SinghPratiksha Singh
HR ADVISOR (PEOPLE RESOURCING) at NORSK HYDRO (SAPA EXTRUSION INDIA PVT. LTD)HR ADVISOR (PEOPLE RESOURCING) at NORSK HYDRO (SAPA EXTRUSION INDIA PVT. LTD)
Vivek VyasVivek Vyas
Management Intern at Norsk HydroManagement Intern at Norsk Hydro