Summary
Overview
Work History
Education
Skills
Certificationtraining
Technicalskill
Personal Information
Languages
Disclaimer
Certification
Languages
Websites
Timeline
Generic

Ravi Shukla

Bangalore

Summary

With over 10 years of experience in Network and Cloud Security, I possess a comprehensive understanding of LAN, WAN, firewalls, IDS/IPS, VPNs, and cloud security solutions. Proficient in configuring, monitoring, and troubleshooting various security devices, I excel in designing and deploying secure network infrastructures. Currently employed as an Associate Architect - Security at CDW Technology India Pvt Ltd, I have a proven track record in securing both cloud and on-premise environments.

Overview

11
11
years of professional experience
1
1
Certification

Work History

Associate Architect-Security

CDW Technology India PVT LTD
07.2022 - Current
  • Collaborate with senior architects and IT teams to design and implement secure network and cloud architectures that align with business goals
  • Develop and document security architectures and frameworks, ensuring they are scalable and adaptable to changing business needs
  • Design and implement network security solutions, including firewalls, VPNs, intrusion detection/prevention systems (IDS/IPS), and network segmentation
  • Conduct regular network security assessments and vulnerability scans to identify and mitigate potential security risks
  • Ensure that network designs adhere to security policies, standards, and regulatory requirements
  • Design and implement security controls for cloud environments (AWS, Azure, GCP), including data protection, encryption, identity management, and access controls
  • Collaborate with DevOps teams to integrate security into the cloud deployment pipeline, ensuring secure CI/CD processes
  • Monitor and assess cloud security configurations, implementing best practices and addressing any vulnerabilities
  • Conduct threat modeling and risk assessments for network and cloud environments, identifying potential security risks and vulnerabilities
  • Develop and implement mitigation strategies to address identified risks, ensuring that security controls are in place and effective
  • Design and manage IAM solutions, ensuring secure and compliant access to network and cloud resources
  • Implement role-based access control (RBAC), multi-factor authentication (MFA), and single sign-on (SSO) solutions
  • Develop and enforce security policies, procedures, and standards for network and cloud environments, ensuring compliance with industry regulations (e.g., GDPR, ISO 27001, NIST)
  • Conduct regular audits and assessments to ensure compliance with security policies and regulatory frameworks
  • Collaborate with security operations teams to monitor network and cloud environments for security incidents and vulnerabilities
  • Develop and implement incident response plans, ensuring timely and effective response to security breaches and incidents
  • Work closely with cross-functional teams, including IT, DevOps, compliance, and business units, to ensure security is integrated into all aspects of IT infrastructure
  • Stay up-to-date with the latest security trends, technologies, and best practices, continuously improving the security posture of the organization
  • Document all security designs, architectures, and configurations, ensuring that they are well-maintained and accessible to relevant stakeholders.

Sr. Technical Lead (Network Security)

TekSystems India PVT LTD
07.2021 - 06.2022
  • Establish network by evaluating network performance issues including availability, utilization, throughput, goodput, and latency; planning and executing the selection, installation, configuration, and testing of equipment; defining network policies and procedures; establishing connections and firewalls
  • Implementation, troubleshooting, and problem resolution of firewalls (Cisco ASA, Firepower, Palo Alto/Panorama and Fortigate), Internet VPN's remote, Cisco ISE
  • Upgradation, Patch and hotfix installation to the devices
  • Manage install upgrade & Configuration Firewall devices over AWS cloud
  • Investigating & taking appropriate action based on threat detected BY IPS/IDS
  • Participate in the design, setup, and configuration of complex L2/L3 switch infrastructure
  • Configuration of networks to ensure smooth and reliable operations and processes
  • Oversee installation, configuration, maintenance, and troubleshooting of networking
  • Develop and implement network automation and orchestration capabilities
  • Establish network specifications by conferring with users; analyzing workflow, access, information, and security requirements; designing router administration, including interface configuration and routing protocols.

Sr. Technical Lead (Network Security)

TekSystems India PVT LTD
06.2020 - 03.2021
  • Establish network by evaluating network performance issues including availability, utilization, throughput, goodput, and latency; planning and executing the selection, installation, configuration, and testing of equipment; defining network policies and procedures; establishing connections and firewalls
  • Implementation, troubleshooting, and problem resolution of firewalls (Cisco ASA, Firepower, Palo Alto/Panorama and Fortigate), Internet VPN's remote, Cisco ISE
  • Analyzed requirements, designed architecture, and developed technical solutions to meet customer needs.
  • Upgradation, Patch and hotfix installation to the devices
  • Manage install upgrade & Configuration Firewall devices over AWS cloud
  • Investigating & taking appropriate action based on threat detected BY IPS/IDS
  • Participate in the design, setup, and configuration of complex L2/L3 switch infrastructure
  • Configuration of networks to ensure smooth and reliable operations and processes
  • Oversee installation, configuration, maintenance, and troubleshooting of networking
  • Develop and implement network automation and orchestration capabilities
  • Establish network specifications by conferring with users; analyzing workflow, access, information, and security requirements; designing router administration, including interface configuration and routing protocols.

Information Security Engineer

DXC Technology
09.2018 - 05.2020
  • Developed and maintained security policies, standards, procedures and guidelines to ensure the secure operation of information systems.
  • Created security reports for management on system vulnerabilities, patch levels, malware incidents and other security issues.
  • Performed regular vulnerability scans using automated tools such as Nessus or Qualys.
  • Monitored network traffic for suspicious activity and analyzed logs from firewalls and intrusion detection and prevention systems.
  • Provided technical advice on application design and development to ensure that applications were built securely.
  • Conducted risk assessments to identify threats and vulnerabilities in computer networks.
  • Implemented access control measures such as authentication mechanisms, encryption technologies, two-factor authentication, to protect data from unauthorized access.
  • Assisted with incident response activities such as forensic analysis, root cause analysis, containment strategies and remediation plans.
  • Investigated potential breaches of information security policies by analyzing log files from servers, firewalls and other devices.
  • Reviewed security audits to bring awareness to security problems and issues.
  • Identified opportunities to improve network, application and cloud security through implementation of secure frameworks.
  • Contributed to task list for maintaining network security across workstations, servers and peripherals.
  • Provided technical support related to security product installation and use.
  • Implemented software tools to assist in threat detection, prevention and analysis.

Network Security Engineer

Wipro Technologies (The Mining and Engineering Corporations Pvt Ltd)
01.2018 - 08.2018
  • Configured and maintained firewalls, intrusion detection systems, and virtual private networks.
  • Developed security policies and procedures for network infrastructure to ensure organizational compliance.
  • Performed vulnerability scans and penetration testing of the corporate network to identify any potential security risks.
  • Implemented security patches, hotfixes, and service packs on all systems in order to maintain system integrity.
  • Monitored network traffic using packet sniffing tools such as Wireshark to detect malicious activity.
  • Analyzed system logs from various sources including routers, switches, servers, and applications to identify suspicious activities or patterns.
  • Investigated incidents of unauthorized access attempts or data breaches in order to determine their origin and scope.
  • Managed authentication services such as LDAP, Active Directory, Kerberos for user access control.
  • Conducted periodic reviews of user accounts and privileges within the organization's directory structure.
  • Assisted with incident response processes by providing technical support during investigations into suspected security threats.
  • Trained new employees on proper usage of company resources with regards to information security policies.
  • Performed regular backups of critical data stored on the corporate network in accordance with established guidelines.
  • Contributed to task list for maintaining network security across workstations, servers and peripherals.

Network Engineer

Century Link India Pvt. Ltd. (Quasar Telecom Pvt Ltd)
10.2016 - 01.2018
  • Configured routers, switches, firewalls and other hardware to deploy and manage LAN, WAN and wireless networks.
  • Provided technical support to users experiencing difficulties with their networks.
  • Evaluated new technologies for possible implementation into existing systems.
  • Conducted regular system audits to ensure compliance with established standards.
  • Monitored network performance and troubleshooted any issues that arose.
  • Implemented security measures to protect data from unauthorized access or destruction.
  • Developed policies for using and managing computer networks.

Desktop and Network Engineer

Wipro InfoTech Ltd (Apex Services)
08.2015 - 05.2016
  • Configured and maintained network hardware, including routers, switches, firewalls, and wireless access points.
  • Monitored network performance and troubleshooted any issues that arose.
  • Provided technical support to users experiencing difficulties with their networks.
  • Installed software updates on servers, routers, firewalls, and other network devices.
  • Created documentation detailing all aspects of the network infrastructure and its configuration.

Desktop Support Engineer

Mphasis (Inknowtech India PVT LTD)
09.2013 - 04.2015
  • Handled Desktop troubleshooting, device backups, and monitored data center network health.
  • Provided technical assistance to users in person, via phone or email.
  • Diagnosed and resolved hardware and software issues efficiently.
  • Installed, configured and maintained computer hardware, software and peripherals.

Education

Executive MBA -

01.2026

Post Graduate diploma in cyber security -

01.2024

B.Tech(CS&E) -

01.2012

Intermediate -

01.2007

High School -

01.2005

Skills

  • Network Security: Expertise in configuring and troubleshooting firewalls such as Cisco ASA, Cisco Firepower, Checkpoint, Palo Alto, and Fortinet Experience with IDS/IPS, load balancers (F5 LTM), and proxy servers
  • Cloud Security: Hands-on experience in securing AWS cloud environments, configuring firewall devices, VPNs, and implementing security controls
  • VPN Management: Proficient in setting up site-to-site, remote access SSL, Dynamic Multipoint IPSec, and GRE VPNs
  • Firewall Management: Skilled in firewall management using ASDM, Firepower Management Center, Panorama, Checkpoint SMS, and FortiManager
  • Identity and Access Management (IAM): Experienced in IAM solutions for network and cloud, RBAC, MFA, and SSO configurations
  • Routing and Switching: Knowledge of routing protocols (RIP, OSPF, BGP, EIGRP), VLAN, VTP, STP, DTP, EtherChannel, and L2 security
  • Compliance and Governance: Familiar with regulatory frameworks like ISO 27001, NIST, and GDPR, and conducting regular audits and risk assessments
  • Incident Response: Strong background in threat detection and management, incident response, and vulnerability assessments

Certificationtraining

CCNA (Routing and Switching), CCNP Score, Check Point Certified Security Administrator (CCSA) R80.X, Certificate of Ethical Hacking, Palo Alto Networks Certified Network Security Engineer (PCNSE), AWS Security Specialty, Completed Professional training on Cisco CCNA & CCNP Routing and Switching., Completed Professional training on Cisco CCNA, CCNP & CCIE Security V6., Completed Professional training on Palo Alto, Completed Professional training on Checkpoint, Completed Professional training on F5 Load Balancer, Completed Professional training on AWS Security Specialty, Completed Professional training on CEH, Completed Professional training on Windows Server 2008 R2

Technicalskill

  • Hands on experience on Configuration and Troubleshooting of Cisco ASA Cisco Firepower, Checkpoint, Fortigate and Palo Alto Firewalls.
  • Hands on experience on Configuration and Troubleshooting of Firewall Managements ASDM, Firepower Management Center, Panorama Checkpoint SMS, Forti Manager.
  • Hands on experience on Configuration and Troubleshooting of Access-List, Nat(All Kind of NAT), Context(Active-Active & Active Standby), Failover, VPN(IPSEC & SSL).
  • Hands on experience on Configuration and Troubleshooting of Policy, Natting, VPN, CoreXL/SecureXL, Failover, VSX, IPS/IDS & CLI etc on checkpoint Firewall.
  • Hands on experience in Device Administration, Securing Wired and Wireless Network through Cisco ISE.
  • Hands on experience on Configuration on Cloud Technology i.e AWS Networking/Security
  • Configuring, Troubleshooting and setting up Site-to-site, Remote access, SSL, Dynamic Multipoint, IPSec, GRE VPN to create secure channel to communicate between sites.
  • Hands on experience Proxy server: IronPort & Websense.
  • Hands on experience in Configuration and Troubleshooting on Cisco 1800, C4321, C1920, C1841 series routers.
  • Routing Protocols - Static, RIP, OSPF, BGP, EIGRP
  • Switching: - VLAN, VTP, STP, DTP, Ether channel, L2 Security.
  • Hands on experience of cisco routers backup, recovery.
  • Others: - VRF, PBR, Redistribution, Ether-channel, Inter VLAN Routing ACL, NAT, PAT, AAA, SNMP, DHCP, DNS.
  • Self-motivated and willingness to learn new technology.
  • Flexible to work on implementation, Design, infra support and Customer support.

Personal Information

  • Passport Number: Yes
  • Date of Birth: 05/20/1990

Languages

English & Hindi

Disclaimer

I hereby declare that the above details furnished by me are true to the best of my knowledge.

Certification

  • CCNP-SCORE
  • Certified Information Security Manager
  • AWS Security Specialty
  • PCNSE
  • CCSA and CCSE
  • CEH

Languages

English
Advanced (C1)
C1
Hindi
Proficient (C2)
C2

Timeline

Associate Architect-Security

CDW Technology India PVT LTD
07.2022 - Current

Sr. Technical Lead (Network Security)

TekSystems India PVT LTD
07.2021 - 06.2022

Sr. Technical Lead (Network Security)

TekSystems India PVT LTD
06.2020 - 03.2021

Information Security Engineer

DXC Technology
09.2018 - 05.2020

Network Security Engineer

Wipro Technologies (The Mining and Engineering Corporations Pvt Ltd)
01.2018 - 08.2018

Network Engineer

Century Link India Pvt. Ltd. (Quasar Telecom Pvt Ltd)
10.2016 - 01.2018

Desktop and Network Engineer

Wipro InfoTech Ltd (Apex Services)
08.2015 - 05.2016

Desktop Support Engineer

Mphasis (Inknowtech India PVT LTD)
09.2013 - 04.2015

Executive MBA -

Post Graduate diploma in cyber security -

B.Tech(CS&E) -

Intermediate -

High School -

Similar Profiles

  • ARIFABEGAM N

    ARIFABEGAM NARIFABEGAM N

    Project Manager at Growth99 (Registered in India as IGX Technology India Pvt Ltd)Project Manager at Growth99 (Registered in India as IGX Technology India Pvt Ltd)

  • Krishnaraja Ganapathy

    Krishnaraja GanapathyKrishnaraja Ganapathy

    Application Development Manager at BNY Mellon Technology India Pvt Ltd – Pershing TechnologyApplication Development Manager at BNY Mellon Technology India Pvt Ltd – Pershing Technology

  • Subrata Ghosh

    Subrata GhoshSubrata Ghosh

    Senior Quality Engineer at GGS Engineering Services India Pvt. Ltd (Onsite at John Deere Technology Center India)Senior Quality Engineer at GGS Engineering Services India Pvt. Ltd (Onsite at John Deere Technology Center India)

  • Raghu Vamsi M

    Raghu Vamsi MRaghu Vamsi M

    Associate Manager- Finance at Reverie Language Technologies LimitedAssociate Manager- Finance at Reverie Language Technologies Limited

  • Shwetha Agarwal

    Shwetha AgarwalShwetha Agarwal

    Artist Manager at Nineone IncArtist Manager at Nineone Inc

CREATE PROFILE
Ravi Shukla