Summary
Overview
Work History
Education
Skills
Certification
Languages
Hobbies and Interests
Training
Disclaimer
Personal Information
Timeline
Generic
Saugat Roy

Saugat Roy

Kolkata

Summary

An enthusiastic security professional having 12+ years’ experience with a track record in delivering and architecting robust network-security solutions and improving cybersecurity measures. Implements best practices in security management, ensuring compliance and minimising vulnerabilities. Committed to continuous improvement, fostering a proactive security culture across teams.

Overview

13
13
years of professional experience
1
1
Certification

Work History

Manager

PricewaterhouseCoopers Private Ltd.
10.2018 - Current
  • Team Lead – Zero Trust Initiatives on PwC Global Firewall Environment
  • Provide strong leadership and strategic direction to a multidisciplinary technical team responsible for designing, implementing, and maintaining Zero Trust network firewall solutions across PwC’s global environment.
  • Manage day-to-day team operations, including workload distribution, performance monitoring, skill development, and conflict resolution, ensuring the team remains focused on project milestones and deliverables.
  • Foster collaboration and effective communication within the team and across global security, infrastructure, and application teams to align efforts with Zero Trust security principles.
  • Lead the end-to-end delivery of critical Zero Trust network firewall projects including: Identity Based Firewall: Enforce user authentication against PwC global directory to ensure only known, authorized users can access globally hosted applications.
  • Server Egress Filtering: Restrict outbound server network traffic to explicit, business-approved destinations, minimizing risk of data exfiltration and external attacks.
  • Member Firm Network Segmentation: Implement granular segmentation and default-deny policies between Member Firms to reduce lateral movement opportunities and strengthen network isolation.
  • Administrative VPN Gateways: Deploy and enforce Zero Trust policies through implementation of administrative VPN gateways (SNI GP) to control and restrict remote administrative access to PwC Global Data Centers, preventing access from standard user workstations.
  • Oversee project planning, resource allocation, risk management, and issue resolution to deliver on scope, budget, and schedule commitments.
  • Guide the technical architecture and firewall rule configurations to support Identity Based Access Controls, strict egress filtering, fine-grained network segmentation, and secured administrative remote access in line with PwC’s global security policies.
  • Ensure compliance with regulatory requirements and industry best practices related to network security, access controls, VPN gateway usage, and Zero Trust frameworks.
  • Conduct regular technical reviews and testing to validate firewall policies and VPN gateway configurations achieve the intended security posture without impacting business continuity.
  • Act as the primary liaison between technical teams, security leadership, and business stakeholders to gather requirements, report status, and incorporate feedback during project phases.
  • Prepare and present comprehensive status updates, risk assessments, and impact analyses to senior management and governance committees.
  • Coordinate with regional and global teams to ensure consistent implementation and adherence to Zero Trust network standards.
  • Drive continuous refinement of network firewall and remote access strategies to enhance Zero Trust capabilities, reduce attack surfaces, and respond to evolving cyber threats.
  • Encourage team adoption of automation tools and advanced monitoring techniques to increase efficiency and effectiveness in firewall and VPN gateway management.
  • Lead post-implementation reviews and lessons learned sessions to optimize processes and improve future project delivery.

Firewall Hygiene SME

PricewaterhouseCoopers Private Ltd.
10.2018 - 03.2021
  • Conduct thorough identification and assessment of firewall rulebase vulnerabilities across PwC managed firewalls globally, ensuring compliance with PwC ISP (Information Security Policy) and established Firewall Risk Criteria.
  • Perform detailed analysis to detect overly permissive, redundant, obsolete, or non-compliant firewall rules that may increase security risks or operational inefficiencies.
  • Analyze firewall traffic logs and data using SPLUNK to understand real-time and historical traffic patterns traversing the firewalls.
  • Utilize insights from log analysis to prioritize vulnerabilities, validate rule changes, and detect anomalous or unauthorized network activities.
  • Work closely with global firewall teams across multiple regions to communicate findings, discuss remediation strategies, and facilitate timely resolution of identified vulnerabilities.
  • Coordinate cross-team activities and synchronize efforts to align with global firewall hygiene standards and risk mitigation objectives.
  • Maintain detailed trackers for monitoring the progress of firewall vulnerability remediation initiatives.
  • Provide regular, comprehensive status reports to project leadership and stakeholders, highlighting remediation progress, outstanding issues, and risk areas needing attention.
  • Lead the ongoing management and continuous improvement of the firewall hygiene process globally, ensuring systematic identification, prioritization, and remediation of firewall rulebase vulnerabilities.
  • Establish and enforce standardized best practices and workflows to maintain optimal firewall configurations aligned with PwC’s security posture.
  • Mentor and guide new joiners and junior team members on firewall hygiene processes, tools, and PwC security policies.

I.T Analyst

Tata Consultancy Services Ltd.
02.2016 - 10.2018
  • Conduct comprehensive vulnerability assessments across corporate networks using industry-standard tools (e.g., Nessus, Qualys) to identify potential security weaknesses and attack vectors.
  • Analyze scan results to prioritize vulnerabilities based on risk impact and exploitability; develop and recommend actionable remediation plans to mitigate identified risks.
  • Collaborate with IT and infrastructure teams to implement security patches, configuration changes, and hardening standards to reduce attack surfaces across endpoints and network devices.
  • Monitor organizational patch compliance status, ensuring timely deployment of critical security patches across all managed endpoints.
  • Define and enforce hardening standards based on CIS benchmarks and internal security policies for systems and applications to prevent unauthorized access and reduce vulnerabilities.
  • Document and maintain patching procedures, working closely with system administrators to resolve patch-related issues.
  • Lead investigation into security incidents, including initial detection, root cause analysis, and documentation of findings for audit and compliance purposes.
  • Track and document security events and incidents using security information and event management (SIEM) tools.
  • Develop and implement controls and remediation actions to address vulnerabilities and prevent recurrence of security incidents.
  • Conduct routine social engineering exercises such as phishing simulations and physical security assessments (e.g., clean-desk audits) to evaluate employee compliance with security policies.
  • Plan and deliver interactive security awareness sessions for end-users to promote a security-conscious culture and reduce human-related security risks.
  • Investigate suspected or confirmed security violations to identify gaps in existing security policies or controls; recommend appropriate policy updates or new security measures.
  • Ensure compliance with organizational information security policies, standards, and regulatory requirements through periodic assessments and audits.
  • Develop, test, and update network disaster recovery and business continuity plans to maintain availability and resilience of critical IT services during adverse events.
  • Coordinate with business and technical stakeholders to conduct periodic recovery drills and validate plan effectiveness.
  • Maintain and update comprehensive security process documentation including vulnerability management, incident response procedures, patch management workflows, and user guidelines.

Networking & Security Specialist

Cattlefield Technologies India Pvt. Ltd.
06.2013 - 02.2016
  • Proactively monitor and administer Check Point Firewall and Iptables configurations to ensure network perimeter security, continuous policy compliance, and optimized traffic filtering.
  • Analyze firewall logs and alerts to detect unauthorized access attempts, unusual traffic patterns, or potential security breaches, swiftly initiating remediation actions.
  • Maintain firewall rulebase integrity by regularly reviewing and updating rules to eliminate redundancies and mitigate emerging threats.
  • Continuously monitor Linux server environments for system vulnerabilities by reviewing security patches, service status, and configuration settings to maintain hardened systems.
  • Manage and analyze system logs using event log and syslog mechanisms to identify suspicious activities or anomalies that could indicate security incidents.
  • Coordinate with system administrators to resolve identified risks and ensure server uptime and compliance with security standards.
  • Plan and execute penetration tests on network infrastructure components and applications at regular intervals to uncover exploitable weaknesses.
  • Document identified vulnerabilities and collaborate with respective teams to prioritize and implement corrective measures to strengthen overall security posture.
  • Stay abreast of the latest attack vectors and penetration testing methodologies to continually enhance assessment effectiveness.
  • Actively monitor network traffic and performance metrics to ensure high availability and security for authorized users while preventing unauthorized access or denial of service.
  • Utilize security monitoring tools and dashboards for real-time anomaly detection and rapid response to emerging threats or network disruptions.
  • Maintain network segmentation and access controls to uphold confidentiality and integrity of critical systems and data.
  • Conduct Proof of Concepts (POCs) for new network security devices, systems, or tools as required to evaluate their suitability and effectiveness in strengthening security infrastructure.
  • Collaborate with cross-functional teams to assess vendor solutions, prepare demonstration environments, and present findings and recommendations for adoption.
  • Document POC processes and results to assist in strategic security technology decisions and implementation planning.

Education

Bachelor of Engineering (B.E) - Electronics & Communication

Hindustan University
Chennai
01.2012

Class-XII (CBSE Board) -

Kendriya Vidyalaya O.N.G.C
Agartala
01.2008

Class-X (CBSE Board) -

Kendriya Vidyalaya O.N.G.C
Agartala
01.2006

Skills

  • ZERO TRUST Framework and Strategy Implementation
  • Patch Compliance, Hardening Standard Audit, and Remediation
  • Vulnerability Management VAPT Tools - Nessus, QualysGuard, Kali/BackTrack
  • SIEM - Splunk
  • Network Management Tools - Tufin SecureTrack, SolarWinds, and ServiceNow
  • Firewall - Check Point, Palo Alto
  • VPN - IPsec, OpenVPN
  • Networking - TCP/IP, LAN, and WAN
  • Analyser Tool - Wireshark
  • Monitoring Tool - Nagios
  • Project management
  • Team leadership
  • Risk management
  • Compliance oversight

Certification

  • ISACA Certified Information Systems Auditor (CISA), 263032731
  • Certificate of Cloud Security Knowledge v4 (CCSK), Q61GCSYPBJRVHVYB7ANE8O36
  • Palo Alto Networks Certified Network Security Engineer (PCNSE), P20PDGS1BEQ4QESE
  • Cisco Certified Networking Associate (CCNA), CSCO12230996
  • Ethical Hacking and Countermeasures (CEH), ECC34414128934
  • Check Point Certified Security Administrator (CCSA), CP0000084695
  • Qualys Certified Specialist – Vulnerability Management, Policy Compliance
  • Zscaler Certified Cloud Administrator (ZCCA-IA / ZCCA-PA), Internet Access, Private Access
  • ITIL Foundation Certified – IT Service Management

Languages

English
Hindi
Bengali

Hobbies and Interests

  • Playing Badminton
  • Long Drives & Rides
  • Cooking

Training

  • 90 hours, Cisco routing and switching (CCNA), Inter-Networkz, Bangalore
  • 120 hours, Ethical Hacking & Countermeasures (CEHv7), Inter-Networkz, Bangalore
  • 60 hours, Check Point Firewall (CCSA), Centium Technologies, Kolkata
  • 90 hours, Cloud Security Knowledge v4 (CCSK), Centium Technologies, Kolkata
  • 40 hours, Palo Alto Firewall and Networks (PCNSE)

Disclaimer

I hereby declare that the information given above is true to the best of my knowledge & belief.

Personal Information

Age: 31+ Years

Timeline

Manager

PricewaterhouseCoopers Private Ltd.
10.2018 - Current

Firewall Hygiene SME

PricewaterhouseCoopers Private Ltd.
10.2018 - 03.2021

I.T Analyst

Tata Consultancy Services Ltd.
02.2016 - 10.2018

Networking & Security Specialist

Cattlefield Technologies India Pvt. Ltd.
06.2013 - 02.2016

Bachelor of Engineering (B.E) - Electronics & Communication

Hindustan University

Class-XII (CBSE Board) -

Kendriya Vidyalaya O.N.G.C

Class-X (CBSE Board) -

Kendriya Vidyalaya O.N.G.C

Similar Profiles

CREATE PROFILE
Saugat Roy