Shivam Verma
Summary
Cybersecurity & Network Security Engineer with 8+ years of experience in firewall policy engineering, SOC operations, endpoint hardening, and identity access management across hybrid environments. Proficient in Palo Alto, FortiGate, Microsoft Sentinel, Defender for Endpoint, and Azure AD. Adept at reducing false positives, improving MTTR, and enhancing security posture through SIEM tuning, XDR containment, and vulnerability remediation aligned with ISO 27001/NIST frameworks. Skilled in VPNs, SSL inspection, incident response, Zero Trust architecture, and Active Directory management. Seeking mid-level cybersecurity role.
Overview
7
7
years of professional experience
1
1
Certification
Work History
Network Engineer & Cyber Security Engineer
American Advanced Management
Jalandhar
06.2023 - Current
- Executed L2 incident response for XDR alerts (Defender/CrowdStrike), isolating hosts and blocking IOCs, reducing malware spread by 40%.
- Engineered firewall policies (Palo Alto/FortiGate) with IPS/IDS, SSL inspection, and VPN integration, improving secure access and reducing risky traffic by 35%.
- Tuned Sentinel one/Splunk detections, cutting false positives by 50% and improving MTTR for Tier 1 analysts.
- Automated SOAR playbooks for enrichment and ticketing, reducing manual alert handling time by 60%.
- Led monthly Nessus/Qualys scans and patch remediation via Intune/MECM, achieving 95% critical patch compliance.
Senior Officer (IT)
Indoco Remedies Ltd
03.2023 - 05.2023
- Managed AD, DNS/DHCP, and Aruba switches; enforced M365 security policies and MFA for 200+ users.
- Supported patching, backup validation, and audit readiness, contributing to successful ISO 27001 audit.
IT Executive
Immacule Lifesciences
Baddi
09.2022 - 03.2023
- Administered SonicWall firewall and endpoint protection for 150+ systems; configured secure VPN access.
- Conducted vulnerability scans and patch deployment, reducing exploitable risks by 30%.
- Supported DR and backup solutions to ensure business continuity and data security.
Senior Officer
Metrocraft Pharma
09.2020 - 01.2021
- Directed IT and cybersecurity operations, managing user access, endpoint protection, and network monitoring.
- Led data classification and disaster recovery initiatives, improving resilience by 25%.
- Oversaw firewall configurations, CCTV, and access control systems for physical and network security.
System Administrator
Cipla
06.2019 - 08.2020
- Managed Windows Server patching, Active Directory, and endpoint antivirus.
- Monitored network logs via PRTG and Wireshark to identify anomalies and security risks.
End User Support
IDC Technologies Pvt Ltd
09.2018 - 04.2019
- Maintained server and network infrastructure, configured Symantec AV, and ensured endpoint protection.
- Performed daily log reviews and backup integrity checks as part of security compliance.
Education
MBA - Information Technology
Lovely Professional University
BSc - Information Technology
Lovely Professional University
Skills
- Firewall Management: Palo Alto
- Firewall Management: FortiGate
- Firewall Management: SonicWall
- Firewall Management: Sophos
- SIEM & Detection: Microsoft Sentinel
- SIEM & Detection: Splunk
- SIEM & Detection: QRadar
- SIEM & Detection: ArcSight
- Endpoint Security: Defender for Endpoint
- Endpoint Security: CrowdStrike
- Endpoint Security: Sophos Central
- Identity & Access: Active Directory
- Identity & Access: Azure AD
- Identity & Access: Intune
- Identity & Access: MFA
- Identity & Access: Conditional Access
- Incident Response: IOC analysis
- Incident Response: XDR containment
- Incident Response: MITRE ATT&CK mapping
- Vulnerability Management: Nessus
- Vulnerability Management: Qualys
- Vulnerability Management: Tenable
- Vulnerability Management: Patch SLAs
- Networking: VLAN
- Networking: VPN
- Networking: DHCP/DNS
- Networking: Wireshark
- Networking: PRTG
- Networking: SolarWinds
- Compliance: ISO 27001
- Compliance: NIST 800-53
- Compliance: SOC 2
- Compliance: ITIL
Certification
- Certified Cybersecurity Technician (C|CT), EC-Council, 2025-04-01
- ISC2 Certified in Cybersecurity (CC), ISC2
- MCSE Training, Udemy
- Diploma in Hardware and Networking, Jetking Institute
Key Security Projects
- Web Security & Decryption, Rolled out URL filtering and SSL inspection with exception handling on Palo Alto/FortiGate; decreased risky web categories and improved TLS threat detection.
- Sentinel Detections & SOAR, Built KQL rules for auth anomalies, MFA fatigue, suspicious PowerShell; automated enrichment (VT/whois/Defender) and ticket creation to reduce analyst handling time.
- DFIR Mini-Cases, Phishing and malware investigations with evidence trails, EDR isolation, and post-incident policy updates; mapped to MITRE ATT&CK for standardised learning.
Open To Remote
True
Open To Relocation
True
Personal Information
- Title: Cybersecurity Analyst | SOC L2 | Network Security Engineer
- Availability: Open to Remote & Relocation
Timeline
Network Engineer & Cyber Security Engineer
American Advanced Management
06.2023 - Current
Senior Officer (IT)
Indoco Remedies Ltd
03.2023 - 05.2023
IT Executive
Immacule Lifesciences
09.2022 - 03.2023
Senior Officer
Metrocraft Pharma
09.2020 - 01.2021
System Administrator
Cipla
06.2019 - 08.2020
End User Support
IDC Technologies Pvt Ltd
09.2018 - 04.2019
MBA - Information Technology
Lovely Professional University
BSc - Information Technology
Lovely Professional University