Summary
Overview
Work History
Education
Skills
Candidate
Timeline
Generic
Swapnil Shah

Swapnil Shah

Infrastructure Architect
Pune,MH

Summary

Detail-oriented and certified IT Security and Infrastructure Engineer with over 11 years of experience in designing, implementing, and managing secure IT environments. Skilled in network security, system hardening, cloud security, risk assessments, and incident response. Certified in CPTE, CEH, and AZ-500, demonstrating dedication to professional growth and adherence to cybersecurity best practices. Proven track record of reducing security incidents by 40% and leading cloud infrastructure transitions while ensuring compliance. Strong analytical, problem-solving, and communication skills, excelling in cross-team collaboration and translating complex technical concepts for diverse stakeholders. Seeking to leverage expertise to strengthen the security posture of a progressive organization.

Overview

11
11
years of professional experience

Work History

Plant Network & Security Incharge

Hyundai
12.2024 - Current

Firewall Management: Configuring and maintaining firewalls to control traffic and protect networks from unauthorized access
Intrusion Detection and Prevention Systems (IDS/IPS): Implementing and managing IDS/IPS to detect and respond to potential security breaches
Network Segmentation: Designing and implementing network segmentation to limit the spread of threats and enhance security
Switching : Configuration and maintenance of Cisco switches, including LAN / WAN, vlans, trunk links, L3 switching (OSPF), redundancy protocols like STP, VRRP, HSRP etc..
Operating System Hardening: Securing operating systems (Windows, Linux) through configuration changes, patch management, and reducing attack surfaces
Endpoint Protection: Deploying and managing endpoint security solutions, including antivirus, anti-malware, and endpoint detection and response (EDR) tools.
Vulnerability Management: Using tools like Nessus, Qualys, and OpenVAS to identify vulnerabilities in systems and networks.
Patch Management: Ensuring timely application of patches and updates to mitigate vulnerabilities and protect against exploits.
Security Information and Event Management (SIEM): Designing and implementation of SIEM tools (Rapid7,Qualys) to collect, analyze, and correlate security event data for real-time threat detection.
Log Management: Setting up and managing log collection, storage, and analysis to monitor security events and detect anomalies.
Penetration Testing: Conducting penetration tests to identify and exploit vulnerabilities, providing actionable remediation advice.
Ethical Hacking: Applying ethical hacking techniques to assess and improve the security posture of systems and networks.
Security Audits: Conducting security audits and assessments to ensure adherence to policies, procedures, and regulatory requirements.
Cloud Security Best Practices: Implementing security best practices for cloud environments (AWS, Azure, Google Cloud).
Identity and Access Management in Cloud: Managing IAM in cloud platforms to ensure secure access control and user management.
Data Protection in Cloud: Securing data in cloud environments through encryption, access controls, and regular audits.
NAC: Managing NAC for controlling the unauthorized access and devices to get into the network.
SAC: Implementing and managing SAC for controlling the unauthorized access over servers.
DAC: Implementing and managing SAC for controlling the unauthorized access over database.
Security solutions : Designing, implementation and manging the different security solutions like EPS , EDR , DLP , Document Security , Proxy etc.
Server : Configured and managed VMware vSphere environments (vCenter, ESXi hosts, vMotion, HA/DRS. Conducted VM migration, backup/restore, and disaster recovery using VMware tools.
Storage : Deployed and administered storage solutions (SAN, NAS; vSAN for VM datastores)
Datacenter : Leading and managing the datacenter infrastructure.

IT Security Engineer

Archer Transnational Systems
02.2021 - Current
  • Managing Vulnerability assessment and its management.
  • Managing vulnerability remediation.
  • Responsible for the Patch Management for the whole organization which includes endpoints, on prem servers, cloud instances, network devices etc.
  • Key player for the migration team of the organization for carrying out different migration and testing for on prem and cloud services.
  • Responsible for managing Data Centre and its network and security.
  • Taking care of security aspects for all Archer organization which includes (India and 3 locations in the US).
  • Responsible for the DLP monitoring, troubleshooting and its implementation.
  • Managing security over cloud like on Azure and AWS.
  • Managing more than 50+ Hyper V terminal servers.
  • Managing Cisco Meraki Switches and its AP’s. (Troubleshooting and configuration).
  • Managing PaloAlto, Sonicwall and Fortigate firewalls for India & US Data Centres.
  • Managing AD and office365 and applying policies as per the requirement.
  • Managing DUO as 2FA for the organization. (Configuration and implementation).
  • Managing DRUVA for file backup.
  • Working with different vendors for the implementation of different tools to make the network secure and reliable.
  • Primary contact for Infrastructure and Security escalations.
  • Taking care of firmware upgradation for all NOC devices.
  • Using multiple monitoring tools for the organization network and its system monitoring. (OPMAN, LanSweeper, ME).
  • Using Rapid7 as an SIEM tool. (IDR, MDR, Appsec etc..).
  • Looking after infrastructure security.
  • Hands on experience on Azure Cloud Technologies.

Security Analyst

Fusion factor
08.2021 - 02.2022
  • Worked on patching for more than 70 clients from the Connectwise platform Patching and managing more than 1200++ devices.
  • Working on SonicWall and Sophos firewall for its security configuration.
  • Working on DUO admin portal for more than 70 clients.
  • Managing more than 70 client office 365 security.
  • Configuration of 2FA for all clients.
  • Working on various on-demand clients for the investigation of cyberattacks held on them.
  • Working on server security configuration for all clients.
  • Working on Nessus, Rapid 7, mobile app security, website testing and all security stuffs.
  • Taking out various penetration tests of devices, networks, and whole infrastructure to make sure no loopholes in the network.
  • Testing different tools for any on-demand requirement.
  • Worked with different backups: Acronis, veeam, Datto, Axcient.

System Engineer

L&T Technology Services
01.2020 - 07.2021
  • Experience in windows product, Installation, Configuration and its troubleshooting. Hands on experience for windows-xp, vista, 8 and 10, server 2008, 2012, 2016 etc, installation and troubleshooting for the more than 350+ softwares, network troubleshooting, working on firewall, working on Azure live AD, SCCM troubleshooting and its deployment, cyber security, penetration testing and other.
  • Installations, administration and configuration of windows operating system manually or by server or by cloning.
  • Upgradation of OS and all of its features without formatting.
  • Upgradation through SCCM.
  • Assigning IP address for desktop and laptop or on DHCP.
  • Users and group management.
  • Management of desktop security.
  • Sharing and securing files and folder using NTFS permission.
  • Installation of service packs, patches and software peripherals.
  • Securing desktop and laptops from various kinds of virus threats using different platforms.
  • Backup and restoring data.
  • SCCM deployment in domain and workgroup.
  • Scope for the SCCM across Baroda location.
  • As a TL working with more than team of 8+ and arranging for the support for onsite with the best resolution without intervention in their work with 24
  • 7 support.
  • Troubleshooting of hardware issue in desktops, workstation, laptops, workstation laptops, notebooks, business class notebook.
  • Also Managing helpdesk and its calls with best resolution of problems and support to users.
  • Supporting for the troubleshooting of various problems to onsite users.
  • Managing network printers and scanners.
  • Configuring and installing bulk desktop and laptop using clone image.
  • Configuring and troubleshooting tabs.
  • Windows activation key management.
  • Desktop and laptop asset management.
  • Configuration and troubleshooting of CCTV and different security systems.
  • Configuration of fire burglar alarm and troubleshooting.
  • Working with live AD for the user creation.
  • Working with the VM Ware for the VDI for the specific end user requirements.
  • Working with the users in different location like US, UK, Germany, Japan etc for their problem resolution.
  • Hands on knowledge for the installation of 150+ softwares, CAD softwares, graphics softwares, Standalone licensing, Network licensing etc.

System Admin

Surya Pharmacy
04.2019 - 01.2020
  • Company Overview: Burundi, East Africa
  • Installations, administration and configuration of windows operating system.
  • Formatting, installing and updating of all operating system.
  • Assigning IP address for desktop and laptop.
  • Users and group management.
  • Management of desktop security.
  • Sharing and securing files and folder using NTFS permission.
  • Installation of service packs, patches and software peripherals.
  • Securing desktop and laptops from various kinds of virus threats using different platforms.
  • Backup and restoring data.
  • Troubleshooting of hardware issue in desktop and laptops.
  • Managing helpdesk calls and close with priority wise with resolution.
  • Supporting and troubleshooting direct calls over phone by users.
  • Managing network printers and scanners.
  • Configuring and installing bulk desktop and laptop using clone image.
  • Configuring and troubleshooting tabs.
  • Windows activation key management.
  • Desktop and laptop asset management.
  • Configuration and troubleshooting of CCTV and different security systems.
  • Configuration of fire burglar alarm and troubleshooting.
  • Burundi, East Africa

Computer Hardware and Network Engineer

Shree Narayana International School
01.2015 - 12.2019
  • Installations, administration and configuration of windows operating system.
  • Formatting, installing and updating of all operating system.
  • Assigning IP address for desktop and laptop.
  • Users and group management.
  • Management of desktop security.
  • Sharing and securing files and folder using NTFS permission.
  • Installation of service packs, patches and software peripherals.
  • Securing desktop and laptops from various kinds of virus threats using different platforms.
  • Backup and restoring data.
  • Troubleshooting of hardware issue in desktop and laptops.
  • Configuration and troubleshooting of CCTV and different security systems.
  • Configuration of fire burglar alarm and troubleshooting.

Assistant Desktop Engineer

Parul University
01.2014 - 12.2015
  • Installations, administration and configuration of windows operating system.
  • Formatting, installing and updating of all operating system.
  • Assigning IP address for desktop and laptop.
  • Users and group management.
  • Management of desktop security.
  • Sharing and securing files and folder using NTFS permission.
  • Installation of service packs, patches and software peripherals.
  • Securing desktop and laptops from various kinds of virus threats using different platforms.
  • Backup and restoring data.
  • Troubleshooting of hardware issue in desktop and laptops.
  • Managing helpdesk calls and close with priority wise with resolution.
  • Supporting and troubleshooting direct calls over phone by users.
  • Managing network printers and scanners.
  • Configuring and installing bulk desktop and laptop using clone image.
  • Configuring and troubleshooting tabs.
  • Windows activation key management.
  • Desktop and laptop asset management.
  • Configuration and troubleshooting of CCTV and different security systems.
  • Configuration of fire burglar alarm and troubleshooting.

Service Engineer

Canon
01.2013 - 12.2014
  • Configuring and installation of network printers and scanners.
  • Troubleshooting and repairing and maintenance of Printers at customer site.

Corporate Trainer

ONGC
Vadodara
08.2012 - 05.2013
  • Giving live training to the employees of ONGC Gujarat region at their different Corporate offices regarding hardware, network, basic troubleshooting, ONGC different software’s, TABLETS and Smartphone configuration, MS-Office pack and many.

Education

Bachelor of Science - Mathematics

Guwahati University
Guwahati
08-2015

Diploma - Electronics and Communication

B&B polytechnic
V.V.Nagar
01.2012

N -

Petknolinc
Vadodara
01.2012

CCNA -

Petknolinc
Vadodara
01.2012

HSC -

JSEM
Vadodara
01.2009

SSC -

JSEM
Vadodara
01.2007

Skills

  • Network and system security
  • Security tools and automation
  • Compliance and governance
  • Incident response management
  • Cloud security solutions
  • Infrastructure management strategies
  • Penetration testing and vulnerability management

Candidate

Shah Swapnil B
Email: swapnilshh800@gmail.com | Phone: +91-9510407219 | Pune, Maharashtra

Profile

  • Certified IT Security and Infrastructure Engineer with 11+ years of experience, including 5+ years specializing in cybersecurity.
  • Expertise in designing, implementing, and managing secure network and system environments across on-premises and cloud platforms (Azure, AWS).
  • Skilled in network security, system hardening, vulnerability management, penetration testing, incident response, and compliance.
  • Proficient with security tools such as Nessus, Qualys, OpenVAS, Rapid7 SIEM (InsightIDR), Splunk, QRadar, and LogRhythm.
  • Experience managing firewalls (Palo Alto, SonicWall, Fortigate), intrusion detection/prevention (IDS/IPS), endpoint security, and multi-factor authentication (Duo Security).
  • Hands-on with virtualization technologies, including Hyper-V and VMware VDI.
  • Strong background in patch management, data loss prevention (DLP), network segmentation, IAM, NAC, DAC & SAC security models.
  • Leadership roles including plant network and security in-charge, infrastructure and security escalation contact, and migration project lead.
  • Certified in CPTE, CEH, AZ-500, CCNA, with a BSc in Mathematics and Diploma in Electronics & Communication.
  • Proven achievements include reducing security incidents by 40% and leading enterprise-wide cloud migration while maintaining compliance.

Professional Experience Highlights

  • Managing security architecture and implementations for multi-location enterprises (India & US).
  • Conducting penetration tests, vulnerability assessments, and implementing remediation strategies.
  • Administering cloud security, endpoint protection, and comprehensive monitoring using multiple SIEM and security analytics platforms.
  • Configuring and troubleshooting network infrastructure including Cisco Meraki switches and enterprise firewalls.
  • Leading teams and vendor collaborations to deliver robust and reliable IT security solutions

Timeline

Plant Network & Security Incharge

Hyundai
12.2024 - Current

Security Analyst

Fusion factor
08.2021 - 02.2022

IT Security Engineer

Archer Transnational Systems
02.2021 - Current

System Engineer

L&T Technology Services
01.2020 - 07.2021

System Admin

Surya Pharmacy
04.2019 - 01.2020

Computer Hardware and Network Engineer

Shree Narayana International School
01.2015 - 12.2019

Assistant Desktop Engineer

Parul University
01.2014 - 12.2015

Service Engineer

Canon
01.2013 - 12.2014

Corporate Trainer

ONGC
08.2012 - 05.2013

Bachelor of Science - Mathematics

Guwahati University

Diploma - Electronics and Communication

B&B polytechnic

N -

Petknolinc

CCNA -

Petknolinc

HSC -

JSEM

SSC -

JSEM
Swapnil ShahInfrastructure Architect