Summary
Overview
Work History
Education
Skills
Candidate
Timeline
Generic
Swapnil Shah

Swapnil Shah

Pune

Summary

Detail-oriented and certified IT Security and Infrastructure Engineer with over 5 years of experience in designing, implementing, and managing secure network and system environments. Seeking to leverage my expertise in cybersecurity, network architecture, and incident response to enhance the security posture of a forward-thinking organization. Dedicated to continuous improvement and staying abreast of the latest security trends and technologies.

Dedicated and highly skilled IT Security and Infrastructure Engineer with over 11 years of experience in designing, implementing, and managing secure IT environments. Proven expertise in network security, system hardening, and cloud security solutions, with a strong foundation in cybersecurity frameworks and best practices. Adept at conducting risk assessments, vulnerability testing, and incident response to protect critical infrastructure and data. Certified in CPTE, CEH , AZ-500 demonstrating a commitment to continuous professional development and staying abreast of the latest security trends and technologies. Exceptional problem-solving abilities and attention to detail, ensuring comprehensive protection against evolving cyber threats. Strong communicator and team player, capable of conveying complex technical concepts to non-technical stakeholders and collaborating effectively across departments. Key achievements include leading the implementation of an enterprise-wide security architecture that reduced security incidents by 40%, and successfully managing the transition of a major company's IT infrastructure to a cloud-based environment while maintaining compliance with industry standards.

Overview

13
13
years of professional experience

Work History

Plant Network & Security Incharge

Hyundai
12.2024 - Current
  • Firewall Management: Configuring and maintaining firewalls to control traffic and protect networks from unauthorized access
  • Intrusion Detection and Prevention Systems (IDS/IPS): Implementing and managing IDS/IPS to detect and respond to potential security breaches
  • Network Segmentation: Designing and implementing network segmentation to limit the spread of threats and enhance security
  • Operating System Hardening: Securing operating systems (Windows, Linux) through configuration changes, patch management, and reducing attack surfaces
  • Endpoint Protection: Deploying and managing endpoint security solutions, including antivirus, anti-malware, and endpoint detection and response (EDR) tools.
  • Vulnerability Management: Using tools like Nessus, Qualys, and OpenVAS to identify vulnerabilities in systems and networks.
  • Patch Management: Ensuring timely application of patches and updates to mitigate vulnerabilities and protect against exploits.
  • Security Information and Event Management (SIEM): Utilizing SIEM tools (Splunk, QRadar, LogRhythm) to collect, analyze, and correlate security event data for real-time threat detection.
  • Log Management: Setting up and managing log collection, storage, and analysis to monitor security events and detect anomalies.
  • Penetration Testing: Conducting penetration tests to identify and exploit vulnerabilities, providing actionable remediation advice.
  • Ethical Hacking: Applying ethical hacking techniques to assess and improve the security posture of systems and networks.
  • Security Audits: Conducting security audits and assessments to ensure adherence to policies, procedures, and regulatory requirements.
  • Cloud Security Best Practices: Implementing security best practices for cloud environments (AWS, Azure, Google Cloud).
  • Identity and Access Management in Cloud: Managing IAM in cloud platforms to ensure secure access control and user management.
  • Data Protection in Cloud: Securing data in cloud environments through encryption, access controls, and regular audits.
  • NAC: Managing NAC for controlling the unauthorized access and devices to get into the network.
  • SAC: Implementing and managing SAC for controlling the unauthorized access over servers.
  • DAC: Implementing and managing SAC for controlling the unauthorized access over database.

IT Security Engineer

Archer Transnational Systems
02.2021 - Current
  • Managing Vulnerability assessment and its management.
  • Managing vulnerability remediation.
  • Responsible for the Patch Management for the whole organization which includes endpoints, on prem servers, cloud instances, network devices etc.
  • Key player for the migration team of the organization for carrying out different migration and testing for on prem and cloud services.
  • Responsible for managing Data Centre and its network and security.
  • Taking care of security aspects for all Archer organization which includes (India and 3 locations in the US).
  • Responsible for the DLP monitoring, troubleshooting and its implementation.
  • Managing security over cloud like on Azure and AWS.
  • Managing more than 50+ Hyper V terminal servers.
  • Managing Cisco Meraki Switches and its AP’s. (Troubleshooting and configuration).
  • Managing PaloAlto, Sonicwall and Fortigate firewalls for India & US Data Centres.
  • Managing AD and office365 and applying policies as per the requirement.
  • Managing DUO as 2FA for the organization. (Configuration and implementation).
  • Managing DRUVA for file backup.
  • Working with different vendors for the implementation of different tools to make the network secure and reliable.
  • Primary contact for Infrastructure and Security escalations.
  • Taking care of firmware upgradation for all NOC devices.
  • Using multiple monitoring tools for the organization network and its system monitoring. (OPMAN, LanSweeper, ME).
  • Using Rapid7 as an SIEM tool. (IDR, MDR, Appsec etc..).
  • Looking after infrastructure security.
  • Hands on experience on Azure Cloud Technologies.

Security Analyst

Fusion factor
08.2021 - 02.2022
  • Worked on patching for more than 70 clients from the Connectwise platform Patching and managing more than 1200++ devices.
  • Working on SonicWall and Sophos firewall for its security configuration.
  • Working on DUO admin portal for more than 70 clients.
  • Managing more than 70 client office 365 security.
  • Configuration of 2FA for all clients.
  • Working on various on-demand clients for the investigation of cyberattacks held on them.
  • Working on server security configuration for all clients.
  • Working on Nessus, Rapid 7, mobile app security, website testing and all security stuffs.
  • Taking out various penetration tests of devices, networks, and whole infrastructure to make sure no loopholes in the network.
  • Testing different tools for any on-demand requirement.
  • Worked with different backups: Acronis, veeam, Datto, Axcient.

System Engineer

L&T Technology Services
01.2020 - 07.2021
  • Experience in windows product, Installation, Configuration and its troubleshooting. Hands on experience for windows-xp, vista, 8 and 10, server 2008, 2012, 2016 etc, installation and troubleshooting for the more than 350+ softwares, network troubleshooting, working on firewall, working on Azure live AD, SCCM troubleshooting and its deployment, cyber security, penetration testing and other.
  • Installations, administration and configuration of windows operating system manually or by server or by cloning.
  • Upgradation of OS and all of its features without formatting.
  • Upgradation through SCCM.
  • Assigning IP address for desktop and laptop or on DHCP.
  • Users and group management.
  • Management of desktop security.
  • Sharing and securing files and folder using NTFS permission.
  • Installation of service packs, patches and software peripherals.
  • Securing desktop and laptops from various kinds of virus threats using different platforms.
  • Backup and restoring data.
  • SCCM deployment in domain and workgroup.
  • Scope for the SCCM across Baroda location.
  • As a TL working with more than team of 8+ and arranging for the support for onsite with the best resolution without intervention in their work with 24
  • 7 support.
  • Troubleshooting of hardware issue in desktops, workstation, laptops, workstation laptops, notebooks, business class notebook.
  • Also Managing helpdesk and its calls with best resolution of problems and support to users.
  • Supporting for the troubleshooting of various problems to onsite users.
  • Managing network printers and scanners.
  • Configuring and installing bulk desktop and laptop using clone image.
  • Configuring and troubleshooting tabs.
  • Windows activation key management.
  • Desktop and laptop asset management.
  • Configuration and troubleshooting of CCTV and different security systems.
  • Configuration of fire burglar alarm and troubleshooting.
  • Working with live AD for the user creation.
  • Working with the VM Ware for the VDI for the specific end user requirements.
  • Working with the users in different location like US, UK, Germany, Japan etc for their problem resolution.
  • Hands on knowledge for the installation of 150+ softwares, CAD softwares, graphics softwares, Standalone licensing, Network licensing etc.

System Admin

Surya Pharmacy
04.2019 - 01.2020
  • Company Overview: Burundi, East Africa
  • Installations, administration and configuration of windows operating system.
  • Formatting, installing and updating of all operating system.
  • Assigning IP address for desktop and laptop.
  • Users and group management.
  • Management of desktop security.
  • Sharing and securing files and folder using NTFS permission.
  • Installation of service packs, patches and software peripherals.
  • Securing desktop and laptops from various kinds of virus threats using different platforms.
  • Backup and restoring data.
  • Troubleshooting of hardware issue in desktop and laptops.
  • Managing helpdesk calls and close with priority wise with resolution.
  • Supporting and troubleshooting direct calls over phone by users.
  • Managing network printers and scanners.
  • Configuring and installing bulk desktop and laptop using clone image.
  • Configuring and troubleshooting tabs.
  • Windows activation key management.
  • Desktop and laptop asset management.
  • Configuration and troubleshooting of CCTV and different security systems.
  • Configuration of fire burglar alarm and troubleshooting.
  • Burundi, East Africa

Computer Hardware and Network Engineer

Shree Narayana International School
01.2015 - 12.2019
  • Installations, administration and configuration of windows operating system.
  • Formatting, installing and updating of all operating system.
  • Assigning IP address for desktop and laptop.
  • Users and group management.
  • Management of desktop security.
  • Sharing and securing files and folder using NTFS permission.
  • Installation of service packs, patches and software peripherals.
  • Securing desktop and laptops from various kinds of virus threats using different platforms.
  • Backup and restoring data.
  • Troubleshooting of hardware issue in desktop and laptops.
  • Configuration and troubleshooting of CCTV and different security systems.
  • Configuration of fire burglar alarm and troubleshooting.

Assistant Desktop Engineer

Parul University
01.2014 - 12.2015
  • Installations, administration and configuration of windows operating system.
  • Formatting, installing and updating of all operating system.
  • Assigning IP address for desktop and laptop.
  • Users and group management.
  • Management of desktop security.
  • Sharing and securing files and folder using NTFS permission.
  • Installation of service packs, patches and software peripherals.
  • Securing desktop and laptops from various kinds of virus threats using different platforms.
  • Backup and restoring data.
  • Troubleshooting of hardware issue in desktop and laptops.
  • Managing helpdesk calls and close with priority wise with resolution.
  • Supporting and troubleshooting direct calls over phone by users.
  • Managing network printers and scanners.
  • Configuring and installing bulk desktop and laptop using clone image.
  • Configuring and troubleshooting tabs.
  • Windows activation key management.
  • Desktop and laptop asset management.
  • Configuration and troubleshooting of CCTV and different security systems.
  • Configuration of fire burglar alarm and troubleshooting.

Service Engineer

Canon
01.2013 - 12.2014
  • Configuring and installation of network printers and scanners.
  • Troubleshooting and repairing and maintenance of Printers at customer site.

Corporate Trainer

ONGC
Vadodara
08.2012 - 05.2013
  • Giving live training to the employees of ONGC Gujarat region at their different Corporate offices regarding hardware, network, basic troubleshooting, ONGC different software’s, TABLETS and Smartphone configuration, MS-Office pack and many.

Education

Bachelor of Science - Mathematics

Guwahati University
Guwahati
08-2015

Diploma - Electronics and Communication

B&B polytechnic
V.V.Nagar
01.2012

N -

Petknolinc
Vadodara
01.2012

CCNA -

Petknolinc
Vadodara
01.2012

HSC -

JSEM
Vadodara
01.2009

SSC -

JSEM
Vadodara
01.2007

Skills

  • Network and system security
  • Security tools and automation
  • Compliance and governance
  • Incident response management
  • Cloud security solutions
  • Infrastructure management strategies
  • Penetration testing and vulnerability management

Candidate

  • Shah Swapnil B, Male, swapnilshh800@gmail.com, +91-9510407219, Vadodara, Gujarat, Detail-oriented and certified IT Security and Infrastructure Engineer with over 5 years of experience in designing, implementing, and managing secure network and system environments. Seeking to leverage my expertise in cybersecurity, network architecture, and incident response to enhance the security posture of a forward-thinking organization. Dedicated to continuous improvement and staying abreast of the latest security trends and technologies., 11 years + (Includes 5 years of Security), Bachelors, BSC Mathematics / Dip. E&C / CCNA / CPTE / CEH/AZ-500, Network Security, System Security, Security tools, Compliance and Governance, IR, IR Management, Cloud Security, Infrastructure Management, Automation & Scripting, Penetration testing, Vulnerability management, Plant Network & Security Incharge, Hyundai, 12/01/24, Present, Configuring and maintaining firewalls to control traffic and protect networks from unauthorized access, Implementing and managing IDS/IPS to detect and respond to potential security breaches, Designing and implementing network segmentation to limit the spread of threats and enhance security, Securing operating systems (Windows, Linux) through configuration changes, patch management, and reducing attack surfaces, Deploying and managing endpoint security solutions, including antivirus, anti-malware, and endpoint detection and response (EDR) tools, Using tools like Nessus, Qualys, and OpenVAS to identify vulnerabilities in systems and networks, Ensuring timely application of patches and updates to mitigate vulnerabilities and protect against exploits, Utilizing SIEM tools (Splunk, QRadar, LogRhythm) to collect, analyze, and correlate security event data for real-time threat detection, Setting up and managing log collection, storage, and analysis to monitor security events and detect anomalies, Conducting penetration tests to identify and exploit vulnerabilities, providing actionable remediation advice, Applying ethical hacking techniques to assess and improve the security posture of systems and networks, Conducting security audits and assessments to ensure adherence to policies, procedures, and regulatory requirements, Implementing security best practices for cloud environments (AWS, Azure, Google Cloud), Managing IAM in cloud platforms to ensure secure access control and user management, Securing data in cloud environments through encryption, access controls, and regular audits, Managing NAC for controlling unauthorized access and devices to get into the network, Implementing and managing SAC for controlling unauthorized access over servers, Implementing and managing DAC for controlling unauthorized access over databases, IT Security Engineer, Archer Transnational Systems, 02/01/21, Present, Managing vulnerability assessment and its management, Managing vulnerability remediation, Responsible for the patch management for the whole organization which includes endpoints, on-prem servers, cloud instances, network devices etc., Key player for the migration team of the organization for carrying out different migration and testing for on-prem and cloud services, Responsible for managing Data Centre and its network and security, Taking care of security aspects for all Archer organization which includes (India and 3 locations in the US), Responsible for the DLP monitoring, troubleshooting and its implementation, Managing security over cloud like on Azure and AWS, Managing more than 50+ Hyper V terminal servers, Managing Cisco Meraki Switches and its AP’s (Troubleshooting and configuration), Managing PaloAlto, Sonicwall and Fortigate firewalls for India & US Data Centres, Managing AD and Office365 and applying policies as per the requirement, Managing DUO as 2FA for the organization (Configuration and implementation), Managing DRUVA for file backup, Working with different vendors for the implementation of different tools to make the network secure and reliable, Primary contact for Infrastructure and Security escalations, Taking care of firmware upgradation for all NOC devices, Using multiple monitoring tools for the organization network and its system monitoring (OPMAN, LanSweeper, ME), Using Rapid7 as an SIEM tool (IDR, MDR, Appsec etc.), Looking after infrastructure security, Hands-on experience on Azure Cloud Technologies, Security Analyst, Fusion Factor, 08/01/21, 02/01/22, Worked on patching for more than 70 clients from the Connectwise platform, patching and managing more than 1200++ devices, Working on SonicWall and Sophos firewall for its security configuration, Working on DUO admin portal for more than 70 clients, Managing more than 70 client Office 365 security, Configuration of 2FA for all clients, Working on various on-demand clients for the investigation of cyberattacks held on them, Working on server security configuration for all clients, Working on Nessus, Rapid 7, mobile app security, website testing and all security tasks, Taking out various penetration tests of devices, networks, and whole infrastructure to ensure no loopholes in the network, Testing different tools for any on-demand requirement, Worked with different backups: Acronis, Veeam, Datto, Axcient, System Engineer, L&T Technology Services, 01/01/20, 07/01/21, Experience in Windows product, Installation, Configuration and its troubleshooting, Hands-on experience for Windows XP, Vista, 8 and 10, Server 2008, 2012, 2016 etc., Installation and troubleshooting for more than 350+ software, network troubleshooting, working on firewall, working on Azure live AD, SCCM troubleshooting and its deployment, cyber security, penetration testing and others, Installations, administration and configuration of Windows operating system manually or by server or by cloning, Upgradation of OS and all of its features without formatting, Upgradation through SCCM, Assigning IP address for desktop and laptop or on DHCP, Users and group management, Management of desktop security, Sharing and securing files and folder using NTFS permission, Installation of service packs, patches and software peripherals, Securing desktop and laptops from various kinds of virus threats using different platforms, Backup and restoring data, SCCM deployment in domain and workgroup, Scope for the SCCM across Baroda location, As a TL working with more than team of 8+ and arranging for the support for onsite with the best resolution without intervention in their work with 24
  • 7 support, Troubleshooting of hardware issue in desktops, workstation, laptops, workstation laptops, notebooks, business class notebook, Also managing helpdesk and its calls with best resolution of problems and support to users, Supporting for the troubleshooting of various problems to onsite users, Managing network printers and scanners, Configuring and installing bulk desktop and laptop using clone image, Configuring and troubleshooting tabs, Windows activation key management, Desktop and laptop asset management, Configuration and troubleshooting of CCTV and different security systems, Configuration of fire burglar alarm and troubleshooting, Working with live AD for user creation, Working with the VM Ware for the VDI for specific end user requirements, Working with users in different locations like US, UK, Germany, Japan etc for their problem resolution, Hands-on knowledge for the installation of 150+ software, CAD software, graphics software, Standalone licensing, Network licensing etc., System Admin, Surya Pharmacy, Burundi, East Africa, 04/01/19, 01/01/20, Installations, administration and configuration of Windows operating system, Formatting, installing and updating of all operating systems, Assigning IP address for desktop and laptop, Users and group management, Management of desktop security, Sharing and securing files and folder using NTFS permission, Installation of service packs, patches and software peripherals, Securing desktop and laptops from various kinds of virus threats using different platforms, Backup and restoring data, Troubleshooting of hardware issue in desktop and laptops, Managing helpdesk calls and close with priority wise with resolution, Supporting and troubleshooting direct calls over phone by users, Managing network printers and scanners, Configuring and installing bulk desktop and laptop using clone image, Configuring and troubleshooting tabs, Windows activation key management, Desktop and laptop asset management, Configuration and troubleshooting of CCTV and different security systems, Configuration of fire burglar alarm and troubleshooting, Computer Hardware and Network Engineer, Shree Narayana International School, 01/01/15, 12/31/19, Installations, administration and configuration of Windows operating system, Formatting, installing and updating of all operating systems, Assigning IP address for desktop and laptop, Users and group management, Management of desktop security, Sharing and securing files and folder using NTFS permission, Installation of service packs, patches and software peripherals, Securing desktop and laptops from various kinds of virus threats using different platforms, Backup and restoring data, Troubleshooting of hardware issue in desktop and laptops, Configuration and troubleshooting of CCTV and different security systems, Configuration of fire burglar alarm and troubleshooting, Assistant Desktop Engineer, Parul University, 01/01/14, 12/31/15, Installations, administration and configuration of Windows operating system, Formatting, installing and updating of all operating systems, Assigning IP address for desktop and laptop, Users and group management, Management of desktop security, Sharing and securing files and folder using NTFS permission, Installation of service packs, patches and software peripherals, Securing desktop and laptops from various kinds of virus threats using different platforms, Backup and restoring data, Troubleshooting of hardware issue in desktop and laptops, Managing helpdesk calls and close with priority wise with resolution, Supporting and troubleshooting direct calls over phone by users, Managing network printers and scanners, Configuring and installing bulk desktop and laptop using clone image, Configuring and troubleshooting tabs, Windows activation key management, Desktop and laptop asset management, Configuration and troubleshooting of CCTV and different security systems, Configuration of fire burglar alarm and troubleshooting, Service Engineer, Canon, 01/01/13, 12/31/14, Configuring and installation of network printers and scanners, Troubleshooting and repairing and maintenance of printers at customer site, Corporate Trainer, ONGC, 01/01/12, 12/31/12, Giving live training to the employees of ONGC Gujarat region at their different corporate offices regarding hardware, network, basic troubleshooting, ONGC different software’s, tablets and smartphone configuration, MS-Office pack and many, I hereby declare that all information above is true to the best of my knowledge and references will be provided on request.

Timeline

Plant Network & Security Incharge

Hyundai
12.2024 - Current

Security Analyst

Fusion factor
08.2021 - 02.2022

IT Security Engineer

Archer Transnational Systems
02.2021 - Current

System Engineer

L&T Technology Services
01.2020 - 07.2021

System Admin

Surya Pharmacy
04.2019 - 01.2020

Computer Hardware and Network Engineer

Shree Narayana International School
01.2015 - 12.2019

Assistant Desktop Engineer

Parul University
01.2014 - 12.2015

Service Engineer

Canon
01.2013 - 12.2014

Corporate Trainer

ONGC
08.2012 - 05.2013

Bachelor of Science - Mathematics

Guwahati University

Diploma - Electronics and Communication

B&B polytechnic

N -

Petknolinc

CCNA -

Petknolinc

HSC -

JSEM

SSC -

JSEM
Swapnil Shah