Experienced Security Architect with a demonstrated history of working in the internet industry. Strong information technology professional skilled in Security, Networking, CDN.
Experience
Akamai
Aug 2016 – Present
Bengaluru
Security Architect
• Consulting and troubleshooting Akamai Security products like WAF, BOTMAN, PROLEXIC.
• Daily work includes live network and application layer attack mitigation by creating custom signatures on SNORT and WAF after in-depth analysis.
• WAF -Web Application Firewall, DDOS Mitigation, Bot-Manger, Radware Defense-Pro,Citrix Netscaler, Linux.
• Knowledge in scripting languages like Python and bash.
• Strong knowledge in cyber and information security concepts.
• Knowledge in tools like Metasploit Framework, Nmap, Armitage, Nessus, Nikto OpenVas, Web-Shell.
• Experience in WAF, DDOS Platform, Cloud Security, Network and application Security.
• Various protocols knowledge like TCP, IP, UDP, SSL, TLS, HTTP, DNS.
• Knowledge on functioning and working of Network Firewall, IPS, IDS, SNORT, Wireshark, NMAP, Burp Suite, Tcpdump.
• Creating signatures using a regular expression, Snort rules, and Responder Policies to mitigate the attacks towards customers.
• Working knowledge on web application vulnerabilities like cross-site scripting - XSS, SQL injection, command injection, LFI, RFI, PHP injection, CSRF, HTTP header anomalies, and OWASP top 10.
• Sound knowledge Linux OS and File directory.
• Escalating the bugs to engineering to Dev team and working to fix the issue within the SLA.
• Part of global Akamai Security Services Escalation Team (S2ET).
Troubleshoot a wide variety of products like Delivery, acceleration and security products of
Akamai
CDN.
• Products include Ion, Terra Alta, WAA, DSD, CPS, FastDNS, GTM, WAF etc.
• Troubleshoot issues related to caching, performance and security (WAF)
• Collect and analyze logs for post-attack information and troubleshooting to mitigate future
attacks and provide RCAs.
• Work independently with customers' technical teams on both pre and post sales technical
Aricent
Jun 2014 – Aug 2016
Gurgaon
Network Engineer
Working as a TAC engineer I assisted over a thousand Cisco’s customer configuring and troubleshooting their network.
- Configure and troubleshoot Security Appliances ASA/PIX, IPS, Firewall Initialization, address translation (NAT, Global, Static).
- Configure and troubleshoot IP routing and VLANs, Access Control Lists, Failover, creating Security contexts (virtual firewall), transparent firewall, Modular Policy Framework, CDA , Site to site VPN , AAA and wccp redirection of firewall.
- Troubleshooting complex issues like high memory and CPU.
- Good knowledge of Cryptography and in-depth understanding of common algorithms like RSA, AES, 3DES and DES.
- Experience with Network and Intrusion Prevention system/ IPS modules / IDS ( Signatures, Mitigating DoS attacks, Endpoint security, Tuning)
- Understanding of the various types of attacks and the various ways to mitigate attacks using the inbuilt features on Cisco Devices like MPF configuration on Cisco ASA/PIX.
- Recreate issues faced by customers in my testing LAB whenever required on cases and filed bugs/caveats if found.
- Advanced knowledge on monitoring, reporting, and troubleshooting issues