OnBenchMark Logo

Ritesh (RID : yb8plkv5a7lz)

designation   Information Security Engineer

location   Location : Pune, India

experience   Experience : 8.5 Year

rate   Rate: $18 / Hourly

Availability   Availability : More 1 Month

Work From   Work From : Offsite

designation   Category : Information Technology & Services

Shortlisted : 0
Total Views : 192
Key Skills
Information Security Linux Ansible AWX RHEL ID Tableau SCCM BigFix Patching Active Directory security incidentinvestigatio
Discription

PROFESSIONAL SUMMARY

 

Highly skilled Security Analyst with over 8 years of experience in Privilege Access, Database Monitoring, Incident Management, Risk & Compliance.

Proficient in utilizing various IT management tools and technologies such as IBM Tivoli, Netcool, Splunk, Windows, Unix, Virtualization, Messaging, AWS Cloud, Mainframe, Imperva & Active Directory. Proficient in investigating alerts, handling security events and collaborating with platform support teams.

 

 

OBJECTIVE

 

Intend to work and utilize my skills by innovatively applying my learning and constantly upgrading my knowledge and also to put an efficient efforts for the growth of the organization.

 

TECHNICAL SKILLS

Tools :

IBM Tivoli, TSM Client,

RTView, Netcool & Splunk agent.

 

Technologies :

Windows, Unix, Virtualization, Messaging, AWS Cloud, O365, Middleware, Network, Storage, Mainframe, Imperva & Active Directory.

 

IT Management Tools : Netcool, EMP, SCCM, RTView, ServiceFirst/Now, PBGUI,

Privilege Access Monitoring, core business function to monitor the suspicious activity that is

generated through backend Splunk agent or Splunk forwarder tool into RTView/Netcool monitoring for different platforms. like Unix Windows Storage Virtualization Mainframe Middleware AWS Cloud and from different User/System/Service Accounts. Referring Knowledge Article to take further actions as Compliant, Non-Compliant to (Process, Change, Security and Fraud), Noise, Omit Sampling using real time monitoring tool.

Identify the vulnerability using SMR i.e. SPDW data, Provide risk analysis to team for recently generated suspicious events and take appropriate action.

Create Knowledge Articles, amend the Confluence documents. Take ordered annual sign off from Tower Lead / Process Owner. Handle on time, quarterly, yearly Auditing activities initiated from BIA and external top audit firm like PWC, KPMG etc.

Successfully onboarded whole Imperva monitoring project and also created 4-6 knowledge articles and get all of them approved.

Performance testing while onboarding alerts into the RTView tool/ Netcool tool, testing in UAT environment, Prod in Pilot phase, Reporting and fixing bugs.

Roles & Responsibilities:

Investigate alert's as per Knowledge Article with the help of Service First, Powerbroker, Cyberark, Splunk, Esaas and escalate to senior management or forensic team in case no evidence found, Proactively handling security events which occurred into real time monitoring tool and take necessary steps as per Confluence, Monitor all platform proactively, Resolve alerts on timely and as per defined SLA, Raise security incident with alert information and assign to appropriate teams or user to gather evidence.

Collaborate platform support team whenever required, Update and Modify Knowledge Article as per business need, Raise the JIRA as per approval from Stakeholder and suppress the unwanted alerting with the help of GIS team. Actively participate in monthly call with stakeholder and update the essential changes to streamline the Knowledge Article.

Supporting Daily weekly & Monthly Mainframe check, Barclays Personal account sampling check, Barclays oracle personal account sampling check, Reset or Unlock of non-Personal Privileged Account check, PSM check, Cyber ark GIS check & DAT check.

Managing Internal and External Auditors for all the technologies. Representing PAM team to stakeholders by presenting Compliant and Non-Compliant cases (Statistical Data) in Monthly service review meetings.

Managing a team of 3 members to complete all the assigned tasks & Overseeing their performance as per organizations goals and objectives.

Creating Knowledge Transfer plans for all the resources to make sure all the resources are trained equally on all the technologies and there is no dependency on any individual.

Working closely with the all the technology leads to make sure the agreed process are being followed and there is no gap for audit perspective.

Representing PAM team to stakeholders by presenting Compliant, Noise and Non-Compliant cases (Statistical Data) in Monthly service review meetings.

Raising endeavor change for Mainframe Security on weekly basis to include the user id's into exclusion list. Reflection, Tableau, XMatters, SOM, CA Spectrum, GIRA, Powerbroker, Patching portal & AW

 
Matching Resources
My Project History & Feedbacks
Copyright© Cosette Network Private Limited All Rights Reserved
Submit Query
WhatsApp Icon
Loading…

stuff goes in here!