Information Security Engineer
Location : Pune, India
Experience : 8.5 Year
Rate: $18 / Hourly
Availability : More 1 Month
Work From : Offsite
Category : Information Technology & Services
PROFESSIONAL SUMMARY
Highly skilled Security Analyst with over 8 years of experience in Privilege Access, Database Monitoring, Incident Management, Risk & Compliance.
Proficient in utilizing various IT management tools and technologies such as IBM Tivoli, Netcool, Splunk, Windows, Unix, Virtualization, Messaging, AWS Cloud, Mainframe, Imperva & Active Directory. Proficient in investigating alerts, handling security events and collaborating with platform support teams.
OBJECTIVE
Intend to work and utilize my skills by innovatively applying my learning and constantly upgrading my knowledge and also to put an efficient efforts for the growth of the organization.
TECHNICAL SKILLS
Tools :
IBM Tivoli, TSM Client,
RTView, Netcool & Splunk agent.
Technologies :
Windows, Unix, Virtualization, Messaging, AWS Cloud, O365, Middleware, Network, Storage, Mainframe, Imperva & Active Directory.
IT Management Tools : Netcool, EMP, SCCM, RTView, ServiceFirst/Now, PBGUI,
Privilege Access Monitoring, core business function to monitor the suspicious activity that is
generated through backend Splunk agent or Splunk forwarder tool into RTView/Netcool monitoring for different platforms. like Unix Windows Storage Virtualization Mainframe Middleware AWS Cloud and from different User/System/Service Accounts. Referring Knowledge Article to take further actions as Compliant, Non-Compliant to (Process, Change, Security and Fraud), Noise, Omit Sampling using real time monitoring tool.
Identify the vulnerability using SMR i.e. SPDW data, Provide risk analysis to team for recently generated suspicious events and take appropriate action.
Create Knowledge Articles, amend the Confluence documents. Take ordered annual sign off from Tower Lead / Process Owner. Handle on time, quarterly, yearly Auditing activities initiated from BIA and external top audit firm like PWC, KPMG etc.
Successfully onboarded whole Imperva monitoring project and also created 4-6 knowledge articles and get all of them approved.
Performance testing while onboarding alerts into the RTView tool/ Netcool tool, testing in UAT environment, Prod in Pilot phase, Reporting and fixing bugs.
Roles & Responsibilities:
Investigate alert's as per Knowledge Article with the help of Service First, Powerbroker, Cyberark, Splunk, Esaas and escalate to senior management or forensic team in case no evidence found, Proactively handling security events which occurred into real time monitoring tool and take necessary steps as per Confluence, Monitor all platform proactively, Resolve alerts on timely and as per defined SLA, Raise security incident with alert information and assign to appropriate teams or user to gather evidence.
Collaborate platform support team whenever required, Update and Modify Knowledge Article as per business need, Raise the JIRA as per approval from Stakeholder and suppress the unwanted alerting with the help of GIS team. Actively participate in monthly call with stakeholder and update the essential changes to streamline the Knowledge Article.
Supporting Daily weekly & Monthly Mainframe check, Barclays Personal account sampling check, Barclays oracle personal account sampling check, Reset or Unlock of non-Personal Privileged Account check, PSM check, Cyber ark GIS check & DAT check.
Managing Internal and External Auditors for all the technologies. Representing PAM team to stakeholders by presenting Compliant and Non-Compliant cases (Statistical Data) in Monthly service review meetings.
Managing a team of 3 members to complete all the assigned tasks & Overseeing their performance as per organizations goals and objectives.
Creating Knowledge Transfer plans for all the resources to make sure all the resources are trained equally on all the technologies and there is no dependency on any individual.
Working closely with the all the technology leads to make sure the agreed process are being followed and there is no gap for audit perspective.
Representing PAM team to stakeholders by presenting Compliant, Noise and Non-Compliant cases (Statistical Data) in Monthly service review meetings.
Raising endeavor change for Mainframe Security on weekly basis to include the user id's into exclusion list. Reflection, Tableau, XMatters, SOM, CA Spectrum, GIRA, Powerbroker, Patching portal & AW