Description
PROFILE * Perform audits of information systems and related processes & review related security policies and procedures. * Adequate exposure and 10 years of working experience of COBIT/ISO27001-27002 & 2013 framework and ITIL framework (IT Service Management) Vulnerability and Penetration testing along with Wide Network related technologies (Routing & Switching) * Frequently participate in Penetration Testing and Vulnerability Assessment - usually as the lead "pen-tester" - and in Incident Response * Have discovered, researched, and disclosed numerous vulnerabilities in both networking appliances and operating systems/applications services * Cisco Firewalls ASA/ Checkpoint and Cisco SD WAN and Cisco ISE deployed and configured. * Have maintained and developed backend databases, using: MySQL, Microsoft SQL Server, in addition to maintaining and developing front-end web applications using PHP/HTML * Adept in implementing & assuring security processes, tools and architecture designs. * In-depth knowledge in Incident Management, Problem Management and Change Management * Develop information security processes and procedures as per standards and best practices * Participated in full lifecycle and implementation of ISO27001: 2005 & 2013 framework and ISO27002 code of practice. * Worked on regulatory compliance standards like Data Privacy, SOX, HIPAA, SAS70 and implemented ITGC controls for assets. * Perform training need analysis and provide IT security related trainings to employees * Holding H1B Visa * Manage team and support end-to-end activities according to established metrics and SLAs * An effective communicator with exceptional relationship management and training skills with the ability to relate to people at any level of business & management