1. Name: JatinderSingh
Email ID: virk.jatinder@yahoo.com
Cell:856-437-9250
Summary:
Customer-focused Information Technology Specialist with 8 yearsof solid technology experience and a
superb understanding of Network& Security domain, Enterprise wide networkand security administration
as wellas implementation & support.
Experience in performing detailed technical network security evaluations and recommendations via
vulnerability analysis and penetration testing.
Hands-on experience of routing protocols like EIGRP,OSPF, RIP.
Expertise in implementing L2 technologies including VLAN’s,VTP,STP,RSTP,
Proficiency inconfiguration of VLAN setup on various Cisco Routers and Switches.
Experience in the setup of Access-Lists,PortSecurity and VPN tunnels.
Strong ability to Identify processes for continuous improvement and implementation of effectivesolutions.
Experience in resolving complex technical issues, whilecommunicating solutions throughout the
organization.
Outstanding knowledge of wired and wireless networking, TCP/IP concepts, and network configuration.
Strong analytical, decision making, and problem solving abilities
Self-motivated with ability to work independently / worktogether in Team environment.
Capable of quickly learning new technologies and adapting to new environments.
I have knowledge on CISSP
Created Standard Operating Procedure (SOP’s) Documentations.
Experience in SOC and PerimeterDefenseteam activities
Implementing Rules, Access controlpolicies and creating content Signature rules in IPS - Sourcefire.
Expert in WebsenseURLContentfiltering,Aruba Whitelisting and Troubleshooting.
In-Depth knowledge of Analysis, implementation, Troubleshooting, Remediation and Documentations.
Providing solutions for blocking suspicious / Malware activity on enterprise Environment.
Expert in Implementing Rules and policies in CheckpointFirewall.
Knowledge of Proxy,Firewall, Intrusion Prevention System and Implementing Security Products.
Technical Skills:
Hardware: HP, Sony, IBM, Acer, Dell desktops and laptops, Printers, Dell Power Edge 1750, 1800,
1950,2950, R520,R610Servers, Sonicwall NSAFirewall
Cisco Routers(c1700,c2600,c2691,c3600,c3700),Cisco 29xx,39xxSeriesSwitches
Firewalls:Cisco ASA 5520,CheckpointFirewalls,JuniperNSM,Sonicwall NSA5600,WatchgurdXTM,
CyberoamUTM Firewalls
Antivirus:Symantecendpointprotection12,MacAfeeEPO
Web Servers:IIS
Networking: LAN, WAN, WLAN, RIP, EIGRP, OSPF,DNS,FTP, HTTP, VPN, IPsec, ACL’s, STP, RSTP, VTP,
VOIP, MPLS, Frame Relay, 802.1a/b/g/n,802.1x,Cisco SDM,VulnerabilityManagement
OS Platforms:LinuxEntrylevel ,Windows(all flavors),Cisco
Databases /MS Products: MySQL,MS SQL, MS Access / Visio,Word,Excel,PowerPoint.
Education:
Bachelor of Engineering, Computer Science Engineering (2007) | 73%
Punjab TechnicalUniversity | Punjab, India
2. Certifications:
Cisco ID (CSCO11403335)
Cisco Certified NetworkAssociate(CCNA)
Cisco Certified NetworkProfessional(CCNP)
Cyberoam Certified Network& Security Professional(CCNSP)
MicrosoftCertified ITProfessional (MCITP )
MicrosoftCertified Technology Professional (MCTP)
Dell Certified Systems Expert (DCSE)
StealthWatch (Lancope)-Initial configuration and basic setup (ICBS)
Check PointCertified Security Administrator(CCSA)
Best PerformerAward inComcast
DomainKnowledge:
Security Engineering Hands on
Firewall -(CheckpointandJuniper)
Workwith Checkpoint hardware devicemodel 4800, 1070, 12600, G-50, G-72, P-30-00, 9070, 570.
Workwith CheckpointversionR77.10 alsoworkedwith R76 and R70.
DesignandImplementthe Firewall rulesappropriatelyandtroubleshootFirewall issues.
Work with Juniper Firewall. Design and implementing rules through Network and Security Manager
(NSM Version: 2010.2).
Routers- (Cisco andJuniper)
Workwith Cisco andJuniperAccesscontrol list.
If we receive any Block request from SIRT team for specific port which servers are internet facing, we will
apply ACLs and blockas per SIRT request.
IDS and IPS (Sourcefire)
Workwith Model DefenseCenter3500and Sensor8000 -Version 5.3
We received content/ Malicious IP from SIRT team and I will Blockit inSourcefire.
Analyzing IDS/IPS alerts & CustomizingSignaturesandTuningoutfalsepositivealerts.
Proxy(WebsenseV10000g2andBluecoatSG 500)
Managing URL Content filteringand Coordinating withWebsense vendor forAppliance issue.
BluecoatSSLinterception and other troubleshooting.
Routers- (Cisco andJuniper)
Workwith Cisco andJuniperAccesscontrol list.
If we receive any Block request from SIRT team for specific port which servers are internet facing, we will
apply ACLs and blockas per SIRT request.
Wireless-Aruba
Work withControllerA6000andAirwavemanagementversionis8.0.7.
Provisioning access to RAP2, 3 and155 devices tousers and Troubleshooting.
Addingroutesto ArubaControllers andestablishing new connections.
Tufin - Workin TufinforRootcauseanalysis and forfinding Firewall rule/ objectchange.
Workin JuniperSSLVPNfor NEWVendor Connection Establishment.
Workwith FireEyeDevicesand support fornew malware activity and finding its behavior.
3. EM7- Sciencelogicmonitoringtool (EM7G3version 7.5) for all Security and networkappliance.
Security Analyst Hands on
SIEM (Arcsight) - Monitor events, respond to incidents and report findings.
Professional Experience:
ComcastCorporation,(Wipro Technologies) May 2014– Till date
Sr. SecurityEngineer -(SecurityOperationCenter)
Moorestown– NewJersey.
Responsibilities:
Firewall AdministrationCheckpointandJuniper.ProxyAdministration(Websense),IPS & IDS
Administration(SourceFire),ImplementingPoliciesandRulesinCheckpointandJuniperFirewall,Aruba
AP Administration,ACLImplementation.
Configure and Mange CheckpointandJuniperFirewalls
Implementing RulesandpoliciesonCheckpointFirewalls.
Implementing Rules on NSM JuniperFirewalls.
Implementing newand managing existingconnections onSSLVPN(Juniper)forComcast Vendors.
Implementing ACLonCisco and Juniperrouters appropriately
Endto End complete connectivity troubleshooting onall the securityAppliance.
Understandingaccess/attackvector andBlockingMaliciousIPs,URLs,MD5and SHAValues On
appropriate Security Appliance.
AnalyzingmaliciousFilesandURLs using online toolsand blocking the same in Comcast environment
once approved by SIRT Team.
Implementingrulesandaccesscontrol policies inSourcefireDefenseCenter.
Managing URL Content Filtering onWebsense Proxy.
Connecting to Vendorsupportandresolving the issues on security Appliances.
PortScan by outside (Hacker)or vendor will be validated and Quick action willbe taken accordingly.
ArubaRAPProvisioning andTroubleshooting for Kioskand user system connections.
Understanding the Security Zone conceptand Implementingthe ACLand Rules appropriately.
Report generation and Firewall rules modification through TufinSecureTrack.
Analyzing and documentingRCAreports foroutages causedby firewalls using Tufin.
Monitor securityAppliance (Firewalls,Proxy,IPS,and Aruba Controllers) healthcheckup and acting on
it appropriately.
Monitor and Remediate to Indeni Alert.
Monitor and manually re-run the missed Backups through BackBoxappliance.
4. Hands on Experience and Knowledge of BluecoatProxySG.
Knowledge of Gigamondevices.
Preparing team MetricsReport, Weekly/monthly presentingto the Customer on Proxyand IPS/IDS
Appliance.
Dhaliwal LaboratoriesLLC,Dallas,US.
NetworkEngineer
Oct.2013 to April 2014
Key Activities:
Administration and Maintenance of LAN and WAN.
Day to day maintenance of Network/Security products and Incident handling
Developproject plans, track projectexecution, manage changes, develop and execute implementation plans.
Developed solution design document based on the approved requirements document.
Installation and configuration of Cisco ASA (5520 & 5510) forsite to site and remote access VPN.
Configured the Checkpoint Firewall 4200 NGFWat remote branch
Implemented and supported Cisco Routers 3800.
Created Standard Operating Procedures (SOP) and workflow diagrams
Developed Security Incident and Security Event management process as per Industry standard and best
practices.
Timely escalation and co-ordination with vendor and other to resolve interdependency issues and ensured
timely completion of assigned task.
Developed Knowledge Base, Reference manuals and Network Diagrams forOperations teams.
Protectthe Layer 7 application with Firewall
Manage Windows AD servers
Environment:IPRouting,RoutingProtocols,MPLS,VPN,OSPF,EIGRP,RIP,TCP/IP
Areej VegetableOil &DerivativesS.A.O.G.Muscat, UAE
NetworkSupervisor
July2013to Sept.2013
JobProfile:
Administration and Maintenance of LAN and WAN.
Day to day maintenance of Network/Security products and Incident handling
Protectthe Layer 7 application with Firewall
Monitoring NetworkTraffic and Connectivity for Cisco 3600 series
Installation, Configuring the Sonicwall Firewall
Monitoring and Maintenance of Digital leased lines
Trouble shooting hardware and softwareproblems Dell,IBM, HP, COMPAQsystems.
Installation and Maintenance of Server 2008,2012
Implement and manage Symantec Backup Exec 2012
Mange Full and Increment mental Backup using Symantec Backup Exec 2012
Mange Antivirus Server using MacAfee Epo5
Environment:IPRouting,RoutingProtocols,MPLS,VPN,OSPF,EIGRP,RIP,TCP/IP
5. Zawawi BusinessMachineLLC Muscat,UAE
NetworkEngineer
Nov.2009to June.2013
ZBM is one of the Oman largest and leading IT services provider company for more than 200 customers across the
country.
Involved in implementation, Configuration and audit the Business Data centre Cisco Routers and Firewalls
(Checkpoint, Cisco PIX & ASA).
System study and understanding the client requirements and networkarchitecture
Designing Network/security solutions as per the client requirements
Protectthe Layer 7 application with Firewall
Providing enterprise level solutions for perimeter security (Routers, Firewalls & VPN devices) deployment
enterprise wide in the organization.
Designed security baseline for complying with client internal security policies as well as industry standard
requirements.
Design and implement configuration BYOD for clients using Sonicwall Firewall to secure the Network at
Layer 7
Key Activities:
Day to day maintenance of Network/Security products and Incident handling
Handling escalated networkissues, which includes resolving Routing (EIGRP) issues, Internet based issues,
and IPSECVPNissues. Verifying link utilization, errors and rerouting traffic accordingly.
Administration of Cisco Routers (3660, 2691),Cisco Switches(4510, 6509), CiscoPIX (535,525, 515E),Cisco
ASA-5520 firewalls.
Designing and implementing of IPSec site-to-site & remote access VPN tunnels using Cisco ASA 5510,
Sinicwall Firewall, Watchgurad XTM510,
Administration and Maintenance of LAN and WAN
Performing failovertesting forthe customers, synchronizationand IOS up-gradations activities periodically.
Implementing new customer projects with different connectivity options for the customers and providing
handover for support.
Successfully led the migration of MS exchange server 2003 to 2010
Successfully led the AD and DNS migration from server 2003 to 2008
Designed and Configured a complete DR (Disaster Recovery) site forthe client
Implement the Enterprise Backup solution withSymantec Backup Exec 2010,2012
Performedin place upgrades of Windows2003 server to Windows Server 2008/R2 on Dell PhysicalServers
such as PowerEdge 1800,1950, 2950, R610 & R710
Environment:IPRouting,RoutingProtocols,MPLS,VPN,OSPF,EIGRP,RIP,TCP/IP
Windows 2003 /2008 R2 /2012, SQL Server 2008, IIS 7.0 / 7.5, Exchange Server 2010, Microsoft WSUS 2012,
Windows XP, Windows 7, Windows 8, VMware ESX Server and Workstation, SCOM 2012, iscsi, SAN, Netgear NAS,
SonicWall Firewall, MD3000i
Additional responsibilities -
6. Prepare the technical specificationaccording to the client’s requirements (Installation, Corrective Maintenance,
Incident Analysis reports).
Consultation Networkmodel design and implementation as given requirement.
Experienced in technical accountmanagement, technical support and services.
Satisfy customer specifications as per Service Level Agreement (SLA).
Troubleshoot & maintain the devices/configurations in given time-frame to reduce business loss and
productivity.
Ensuring high quality services, resulting in companies delight and optimum resource utilization.
OSI Info SolutionsIndiaPvt. Ltd. Chandigarh,
NetworkEngineer
June 2007to Oct.2009
JobProfile:
Administration and Maintenance of LAN and WAN.
Manage the WindowsAD & WSUSservers
Maintenance of Cisco 2600 Series Routers.
Cisco 2950,1900 Switch Configuration and Administration
Implementing VLAN’s between Cisco 3550, 4500 switches
Designing and implementing IPSec VPN tunnels using Cisco PIX .
Managing IP Phones to clients to carry out the BPOoperations.
Monitoring the network links and through NM tool
Maintaining Leased line
Planning, Designing, Implementing and Administration of WSUS.
Administration of Dell Servers and Clients using the DELLIT ASSISTANT.
Interacting with clients to secure the networkeffectively.
Designed and implemented Antivirus Servers using MacAfee EPO.
Installation, Configuration and Administration of Win 2003 server and WIN2000pro, WIN XP..
Planning, Designing, Implementing, Optimizing and troubleshooting of Windows 2000 & XP.
Responsibilities included installation,configuring,up-gradationandtroubleshooting of followinghardware:
CiscoRouter (17xx,18xx,25xx,26xx,28xx)
Cisco Switches (19xx,29xx,35xx,37xx),
Cisco Firewall (506, 515 &5510)