SUDHARSAN M

Managed customer's tickets through VMWARE ticketing system for opening, closing, and resolving issues. ▶ Designed, implemented, managed and documented network security configurations for firewalls. ▶ Managed backups, replications and disaster recovery plans of company mission critical servers and database files to ensure redundancy.

Leading security event response, incident analysis, and security device maintenance. ▶ Managing team for internal audits, compliance activities, and ISO 27001:2022 certification. ▶ Supervising Global Vulnerability Management and security compliance initiatives. ▶ Directing security audits, controls testing, and security reports generation. ▶ Implementing security rule /policy in firewall, antivirus systems, and internet access policies. ▶ Teaching over performance to achieve success and maintain the team's effectiveness in day-to-day operation and compliance policy. ▶ Leading staff by reviewing and providing guidance in the development and maintenance of ISMS scoping documentation, including system understanding, process flows, and system infrastructure diagrams. ▶ Delivering a forward vision to identify best practices and opportunities for improvement in both the remit of the role and the reporting on the applications the role oversees. ▶ Conducting weekly/monthly/quarterly technical security activities and functions such as assessing vendor security, provisioning, and reviewing access, crafting, and maintaining security reports. ▶ Leading change management, incident management, and upkeep of security devices with the latest firmware, OS, patches, and hotfixes. ▶ Investigating, blocking and allowing of specific websites in Proxy to meet organizational requirements. ▶ Supporting configuration and maintenance of Firewall, IDS/IPS, SIEM, Proxy, Antivirus and Email systems and consoles for daily operations. ▶ Crafting policies and providing internet access to users in Proxy according to management policies. ▶ Superintending response and analysis of security events and incidents from various sources such as Firewalls, IPS, IDS, Antivirus, Mail Gateway, Proxy, and other client data sources. ▶ Investigate incidents and spearhead response efforts as necessary. ▶ Uphold engineering and security documentation. ▶ Aid customers in fully optimizing the capabilities of the SIEM system, including audit and logging features of event log sources. ▶ Generate technically detailed reports on the status of the SIEM, incorporating metrics such as the number of logging sources. ▶ Maintain, fine-tune, and improve SIEM use cases. ▶ Take charge of investigating and implementing defect resolutions through Engineering into the Production Environment, ensuring no disruption to live service. ▶ Oversee and optimize the performance of the SIEM infrastructure. ▶ Provide support for security engineering requirements in projects, transitions, and transformations. ▶ Azure cloud security posture management to detect misconfigured resources and mitigate risks