Ankit Wadhwa

From Change Management:

Actively working on Service requests and incidents via HP SM9 Tool.

Participating in rigorous change management process, which involves following tools:

RIAM: Risk impact and assessment matrix.

Slotty: For scheduling of all security changes. Provide the timeframe for each security devices.

Infoman: Providing technical and business aspects of the change or service request, which needs to be executed.

Technical Perspective:

Actively working on various vendor firewalls such as Fortinet, Checkpoint, Imperva WAF.

From trouble tickets to implementing changes on Fortigate firewalls which involve troubleshooting and checking logs via forti-analyser to implementing the complex changes on fortigate via forti-manager.

Regular back-up of fortigate firewalls via Manager prior implementing the complex changes.

Handling URL filtering requests to PAC file changes in Bluecoat proxies.

Adding the various security devices in CyberArk as per the requests.

Processing of checkpoint provider-1 requests such as managing MDS, MLM issues to normal firewall requests.

Handing certificate renewal service requests on Imperva WAF from backing up to deployment of those certs.

Participating in maintenance activities such as VLAN Addition on fortigate or VDOM creation via forti-Manager.

• Currently being part of a team of eight security engineers who are responsible for building/deploying security devices in customer networks and for the full management/maintenance of those devices.
• Manage the firewalls across Dixons estate.( DC,HK, Sheffield, Newark, Newark CRC, Brno Nemo)
• Configured site-to-site and client VPNs with Dixons third party and identify and resolve firewall and VPN connectivity issues.
• Provide access to Third party supplier and to DSG supplier websites
• Perform vulnerability scans for the PCI in scope assets monthly and quarterly basis and update relevant teams to work on resolution.
• Weekly meeting with Dixons to provide them updates on the operation security metrics.
• Create new policies as per CIS standards and check the compliance against all new builds.
• Resolve Incidents related to Security Support, logged via the Service Desk.
• Provide Tier-3 troubleshoot support on all managed devices and supported technologies.
• Responsible for handling customer escalation issues and putting together after action reports when necessary.
• Perform installs, configure and troubleshooting on state full inspection firewalls
• Daily analysed network traffic looking for trends and or malicious activities, created vulnerability report with action plans.
• Participating in weekly CRB meeting to present various change orders that need to implement on weekly basis.

• Member of a team that installs manages & supports network security hardware and software.
• Team manages 50+ Checkpoint R75 firewalls
• Juniper SSL VPN (SA 6500): Providing intranet resources such as applications, server access etc. Realm, roles creation, centralized management of the SSL boxes.
• RSA Authentication Manager 7.1: Token management, Reporting, integrating two factor authentication with RSA compatible resources, auditing, troubleshooting the remedy generated tickets with the help authentication manager (RSA Security console).
• Websense Web Security V10K (Proxy Server): Customized client based policy creation, real time web traffic analysis, URL filtering based on remedy tickets.
• BigIP F5 Load balancer (GTM): Creation of virtual servers, pool, pool members, providing load balancing via GTM module using different methods such topology, global availability to infrastructure teams.
• Manage & support all deployed platforms
• Monitor systems and research and respond to anomalies and issues
• Provide level II/III support on escalated incidents from help desk
• Participate in on call rotation,
• Strong interpersonal skills to tackle team members and keep them motivated towards their work.
• Training the new joiners and the existing employees to hone and update them about the new security products and methods.
• Worked for various big companies, as my clients, for securing their network and reducing the chances of data and information theft, Client Name: Boston Scientific.