Beruflich Dokumente
Kultur Dokumente
Cell: - +91-9811943675
E-mail: - singh_raj@msn.com
OBJECTIVES
SUMMARY
I am presently working with Spectrum Networks Solutions Pvt Ltd as a Technical Head with
7+ years of experience. My responsibilities encompass a wide range of information and network
security related activities. Some of the primary accomplishments include information security
audits, intrusion detection & analysis, threat evaluation of client networks and design of secure
networks for the clients. Technical documentation pertaining to best practices in information
security, new trends in vulnerabilities & attack patterns and framing of standard operating
procedures in respect of new implementations have been other integral areas of my work.
Further, I have also been extensively involved in conducting training modules on security related
topics.
I have developed profound technical expertise and experience in network design and
implementation through hands-on experience on Cisco, Juniper, Nortel, Solaris as well as Windows
Operating System from 98 to Windows 7. Problem-solving abilities through intuitive and
innovating reasoning backed by theoretical knowledge are some of the attributes that have
delivered success in my endeavours. Years of hands-on involvement has ensured rich experience
on Performing Security Assessment like Vulnerability Assessment, Penetration Testing, Compliance
Audit, Business Continuity Plan, Secure Infrastructure etc.
Articulated design details with optimal solutions for ISP and Telecom Infrastructure
encompassing a wide gamut of network, security and system products. Worked as a Juniper
Specialist on all range of Juniper products, configured Juniper router to be run on personal laptop
having multicast support.
PROFESSIONAL EXPERIENCE
Organization: Spectrum Networks Solutions Pvt Ltd July 2006 to till date
Designation: Technical Head
Specializations: Information & Technical Security, Routing & Switching and System
Integration
Responsibilities:
Designing and Deploying the solutions for ISP and Telecom Infrastructure
Providing support and Implementation of Solaris, Linux, Windows, SunOne Clustering,
Veritas Net Backup, AAA (Steel Belted Radius), SDX-300 (Automated service provisioning
System), Ellocoya with support of SDX and ACP, RAID 5 Storage, NMS etc
All range of Juniper products implementation
Providing day to day support to our technical team
Doing Vulnerability Assessment, Penetration Testing and Web Application Audit.
Analyzing the abuse complaints and making consolidated reports on weekly basis so as to
keep a track of the required resolution time of complaints as per the process.
Firewall Audit; configuring firewalls as per the Information Security Policy guidelines and
predefined Checklists.
Tracking loopholes in the Firewalls and taking remedial measures against the same with
immediate effect abiding with the policy.
Syslog analysis; checking with syslogs to see if any intrusion or malicious activity
happening on the network and taking remedial measures against the same.
Assess threats, risks, and vulnerabilities from emerging security issues.
Recommended preventive, mitigating, and compensating controls to ensure the
appropriate level of protection and adherence to the goals of the overall information
security strategy.
Managed process and acted in the lead role for Computer Security Incident Response
Team.
Work on providing Incident response and recommend corrective actions to the respective
teams. Also communicate to the personnel about potential threats to the work
environment.
Responsible for creating and implementing the new policies as per requirement and support
existing Global Information Security Policy.
Major Projects
Worked for Sri Lankan Telecom for more than 5 months to deliver end design, solution and
support. Following encapsulate the major activities undertaken with SLT:
Installation of lab setup with 5 Cisco routers containing 7600, 7500, 4500 and two juniper
J2300 router with layer 3 manageable switch.
Provided clarity on the development of Network Management System as MPLS Expert.
Worked on a project for MPLS Data expansion network
Deployment of SDX (Service Deployment Exchange) on Solaris Platform and integration
with Juniper M10i Router. This activity also includes installing LDAP, SunOne Clustering and
Jboss web server.
Conducted the session for knowledge transfer on SDX to the SLT Technical people.
Daily support for SLT Network on Juniper routers, SDX, Cisco for various protocols
implementation and configuration.
Implementation of 4 Nos E120 (Juniper BRAS), M40e, 8 Nos M120, 4 Nos T640 in edge and
Core network migration.
Implementation of 6 Nos of Nortel SLB ( Server Load Balancer ) and attached with 80 HP
linux system for various applications
Design and implementation of MPLS core Network for Metro Ethernet ring with Juniper
M320.
Design and implementation of the IPTV and VoD to work with SDX and Juniper BRAS.
Developed the solution document for their RFP on expansion of MPLS Network
Off line support provided to Dialog people
Implementation of ISG 1000 in the core network for Internet and DMZ infrastructure.
Qatar Telecom (Doha) – Physical Security Audit (Project Manger) – One Month
Conducted physical security audit for various locations for Qtel.
Formulation of Physical Security Policy and Procedures
GAP Analysis Report for all the locations
Detail Site wise findings report
Report on Implementation Road Map for critical findings
Carried out installation, configuration and integration of BRAS ERX- 1440, Radius Server, SDX
system, Solaris Clustring 3.1u, Veritas Volume Manager, RAID 1 & 5 and networking applications
(Dorado NMS).
Installation and configuration of Juniper ERX – 1440 at Mumbai and Delhi MTNL.
Installation and Integration of SDX 300 with BRAS for Delhi and Mumbai.
Installation and Configuration of SUN CLUSTER 3.1u in Mumbai & Delhi.
Installation and Rebuild of RAID 5 & 1 on Sun Storage at Mumbai & Delhi.
ISG 1000 Implementation in Mumbai
Successfully completed the ATP document signed by MTNL for BRAS and Dorado.
Installation and integration of Dorado with the existing network
SDX deployment in Distributed environment with support of PMS applicati on and to work
with other products.
Configured and integrated the SDX with Ellacoya DPI, for traffic management.
Draft High level design document for supporting IPTV and IP telephony
Providing day to day interaction on fixing the design of network according to clients’
requirement.
Products covered in Consultancy are Juniper BRAS E-series, Juniper MX-480, SRX C2000
(SDX-300), ISG 1000, Funk Software (SBR Radius server), Juniper EX-4200.
Implementation support on various juniper products in Phase I & Phase II.
Conducted Vulnerability Assessment and Web Application audit for a given infrastructure to
score more then 90% to get the company Empanelled as Certified Auditors. Now spectrum
has certified auditors for doing security audit for any organization.
RailTel
Vulnerability Assessment for all Network Product
Penetration Testing for 10 live IPs
Recommendation for identified vulnerability
There have been numerous security audits under my direct supervision.
Organization: Ramco Systems Ltd Feb 2005 to December 2005
Designation: Senior Infosec Consultant
Specializations: Information & Technical Security, Routing & Switching and System
Integration
I was entrusted with the responsibilities of undertaking 27001 ISO certification, intrusion detection
and analysis, firewall configuration and threat evaluation of network implements. Technical
documentation on latest trends and technologies in areas of network security and infosec
compliance was also undertaken by me. I was deputed as security administrator at Punjab
National Bank to ensure intrusion prevention and data security.
Major Projects
Punjab National Bank – IT Head Office Sansad Marg, New Delhi – Project Head
Work as a Resident Security Consultant for Eight Months and was responsible for carrying out
regular audit and imparting training to Tech Staff for following security products:
Alteon Check Point Firewall – log analysis on the basis of running logs, checking for a Rules
and configuration at the regular intervals.
Hardware Troubleshooting for servers and security products.
Real Secure IDS/IPS (ISS Product) – Maintaining the virus, worm, attack alarms on the
IDS. Implementation for IPS at DR Site and Data Center at Mumbai and Delhi. Also
responsible for making rule sets on IPS as per the bank’s policy.
Internal Vulnerability Assessment and Penetration Testing was being carried out once in a
month.
Review for Security Policies.
In addition , my responsibility also included articulation of observations on various
documents, policies, procedures, software and Hardware architecture, network diagram,
etc.
Wipro Spectramind – Okhla, New Delhi.
Performed Vulnerability Assessment for all the servers, Desktops and Network Devices.
Organization: Network Security Solutions (I) Ltd Sept 2002 to Jan 2005 and Jan 2006 to June 2006
Designation: Senior Infosec Consultant
Specializations: Information & Technical Security, Routing & Switching and System
Integration
Responsible for carrying information security audits, performing intrusion detection & analysis,
prepare technical papers on latest security best practices and emerging trends in vulnerabilities &
attack patterns, conduct security evaluation on client networks, design secure network
architecture, draft information security policies & standard operating procedures and conduct
training on various security-related topics.
Major Projects
Conducted training for various government departments in the ministry on Security Fundamentals
and Network Security (Windows Hardening & Intrusion Detection Systems).
I worked as a team member for one year onsite to establish the cert-in. My day to day activities
comprised the following:
LAN/WAN setup for the Main Office along with Remote Location
Installation and Configuration of Mail Server (RED HAT servers)
Vulnerability Assessment for the Mail server
WAN Topologies Frame Relay; ATM; MPLS; SONET; VPN’s; Point-to-point Circuits;
Optical; Dial; ISDN
Security Products & Juniper All product range, CSIDS, Neoteris, NSAS, Zone Integrity,
Tools Checkpoint, eEye Retina, ISS Security Scanner, Balista, Nessus, NFR,
Netranger, COPS, Tripwire, Firewalk, Tracer-x, n-map, – Many others.
ACADEMIC QUALIFICATIONS
PERSONAL DETAILS