Sie sind auf Seite 1von 8

Rajeev Singh

Cell: - +91-9811943675
E-mail: - singh_raj@msn.com

OBJECTIVES

 To securely manage Information Management Systems and protect the CIA of


information and information systems.
 Engineer secure solutions for business opportunities.
 Learn and experience, mentor and share.
 Solution design for ISP infrastructure and to provide implementation support to
Senior engineers
 Design a Secure Infrastructure for an ISP, Telecom and Enterprises.

SUMMARY

I am presently working with Spectrum Networks Solutions Pvt Ltd as a Technical Head with
7+ years of experience. My responsibilities encompass a wide range of information and network
security related activities. Some of the primary accomplishments include information security
audits, intrusion detection & analysis, threat evaluation of client networks and design of secure
networks for the clients. Technical documentation pertaining to best practices in information
security, new trends in vulnerabilities & attack patterns and framing of standard operating
procedures in respect of new implementations have been other integral areas of my work.
Further, I have also been extensively involved in conducting training modules on security related
topics.

I have developed profound technical expertise and experience in network design and
implementation through hands-on experience on Cisco, Juniper, Nortel, Solaris as well as Windows
Operating System from 98 to Windows 7. Problem-solving abilities through intuitive and
innovating reasoning backed by theoretical knowledge are some of the attributes that have
delivered success in my endeavours. Years of hands-on involvement has ensured rich experience
on Performing Security Assessment like Vulnerability Assessment, Penetration Testing, Compliance
Audit, Business Continuity Plan, Secure Infrastructure etc.

Articulated design details with optimal solutions for ISP and Telecom Infrastructure
encompassing a wide gamut of network, security and system products. Worked as a Juniper
Specialist on all range of Juniper products, configured Juniper router to be run on personal laptop
having multicast support.
PROFESSIONAL EXPERIENCE

Organization: Spectrum Networks Solutions Pvt Ltd July 2006 to till date
Designation: Technical Head
Specializations: Information & Technical Security, Routing & Switching and System
Integration

Responsibilities:

 Designing and Deploying the solutions for ISP and Telecom Infrastructure
 Providing support and Implementation of Solaris, Linux, Windows, SunOne Clustering,
Veritas Net Backup, AAA (Steel Belted Radius), SDX-300 (Automated service provisioning
System), Ellocoya with support of SDX and ACP, RAID 5 Storage, NMS etc
 All range of Juniper products implementation
 Providing day to day support to our technical team
 Doing Vulnerability Assessment, Penetration Testing and Web Application Audit.
 Analyzing the abuse complaints and making consolidated reports on weekly basis so as to
keep a track of the required resolution time of complaints as per the process.
 Firewall Audit; configuring firewalls as per the Information Security Policy guidelines and
predefined Checklists.
 Tracking loopholes in the Firewalls and taking remedial measures against the same with
immediate effect abiding with the policy.
 Syslog analysis; checking with syslogs to see if any intrusion or malicious activity
happening on the network and taking remedial measures against the same.
 Assess threats, risks, and vulnerabilities from emerging security issues.
 Recommended preventive, mitigating, and compensating controls to ensure the
appropriate level of protection and adherence to the goals of the overall information
security strategy.
 Managed process and acted in the lead role for Computer Security Incident Response
Team.
 Work on providing Incident response and recommend corrective actions to the respective
teams. Also communicate to the personnel about potential threats to the work
environment.
 Responsible for creating and implementing the new policies as per requirement and support
existing Global Information Security Policy.

Major Projects

Sri Lankan Telecoms: (Juniper Specialist)

Worked for Sri Lankan Telecom for more than 5 months to deliver end design, solution and
support. Following encapsulate the major activities undertaken with SLT:

 Installation of lab setup with 5 Cisco routers containing 7600, 7500, 4500 and two juniper
J2300 router with layer 3 manageable switch.
 Provided clarity on the development of Network Management System as MPLS Expert.
 Worked on a project for MPLS Data expansion network
 Deployment of SDX (Service Deployment Exchange) on Solaris Platform and integration
with Juniper M10i Router. This activity also includes installing LDAP, SunOne Clustering and
Jboss web server.
 Conducted the session for knowledge transfer on SDX to the SLT Technical people.
 Daily support for SLT Network on Juniper routers, SDX, Cisco for various protocols
implementation and configuration.
 Implementation of 4 Nos E120 (Juniper BRAS), M40e, 8 Nos M120, 4 Nos T640 in edge and
Core network migration.
 Implementation of 6 Nos of Nortel SLB ( Server Load Balancer ) and attached with 80 HP
linux system for various applications
 Design and implementation of MPLS core Network for Metro Ethernet ring with Juniper
M320.
 Design and implementation of the IPTV and VoD to work with SDX and Juniper BRAS.

Dialog Broadband (Juniper Specialist)

 Developed the solution document for their RFP on expansion of MPLS Network
 Off line support provided to Dialog people
 Implementation of ISG 1000 in the core network for Internet and DMZ infrastructure.

Qatar Telecom (Doha) – Physical Security Audit (Project Manger) – One Month
Conducted physical security audit for various locations for Qtel.
 Formulation of Physical Security Policy and Procedures
 GAP Analysis Report for all the locations
 Detail Site wise findings report
 Report on Implementation Road Map for critical findings

MTNL Delhi & Bombay (India) – Project leader through Ericsson

Carried out installation, configuration and integration of BRAS ERX- 1440, Radius Server, SDX
system, Solaris Clustring 3.1u, Veritas Volume Manager, RAID 1 & 5 and networking applications
(Dorado NMS).

 Installation and configuration of Juniper ERX – 1440 at Mumbai and Delhi MTNL.
 Installation and Integration of SDX 300 with BRAS for Delhi and Mumbai.
 Installation and Configuration of SUN CLUSTER 3.1u in Mumbai & Delhi.
 Installation and Rebuild of RAID 5 & 1 on Sun Storage at Mumbai & Delhi.
 ISG 1000 Implementation in Mumbai
 Successfully completed the ATP document signed by MTNL for BRAS and Dorado.
 Installation and integration of Dorado with the existing network
 SDX deployment in Distributed environment with support of PMS applicati on and to work
with other products.
 Configured and integrated the SDX with Ellacoya DPI, for traffic management.

Aircel – Juniper Specialist (Worked through Apara)


 Commissioning of Juniper SBR (Funk Software) for Aircel Delhi and Aircel Chennai.
 Implementation of LDAP server as backend database for user authentication.

Atyaf – Bahrain, Consultancy – current project (ISP setup)

 Draft High level design document for supporting IPTV and IP telephony
 Providing day to day interaction on fixing the design of network according to clients’
requirement.
 Products covered in Consultancy are Juniper BRAS E-series, Juniper MX-480, SRX C2000
(SDX-300), ISG 1000, Funk Software (SBR Radius server), Juniper EX-4200.
 Implementation support on various juniper products in Phase I & Phase II.

Cert-in Security Auditor Empanelment

Conducted Vulnerability Assessment and Web Application audit for a given infrastructure to
score more then 90% to get the company Empanelled as Certified Auditors. Now spectrum
has certified auditors for doing security audit for any organization.

RailTel
 Vulnerability Assessment for all Network Product
 Penetration Testing for 10 live IPs
 Recommendation for identified vulnerability
There have been numerous security audits under my direct supervision.
Organization: Ramco Systems Ltd Feb 2005 to December 2005
Designation: Senior Infosec Consultant
Specializations: Information & Technical Security, Routing & Switching and System
Integration

I was entrusted with the responsibilities of undertaking 27001 ISO certification, intrusion detection
and analysis, firewall configuration and threat evaluation of network implements. Technical
documentation on latest trends and technologies in areas of network security and infosec
compliance was also undertaken by me. I was deputed as security administrator at Punjab
National Bank to ensure intrusion prevention and data security.

Major Projects

US Technology – Techno Park, Trivendrum – Team Member


Performed BS 7799 Audit as a team member, in which my responsibility was to carry out the
following tasks:-

 Kick Off Meeting


 Business Process Study
 Risk Assessment – VA, Pen Test
 Risk Mitigation
 Training

Punjab National Bank – IT Head Office Sansad Marg, New Delhi – Project Head
Work as a Resident Security Consultant for Eight Months and was responsible for carrying out
regular audit and imparting training to Tech Staff for following security products:

 Alteon Check Point Firewall – log analysis on the basis of running logs, checking for a Rules
and configuration at the regular intervals.
 Hardware Troubleshooting for servers and security products.
 Real Secure IDS/IPS (ISS Product) – Maintaining the virus, worm, attack alarms on the
IDS. Implementation for IPS at DR Site and Data Center at Mumbai and Delhi. Also
responsible for making rule sets on IPS as per the bank’s policy.
 Internal Vulnerability Assessment and Penetration Testing was being carried out once in a
month.
 Review for Security Policies.
In addition , my responsibility also included articulation of observations on various
documents, policies, procedures, software and Hardware architecture, network diagram,
etc.
Wipro Spectramind – Okhla, New Delhi.
Performed Vulnerability Assessment for all the servers, Desktops and Network Devices.
Organization: Network Security Solutions (I) Ltd Sept 2002 to Jan 2005 and Jan 2006 to June 2006
Designation: Senior Infosec Consultant
Specializations: Information & Technical Security, Routing & Switching and System
Integration

Responsible for carrying information security audits, performing intrusion detection & analysis,
prepare technical papers on latest security best practices and emerging trends in vulnerabilities &
attack patterns, conduct security evaluation on client networks, design secure network
architecture, draft information security policies & standard operating procedures and conduct
training on various security-related topics.

Major Projects

Ministry of Information Technology and Communications

Conducted training for various government departments in the ministry on Security Fundamentals
and Network Security (Windows Hardening & Intrusion Detection Systems).

Indian Cert (Computer Emergency Response Team)

I worked as a team member for one year onsite to establish the cert-in. My day to day activities
comprised the following:

 Maintaining the IRM system for updating the database


 Providing and testing remedial solutions for new vulnerabilities
 Doing a security audit for internal servers and desktops
 Developed Oracle based IRM used for automated solution for specific identification for
vulnerability
I was the top performer (98%) among a team of 20 people and was applauded by Mr.
BAJAJ.

Software Technology Park of India (STPI), Noida

 Conducted e-security audit for entire infrastructure


 Vulnerability Scanning for the web server and mail server
 System Hardening according to e-security audit Report

MES (Military Engineering Services), New Delhi – Project Manager

 LAN/WAN setup for the Main Office along with Remote Location
 Installation and Configuration of Mail Server (RED HAT servers)
 Vulnerability Assessment for the Mail server

Other Projects Undertaken

 Developed Incidence Response Database for the Brunei Cert


 BS7799 Audit for AllServe – Risk Assessment
 Cyber Training for the Delhi Police (Crime Branch)
TECHNICAL SKILLS

Security Services Vulnerability Assessment, Penetration Testing, Compliance Audit,


Application Audit
Internetworking Juniper, Cisco, Nortel, Extreme, & 3Com, Server Load Balancer and
Equipment LAN / WAN accelerator

Operating Systems Solaris, Linux(Red Hat and Fedora), Windows NT/2000/XP/2003,


Cisco IOS, Alteon OS, Screen OS, JUNOS, BackTrack, Knopix
Firewalls Checkpoint Firewall-1, Netscreen, Cisco PIX, Nokia Checkpoint
Firewalls, IP Tables
Network Test All Network General Products, SnifferPro, Network Packet Analyser,
Equipment NMS, OSS ( Clarity In-house development), Snort, IDA Pro etc

Network Protocols TCP/IP, BGP, RIP, MPLS, IGP

LAN Topologies Ethernet; Token Ring, TDM

WAN Topologies Frame Relay; ATM; MPLS; SONET; VPN’s; Point-to-point Circuits;
Optical; Dial; ISDN
Security Products & Juniper All product range, CSIDS, Neoteris, NSAS, Zone Integrity,
Tools Checkpoint, eEye Retina, ISS Security Scanner, Balista, Nessus, NFR,
Netranger, COPS, Tripwire, Firewalk, Tracer-x, n-map, – Many others.

Remote Access RSA SecurID; Juniper SSL VPN’s; Checkpoint


SecureRemote/SecureClient, PPTP, L2TP, Reverse Proxy; RADIUS; PC
Anywhere, IPSEC, TACACS, ISS Products

Encryption/PKI Microsoft Certificate Server, Checkpoint, RSA Security


Products

Reverse IDA Pro, RC( Doss based), Hex Editors


Engineering and
Debugging
Security + Network LDAP, RADIUS, ADS, SBR (Radius server), Juniper SDX-300, sunone
Applications Cluster, Microsoft Cluster, VMWare, Ellocoya with SDX, etc
Programming C++, Data Structure, Core Java (Multithreading), Visual Basic 6.0,
language and Visual C++, MS Access 2000 & 2003, Oracle 9i, Developer 2000,
Database MSSQL Server 2000
Application
CERTIFICATIONS ACHIEVED

 CEH – Certified Ethical Hacker


 Certified BS7799 LI examination conducted by BSI.
 JNCIA – M, Juniper Network Certified Internet Associate in M&T series Router
 JNCIS – M, Juniper Network Certified Internet Specialist in M&T series Router
 JNCIS – E, Juniper Network Certified Internet Specialist in E&ERX series Router
 JNCIA – EX, Juniper Network Certified Internet Associate in Switching
 JNCIS – ER, Juniper Network Certified Internet Associate in Enterprise Routing
 Microsoft Certified Professional
 Other 10 Juniper pre-sales and sales certification

ACADEMIC QUALIFICATIONS

 BCom from Delhi University 2001


 ADIT (Advance Diploma in Information Technology) 2002

PERSONAL DETAILS

Date of Birth December 09, 1977


Marital Status Married
Father’s Name Shri Subhash Singh
Permanent Address G.C.Banerjee Road, Bhikhanpur, Bhagalpur–812001, Bihar
Communication Address WB-13’A’, Gali_no-1, Shakarpur, Delhi - 92
Mobile No +91-9811943675
Passport No E8268172

Das könnte Ihnen auch gefallen