Siddhartha Jain (CISSP)

Email: [email protected]

I am a CISSP with 8+ years of experience in various domains of Information Security like Risk Management, Security Operations and Threat Response.

 

Total seven years of work experience
	Skill set / Technology	Products / Tools	Experience
1	Industry standards and certifications	ISO 27001:2005, SAS 70 Type II Audit, CoBIT Foundations	Three years
2	Security products and technologies	Firewalls, Intrusion Detection systems, VPN solutions, Two-factor authentication solutions, Forensic tools like Encase Enterprise & Forensics, Log analysis tools.	Seven years
3	Unix	Solaris, Linux & FreeBSD	Eight years
4	Programming/Scripting Languages	Perl, C, Awk, shell	Eight years

 

Work Experience

 

Symantec Corporation from Dec'2006 as Senior Threat Specialist

• Threat Response and Management for Symantec's Information resources using Intrusion detection systems and Forensic tools like Encase Enterprise & Forensics.
• Review and approval of projects and solutions that require exception to established security policies and practices
• Installation and management of Encase Enterprise & Forensic solution.
• Evaluation of cutting edge security solutions for deployment by Symantec IT
• Proof of concept deployment and testing for Symantec Security Information Manager
• Test and evaluation of Redseal's Security Risk Manager
• Test and evaluation of Endace Accelerated Gigabit network capture platform with AppliedWatch Snort Management Solution

 

KLA-Tencor From May’ 2006 to Dec'2006 (On contract from Beyond Innovation Inc)

·         Periodic Security review by conducting vulnerability assessment and penetration tests.

·         Administration and maintenance of NetScreen firewalls

·         Administration and maintenance of RSA ACE Authentication server.

·         Administration and maintenance of Neoteris SSL VPN

·         Deployment and administration of Juniper and Snort IDS.

·         Maintenance of Tripwire file integrity monitoring system.

·         Vulnerability management and reporting.

 

Netmagic Solutions (From January’ 2004 to April’ 2006)

• Successfully led the ISO 27001:2005 initiative as the CISO of the organization
• Drafting the Information Security Management System Scope, Objective and building the core Information Security Forum within the organization.
• Determining Risk Assessment Methodology and assisting department heads in performing Risk Assessment.
• Preparing documentation for the audit like Statement of Applicability and Risk Treatment Plan.
• Drafting policies for process controls applied
• Reviewing the procedures and other Level-3 documents submitted by the department managers.
• Holding ISMS and Internal Audit review meetings to measure effectiveness of the process controls applied
• Coordinating the audit exercise conducted by BSI Management Systems, India
• Managing Netmagic’s (arising from service level agreements with customers) SAS 70 Type II Audit requirements.
• Assisting customers with cybercrime investigations alongwith liasoning with law enforcement authorities.
• Leading the setup a Security Operations Centre for Netmagic’s customer (a US based telecom company)
• Network and Systems Infrastructure Analysis for performance improvement and scalability for Level-Up Inc. Troubleshooting performance bottlenecks and downtime issues in an infrastructure consisting of approximately 200 Windows 2000 servers, 6 SQL Database servers, five NetScreen/Fortigate firewalls, Cisco 3550 and Cisco 6500 that serves 50,000+ concurrent users for a Massively Multiplayer Online Role Playing Game. My job was to look at all the components in the infrastructure and give detailed solutions for resolving any bottlenecks.
• Migration of operations and setting up remote infrastructure management for Wisden Group (www.cricinfo.com) that serves upto 40 million requests a day through its online cricket match score boards.
• Reviewing and auditing the network, security and systems for Rave Technologies.

 

Bank Muscat SAOG (From March’ 2003 to January’ 2004)

• Review of Security Policy and recommend changes to the policies and procedures.
• Review of new applications and technologies to be implemented in the bank for security.
• Review of Security Architecture and mechanisms and recommend changes to the structure.
• Familiarity with secure banking communication mechanisms like SWIFT and Bolero.
• Conduct internal audit to ensure compliance with Central bank and external audit recommendations.
• Plan secure messaging architecture including deployment of PKI and PGP mechanisms.
• Installation, configuration and and maintenance of Checkpoint Firewall/VPN and MS-ISA Server.
• Installation, configuration and maintenance of RealSecure Network Intrusion Detection System.
• Installation, configuration and maintenance of Websense URL Filtering software for Microsoft ISA Proxy Service.
• Create OS hardening guidelines and scripts of automating the hardening process.
• Maintain necessary documentation for External, IT and Security audits.

 

Network Solutions  (January’2002 to February’ 2003)

• Design and deployment of Firewalls at Intel Online Services, Bombay, India as an Onsite Engineer.
• Pre-sales activities for Security Solutions and Services covering the following solutions:
• Design of IPSec and MPLS based VPNs. Also, integration with PKI and two factor authentication
• Design of Firewall and Intrusion detection solutions.
• Firewalls: Cisco PIX, Checkpoint/Nokia, NetScreen
• VPN:  Cisco VPN Concentrator
• Single Sign-On and PKI Solutions: Critical Path Solutions
• Two factor authentication: Rainbow Technologies iKey Series
• SSL Accelerator: Rainbow NetSwift Series and HSM
• HP Openview Web Transaction Observer deployment at Intel Online Services Bombay Data centre.
• Pre-sales activities for Storage Solutions and Services including design of IBM’s Storage Solutions.
• Post-sales activities including installation and configuration of Cisco PIX Firewalls and Cisco VPN Concentrator.
• Technical training for co-workers:
• For Sales and Business Development Managers to performance at client demonstrations and understand market positioning of the product portfolio, analysis of market opportunities and competitive analysis.
• For post-sales engineers to enable them to provide better technical support.
• Provide proofs of concept (POC’s) for the client before the sales were finalized.
• Wrote detailed architecture diagrams for Product Requirements Document (PRD).
• Maintained an in-depth technical understanding of all software products and services.

 

Netmagic Solutions (December’2000 to January’ 2002)

 

Security – Firewalls & VPNs

• Installation and administration of Cisco PIX and Checkpoint Firewall-1.
• Host level security setup on Sun Systems, Linux, OpenBSD and FreeBSD.
• Setting up Intrusion Detection Systems (Snort, ISS Real Secure 5.0).
• Signature update and analysis, IDS log analysis, Configuring IDSs for responding to attacks
• Security audits using tools like ISS Internet Scanner, ISS System Scanner, Nmap, Nessus and SAINT.
• Testing bug exploits and Tracking software releases for bugs and exploits
• Configuring site-to-site and host-to-site tunnels (IPSec) using Checkpoint VPN-1, Intel 3110, Cisco PIX, Cisco 5300 and Radware cIPro.

 

Solaris Installation and Tuning

• Installation and configuration of Solaris 2.6/2.7 on servers (Enterprise E220R, E420R, E250, E3500, E4500).
• Automating installation using jumpstart from an install and boot server. 
• System performance monitoring and tuning.

 

Directory Services Management

• Installation and Administration of OpenLDAP (LDAPv3) and Netscape Directory Server 4.0.
• Design of LDAP schema, adding attributes and object classes and configuring Access Control Lists.
• Configuring qmail user authentication in virtual domains using LDAP server.
• Apache user authentication using LDAP server.

 

Storage Management

• Installation and configuration of Solstice DiskSuite 4.2 and RAID Manager 6.22 on Sun Storedge A1000.
• NetApp Network Attached Storage Appliance.
• Installation, configuration and management of Compaq Tape Library TL895 with Legato Networker.

 

 

Mail Service Management

• Configuration of SMTP server using Qmail-1.03 for enterprise mail server, mail-relay, domain masquerading and integrating it with DNS and LDAP servers.
• Setting up Qmail for virtual domains and virtual users using LDAP.

 

Scripting Languages

• Perl/CGI scripting to create and process web-based forms.
• Developing scripts using Perl 5, Shell (sh and csh), AWK and Sed.

 

 

PROFESSIONAL QUALIFICATIONS

 

Institute of Computer Science & Electronics, Devi Ahilya University, Indore, India.

Master of Computers Management (June 1998 to May 2000)

 

Certified Information Systems Security Professional, since October’2002, ISC²

 

Government Arts & Commerce College, Devi Ahilya University, Indore, India.

Bachelor of Commerce (June 1995 to May 1998)

 

Languages & Programming

Perl, Shell, C and basic Unix system programming.

 

Operating Systems

Solaris 2.6/2.7/2.8, RedHat Linux 5.2 to 7.2, OpenBSD 3.0, FreeBSD 4.4 and Windows NT/2000.