$$$
{{ $t($store.state.user.experience_value_in_dollars) }}
Senior
{{ $t($store.state.user.experience_search_name) }}
0
jobs
Cloud Security Consultant and Compliance
Priti Kumari
,
Northampton, United Kingdom
Experience
Other titles
Skills
I'm offering
I have 6.2+ yrs of experience working into Security profile and have exposure and hands on working on various security tools and technologies . For detail please visit my LinkedIn Profile and CV.
Markets
United Kingdom
Industries
Language
English
Fluently
Ready for
Larger project
Ongoing relation / part-time
Full time contractor
Available
My experience
2020 - ?
freelance
Senior Cyber Security & Compliance Consultant
DXC Technology.
Job Responsibilities
Working as subject matter expert suggesting best practices to customer's to enhance security and how to avoid any security loop holes by restricting the attack surface. Working with and for various customers across the globe
Currently working on Microsoft Azure, Sentinel, Intune, Crowdstrike, Qualys, Splunk. Apart from this working on vulnerability assessment, writing best practices, working on Incidents reports and risk acceptance report and NSG reports for several Clients and keeping track of them. Working on ASC recommendation for azure. Working on Project delivery and design experience. Working very closely with architect to provide security best practices.
Achievements and Roles
◦ Working on SOPs and documentation for account and project to follow and promote team standards.
◦ Working on Planning and prioritizing workloads to measure and report on progress.
◦ Reporting/Suggesting technical solutions to customers, architect and cso/aso for account.
◦ Work on Incident mgmt., risk mgmt. and change mgmt.
◦ Assisting on Audit, GDPR and security and Compliance standards.
◦ Maintaining security control baselines to identify capacity and licensing requirements for future budgets.
◦ Works with other clouds-ops and wintel team to identify control gaps and implement security improvements
◦ Works as consultant or SME for customers across the globe - UK, Canada, USA, Australia
◦ Managing and maintaining metrics and reporting to ensure performance of security control for each account
◦ Monitor and Maintains automated processes that aid in alert information enrichment and incident management
◦ Engaged in educating security best practices and best technical solutions and KT to cloud-ops team and junior joinees.
◦ Educating and maintaining the awareness of changing threat landscape and industry standards to identify, justify and progress opportunities to improve security and counter new threats
◦ Handling weekly/ monthly meeting with various customers to discuss progress on the team efforts, details on risk acceptance report and Incident SLA report
Achievements
Working as subject matter expert suggesting best practices to customer's to enhance security and how to avoid any security loop holes by restricting the attack surface. Working with and for various customers across the globe
Currently working on Microsoft Azure, Sentinel, Intune, Crowdstrike, Qualys, Splunk. Apart from this working on vulnerability assessment, writing best practices, working on Incidents reports and risk acceptance report and NSG reports for several Clients and keeping track of them. Working on ASC recommendation for azure. Working on Project delivery and design experience. Working very closely with architect to provide security best practices.
Achievements and Roles
◦ Working on SOPs and documentation for account and project to follow and promote team standards.
◦ Working on Planning and prioritizing workloads to measure and report on progress.
◦ Reporting/Suggesting technical solutions to customers, architect and cso/aso for account.
◦ Work on Incident mgmt., risk mgmt. and change mgmt.
◦ Assisting on Audit, GDPR and security and Compliance standards.
◦ Maintaining security control baselines to identify capacity and licensing requirements for future budgets.
◦ Works with other clouds-ops and wintel team to identify control gaps and implement security improvements
◦ Works as consultant or SME for customers across the globe - UK, Canada, USA, Australia
◦ Managing and maintaining metrics and reporting to ensure performance of security control for each account
◦ Monitor and Maintains automated processes that aid in alert information enrichment and incident management
◦ Engaged in educating security best practices and best technical solutions and KT to cloud-ops team and junior joinees.
◦ Educating and maintaining the awareness of changing threat landscape and industry standards to identify, justify and progress opportunities to improve security and counter new threats
◦ Handling weekly/ monthly meeting with various customers to discuss progress on the team efforts, details on risk acceptance report and Incident SLA report
Achievements
Design, Writing, Audit, Azure, Microsoft azure, Cloud, Management, GDpr, Security, Compliance, Incident Management, Assessment, Audit, USA, Processes, Customer
2020 - 2020
job
Senior IT Security Engineer
Huawei.
Job Responsibilities
Working for application Security and Network Security, HWS(Huawei Cloud Services) and Vulnerability management and logs /attack analysis, SPLUNK, HIPS ,RASP ,WAF, RSAS
And on OWASP TOP 10 standards and CIA traid and working on Creation of Splunk- Dashboard as per required.
And also working on automating manual task to enhance quick performance using Python and mysql
Working on Configuring Incident and SLA for Team and even automating the alerts over email and SMS
Working to identify and define security requirements ,managing and performing scheduled maintenance on security platforms including patching and upgrades.
Achievements
◦ Reduction of Malware and False Positive attack
◦ Worked on Integrating other tools with splunk to get all logs at a single place and analyse attack based on rules and policy created
◦ Working on AWS and HWS cloud - to enhance and monitor features on cloud premises
◦ Have Created and updated Documents for Team mates on Project and Tool and Technologies usage
◦ Have supported Audit Team during Internal and External Audit
◦ Working as technical escalation point for the team.
◦ SPOC for change management team from security Team.
◦ Manage and resolve operational issues with technical controls, helping coordinating and directing team efforts.
◦ Working on installing, configuring and maintaining security tools used such as - Antivirus ,IDS/IPS,FIM
Working for application Security and Network Security, HWS(Huawei Cloud Services) and Vulnerability management and logs /attack analysis, SPLUNK, HIPS ,RASP ,WAF, RSAS
And on OWASP TOP 10 standards and CIA traid and working on Creation of Splunk- Dashboard as per required.
And also working on automating manual task to enhance quick performance using Python and mysql
Working on Configuring Incident and SLA for Team and even automating the alerts over email and SMS
Working to identify and define security requirements ,managing and performing scheduled maintenance on security platforms including patching and upgrades.
Achievements
◦ Reduction of Malware and False Positive attack
◦ Worked on Integrating other tools with splunk to get all logs at a single place and analyse attack based on rules and policy created
◦ Working on AWS and HWS cloud - to enhance and monitor features on cloud premises
◦ Have Created and updated Documents for Team mates on Project and Tool and Technologies usage
◦ Have supported Audit Team during Internal and External Audit
◦ Working as technical escalation point for the team.
◦ SPOC for change management team from security Team.
◦ Manage and resolve operational issues with technical controls, helping coordinating and directing team efforts.
◦ Working on installing, configuring and maintaining security tools used such as - Antivirus ,IDS/IPS,FIM
Mysql, Python, Change management, AWS, Audit, Cloud, Management, Security, Cloud services, Network, It, Performing, Audit, Waf
2018 - 2019
job
IT Security Engineer
Orbit Group.
Job Responsibilities
➢ Generating CSR for ssl /wildcard certification.
➢ Manage as an admin -helpdesk support emails and tickets related tools for internal and client based
➢ Creating rules or writing policies for requirements in Force point, Incapsula, Splunk, Checkpoint.
➢ Azure IOT development and usage plan for organization
➢ Works on incident and ticket management, SLA /Resolution tracking, Change management for IT department.
➢ Worked on doamins transfer and domains registration in-house and for customer based company.
➢ Having Admin level and from scratch hands on experiences with Incapsula, Forcepoint, Crowdstrike, Checkpoint, Splunk and Microsoft Azure.
➢ Handling ISO 20K and ISO 27001 documentation for Audits.
➢ Working on Encryption Policy for organization, SCCM, Onedrive and sharepoint requirements and best practice and security policy
➢ Working on Vulnerability scanning using qualys, nessus, nmap, metasploit, netsparker, wireshark, waf
➢ Writing automation script using python, creating rules and policies based on requirement
➢ Following OWASP TOP 10 standard
➢ Preparing documents related to tools and technologies and research/study on usage and best practice of various SIEM Tools, Cloud Services and Firewall and Antivirus tool for Organization.
➢ Blocking of IP address, Domain, Email id if found suspicious /spam /phishing /attack type on analysis or performing root cause analysis.
➢ Providing access to a drop box/ Data warehouse for internal and contract users based on requirements needed.
➢ Creating VPN access for external /contract users or on premises / off premises users.
➢ Moving Citrix to the cloud and Citrix workspace cloud setup
➢ Working on Microsoft azure from end to end - setup Installation, configuring, deployment and Admin level role performance.
➢ Working on Azure Identity management, Active Directory Domain services /certificate, Azure AD Connect, Azure Security.
➢ Creating of Custom Web rules for application protection and profiling
➢ Log analysis of the escalated alerts
➢ Perform security and firewall log analysis
➢ Worked Encryption and Onedrive best Practices guide and policy
➢ Worked on Access Control Policy and procedure.
➢ Working on DDOS and Anti DDOS and other attacks and their mitigation steps.
➢ Having hands on experiences with office 365 and online threat protection and advance threat protection.
➢ Involved in preparing Flow chart diagram for day to day services (process) / weekly and monthly based services(process) for organization and team of IT.
➢ Also involved in preparing architecture Diagram and processes flow for IT and IT Security Team.
➢ Maintaining daily /weekly and Monthly reports and handling SLA to be met.
➢ Deployment, Configuration and Administration of SIEM, Firewall, Websense, Antivirus, Cloud services tools for learning and detecting attacks and protecting applications and analysing user behaviour and maintaining audit and compliance.
➢ Worked on policy writing and documentation required for various technologies - encryption, data protection, usb device control, day to day task
➢ Handling end to end registering of domain, lookup required and site requirements.
➢ Handling firewalls rule while Web hosting to allow traffic flow based on requirements.
➢ Creating architecture diagram flow for processes to be carried on premises.
➢ Working on various reports and rule required while working with Forcepoint and CROWDSTRIKE.
➢ Handling IDS/IPS, WAF, Email Security, Site to site VPN, Firewall level Security and Log and threat level Security.
➢ Working on Alarm automation and IT based integration
➢ Working on Security Risk assessment.
➢ Assisted on windows autopilot to infra and comms team
➢ Installing, Configuring and maintaining common security tools such as Anti-Virus, FIM, IDS/IPS, SIEM.
➢ Working on Change Management and Incident Management
➢ Discussing with vendor and client related to Tools and Technologies before onboarding
➢ Taking active involvement in CAB meeting along with having own Change raised.
➢ Worked on Forcepoint endpoint, email and web and data protection from end to end from installation, migration, deployment and writing policy and regular expression required.
Achievements
➢ Am involved in providing documents for end to end task and responsibility for team.
➢ Nominated as chairperson for auditing task from operation team and security team.
➢ Worked on Incident Management plan for teams of SIEM - splunk from scratch.
➢ Introduced innovative methods and tools which improved process efficiency and in time saving.
➢ Working on various incidents and from scratch in Team.
➢ Generating CSR for ssl /wildcard certification.
➢ Manage as an admin -helpdesk support emails and tickets related tools for internal and client based
➢ Creating rules or writing policies for requirements in Force point, Incapsula, Splunk, Checkpoint.
➢ Azure IOT development and usage plan for organization
➢ Works on incident and ticket management, SLA /Resolution tracking, Change management for IT department.
➢ Worked on doamins transfer and domains registration in-house and for customer based company.
➢ Having Admin level and from scratch hands on experiences with Incapsula, Forcepoint, Crowdstrike, Checkpoint, Splunk and Microsoft Azure.
➢ Handling ISO 20K and ISO 27001 documentation for Audits.
➢ Working on Encryption Policy for organization, SCCM, Onedrive and sharepoint requirements and best practice and security policy
➢ Working on Vulnerability scanning using qualys, nessus, nmap, metasploit, netsparker, wireshark, waf
➢ Writing automation script using python, creating rules and policies based on requirement
➢ Following OWASP TOP 10 standard
➢ Preparing documents related to tools and technologies and research/study on usage and best practice of various SIEM Tools, Cloud Services and Firewall and Antivirus tool for Organization.
➢ Blocking of IP address, Domain, Email id if found suspicious /spam /phishing /attack type on analysis or performing root cause analysis.
➢ Providing access to a drop box/ Data warehouse for internal and contract users based on requirements needed.
➢ Creating VPN access for external /contract users or on premises / off premises users.
➢ Moving Citrix to the cloud and Citrix workspace cloud setup
➢ Working on Microsoft azure from end to end - setup Installation, configuring, deployment and Admin level role performance.
➢ Working on Azure Identity management, Active Directory Domain services /certificate, Azure AD Connect, Azure Security.
➢ Creating of Custom Web rules for application protection and profiling
➢ Log analysis of the escalated alerts
➢ Perform security and firewall log analysis
➢ Worked Encryption and Onedrive best Practices guide and policy
➢ Worked on Access Control Policy and procedure.
➢ Working on DDOS and Anti DDOS and other attacks and their mitigation steps.
➢ Having hands on experiences with office 365 and online threat protection and advance threat protection.
➢ Involved in preparing Flow chart diagram for day to day services (process) / weekly and monthly based services(process) for organization and team of IT.
➢ Also involved in preparing architecture Diagram and processes flow for IT and IT Security Team.
➢ Maintaining daily /weekly and Monthly reports and handling SLA to be met.
➢ Deployment, Configuration and Administration of SIEM, Firewall, Websense, Antivirus, Cloud services tools for learning and detecting attacks and protecting applications and analysing user behaviour and maintaining audit and compliance.
➢ Worked on policy writing and documentation required for various technologies - encryption, data protection, usb device control, day to day task
➢ Handling end to end registering of domain, lookup required and site requirements.
➢ Handling firewalls rule while Web hosting to allow traffic flow based on requirements.
➢ Creating architecture diagram flow for processes to be carried on premises.
➢ Working on various reports and rule required while working with Forcepoint and CROWDSTRIKE.
➢ Handling IDS/IPS, WAF, Email Security, Site to site VPN, Firewall level Security and Log and threat level Security.
➢ Working on Alarm automation and IT based integration
➢ Working on Security Risk assessment.
➢ Assisted on windows autopilot to infra and comms team
➢ Installing, Configuring and maintaining common security tools such as Anti-Virus, FIM, IDS/IPS, SIEM.
➢ Working on Change Management and Incident Management
➢ Discussing with vendor and client related to Tools and Technologies before onboarding
➢ Taking active involvement in CAB meeting along with having own Change raised.
➢ Worked on Forcepoint endpoint, email and web and data protection from end to end from installation, migration, deployment and writing policy and regular expression required.
Achievements
➢ Am involved in providing documents for end to end task and responsibility for team.
➢ Nominated as chairperson for auditing task from operation team and security team.
➢ Worked on Incident Management plan for teams of SIEM - splunk from scratch.
➢ Introduced innovative methods and tools which improved process efficiency and in time saving.
➢ Working on various incidents and from scratch in Team.
Office, Security, Compliance, Cloud services, Windows, ISO 27001, It, Hosting, Support, Incident Management, Assessment, Helpdesk support, Firewall, Development, Online, Web, Guide, Performing, Audit, Waf, Processes, Https, Customer, Automation, Change management, Writing, Administration, Office 365, Research, Audit, Active Directory, Azure, Deployment, SharePoint, Microsoft azure, Python, Data Warehouse, Onboarding, Cloud, Management, Citrix, Data protection, CSR, Integration, Iot, Architecture
2018 - 2018
job
Information Security Analyst
Zib Cab.
Job Responsibilities
➢ Have worked on configuration of basics security and infra management
➢ Have worked on server monitoring and website hosting and for AD setup.
➢ Have worked on setup and migration from on Prem to on Cloud
➢ Have automated manual task to enhance performance and reduce manwork.
➢ Have worked on configuration of basics security and infra management
➢ Have worked on server monitoring and website hosting and for AD setup.
➢ Have worked on setup and migration from on Prem to on Cloud
➢ Have automated manual task to enhance performance and reduce manwork.
Information Security, Cloud, Management, Security, Website, Hosting, Analyst, Monitoring, Server
2014 - 2015
internship
Software Trainee
Manipal Hospital.
Job Responsibilities
◦ Installing PGP encryption and providing McAfee Endpoint security
◦ Establishes work priorities & procedures to ensure that daily work flow requirements and project deadlines are met
◦ Provided technical support to the various departments. Conduct weekly meetings with Management and Users to discuss the status
◦ Provided technical support to users supporting them remotely and onsite resolving Issues related to various application
◦ Have Knowledge on Firewalls/IDS/IPS and on secure gateway technologies (email & web).
◦ Preparing Architecture workflow of the work role, project, role hierarchy, implementation of the work, incident management and change management flow
◦ Collaborate with colleagues on authentication, authorization and encryption solutions
◦ Produce technical reports and formal documents with test findings
◦ Define, implement and maintain corporate security policies
◦ Advise and provide recommendations related to legal, technical and regulatory domains affecting IT
◦ Contribute to Global IT Risk & Assurance reporting through the delivery of insights from IT Shared Services and Experienced at managing risks across IT and Operations functions.
◦ Awareness of IT & Security governance models and standards e.g. ITIL, ISO27001
Very strong report writing, presentational and meetings skills.
◦ Having experience of planning and organizing risk management activities, or related governance and control experience
◦ Have hands on websense tools and have good planning and organizational skills view.
◦ Have knowledge on Tool Q-radar, Alien vault, IBM x force.
◦ Conducting weekly meeting with the IT team proving feedback regarding closed ticket
◦ Installing PGP encryption and providing McAfee Endpoint security
◦ Establishes work priorities & procedures to ensure that daily work flow requirements and project deadlines are met
◦ Provided technical support to the various departments. Conduct weekly meetings with Management and Users to discuss the status
◦ Provided technical support to users supporting them remotely and onsite resolving Issues related to various application
◦ Have Knowledge on Firewalls/IDS/IPS and on secure gateway technologies (email & web).
◦ Preparing Architecture workflow of the work role, project, role hierarchy, implementation of the work, incident management and change management flow
◦ Collaborate with colleagues on authentication, authorization and encryption solutions
◦ Produce technical reports and formal documents with test findings
◦ Define, implement and maintain corporate security policies
◦ Advise and provide recommendations related to legal, technical and regulatory domains affecting IT
◦ Contribute to Global IT Risk & Assurance reporting through the delivery of insights from IT Shared Services and Experienced at managing risks across IT and Operations functions.
◦ Awareness of IT & Security governance models and standards e.g. ITIL, ISO27001
Very strong report writing, presentational and meetings skills.
◦ Having experience of planning and organizing risk management activities, or related governance and control experience
◦ Have hands on websense tools and have good planning and organizational skills view.
◦ Have knowledge on Tool Q-radar, Alien vault, IBM x force.
◦ Conducting weekly meeting with the IT team proving feedback regarding closed ticket
Test, Web, Software, Regulatory, Incident Management, Support, Authentication, Implementation, It, ISO27001, Change management, Security, Workflow, Architecture, Management, Risk Management, ITIL, Operations, Writing
My education
?
-
2014
Rajiv Gandhi Technical University
Bachelors, Computer Science Engineering
Bachelors, Computer Science Engineering
?
-
2010
St Paul Sr Sec School
Secondary, N/a
Secondary, N/a
?
-
2008
St Pauls School
Secondary, N/a
Secondary, N/a
Priti's reviews
Priti has not received any reviews on Worksome.
Contact Priti Kumari
Worksome removes the expensive intermediaries and gives you direct contact with relevant talent.
Create a login and get the opportunity to write to Priti directly in Worksome.
37900+ qualified freelancers
are ready to help you
Tell us what you need help with
and get specific bids from skilled talent in Denmark