Chandan Singh
Antioch,CA
Summary
Dedicated professional with proven performance in IT Security management, Security Operations leadership and communication. Detail-oriented in problem-solving and planning. Ready to make an immediate contribution to your organization.
Overview
17
17
years of professional experience
1
1
Certification
Work History
Principal Security Architect
Blue Shield Of California
01.2022 - Current
- Working as Principal Security Architect under Information Security Risk Management function in Blue Shield
- Manage Identity & Access Management using Ping Identity, Azure AD, Radiant Logic and Azure Key Vault
- Building Security Automation in Azure Cloud for DevSecOps and Security Remediations using Ansible
- Review scrum backlogs for prioritization using Jira & Fusion board
- Manage Security Engineering & Security Operations Requirements for business units
- Manage HIPPA Security Risk Assessment as per NIST framework
- Manage Security Architecture Review and Assessment for allocated business portfolios (Legal Department & Consumer business of Blue Shield)
- Perform Security Control effectiveness across Azure Cloud
- Collaborate with business units to securely migrate Servers, Applications and Data from on-premise systems to Azure Cloud
- Coordinate with Risk Management team & IT stakeholders for sharing audit evidence with external auditors
- Articulate and prioritize security requirements for business portfolios for secure creation & enhancement of health care products
- Provide leadership guidance on DLP solutions like CASB, Endpoint Security solutions like Antivirus & Antimalware, SIEM solutions like Azure Sentinel, Splunk ES etc
- Provide leadership guidance on Application Security, Container & Kubernetes Security from security testing of the code to the container image scanning
- Manage Vulnerability Management program for Applications, Network & Infrastructure
- Develop and maintain security guardrails for Infrastructure, Application & Cloud Security
- Develop & maintain security patterns inline to NIST & HITRUST framework in Azure Cloud
- Provide leadership guidance on securing PHI, PII & other company confidential across infra, Cloud & apps
- Provide leadership guidance on securing data transfer to third parties using API, SSO etc
- Review and evaluate third party vendors security posture
- Provide KPI to leadership and management.
Senior Security Manager
Microland Limited
08.2014 - 12.2021
- Built a Team of 30+ Security Analysts in Security Operations Center
- Built process around SOC like Security Incident Management Process, Change Management Process and Problem Management process
- Built Process to quickly address critical and major Security threats in Client Environment
- Defined Onboarding and off boarding process for vulnerability assessment and SIEM
- Developed Standard Operating Procedures for Web Security, Data Security, Endpoint Security, PS Management and vulnerability assessment
- Data Source configuration with Splunk
- Managing Web Security, Data Security, Endpoint Security, Application Security
- Handling Vulnerability assessment across customer environment
- Responsible for Setting up SOC for the Client at Offshore
- Completed successful transition of SOC Services from Onsite Support to Offshore Support
- Implemented PING Identity solution
- Defined Security event and Incident management SOC solutions for Microland
- SPOC for existing Client SOC Operations
- Involved in pre-sales part of SOC Services.
- Conducted drills to keep security staff on alert and proficient with established plans.
- Collaborated with senior management to develop and implement strategies to mitigate security risks.
Associate Operations Manager
Cognizant Technology Solutions
06.2012 - 08.2014
- Responsible for Security Service Delivery, Escalations of SOC Services
- Handling RFP/RFI/RFQ on Security Solution
- Development of Correlation Rules on Arcsight, RSA Envision
- Deployment of SIEM tool like RSA envision, Arcsight, RSA Security Analytics
- Security Operations Management for Financials and Retail Clients
- Preparation of Security Reports and progress reports to executive leadership
- Analyzing and Investigating Security Incidents using SIEM tool
- Developed Process for Security Incident Management Process specific to Financial Client SOC environment
- Vulnerability Assessment and mitigation using Qualysguard VA tool
- Understanding Escalations and communicate to stake holders and follow up on action plan
- Client Meetings and Presentations
- Security Support Transition from OnSite to Offshore
- Handling Security Incidents using RSA Archer module with Security Analytics.
Senior Security Engineer
Bangalore International Airport
03.2011 - 06.2012
- Co-ordination with different teams for Integration of new Services and Devices on Boarding
- Creating new rules, reports and Dashboards in Arc sight Console
- Active member in department for new integrations and new tool development across various plat forms and domains
- Radware Load Balancer configurations and maintenance
- Maintenance of Juniper ISG 2000 firewall
- Maintenance of Checkpoint Firewall
- Maintenance of Fort iGATE Firewall
- Vulnerability Assessment using Qualysguard
- Troubleshooting VPN issues
- Monitoring the Intrusion Detection and prevention module on Juniper Firewall.
- Coordinated with third-party security information and event management (SIEM) providers to maintain protections and predict threats.
Network Operations Analyst
AT&T Communications
08.2009 - 01.2010
- Troubleshooting MLPPP WAN T1 circuits for the AT&T US customers
- Co-coordinating with Local Exchange Carrier during troubleshooting
- Creating and modifying process documents
- Co-coordinating for the Technicians dispatch to the site in case of hardware replacement at the customer site
- Managing AT&T router, Smart Jack, CSU/DSU placed at the customer premise
- Co-coordinating with different internal group during major customer outage
- Involve in bridge calls during top-10 AT&T customer outage for the service restoration
- Monitoring for network nodes, application availability and Servers.
Network Security Engineer
Oracle India Pvt. Ltd
03.2007 - 08.2009
- Responsible for provisioning of Network Nodes (Cisco Switches, Routers), Policy implementation on Firewalls (Net screen) and Load balancer (BIGIP, F5 Networks) in Data center
- Monitoring Security Events using QRadar SIEM tool
- Handling offences in Qradar
- Maintaining the Oracle's Global WAN network in co-ordination with ISP's across the globe using the monitoring tools like HPOV, Net cool, Cisco Works
- Monitoring IDS (Intrusion Detection System) to prevent any virus/worm outbreak in Oracle's Global Network which includes technologies like ISM (Intrushield Manager), Sensor
- Weekly Vulnerability Assessment across major subnets in Oracle Network using QualysGuard
- Maintaining BEA System's Global Network in co-ordination with ISP's across the globe using the tools like Nagios and Solar Winds
- Worked with Auto Ticketing System
- Mentoring Team members on day-to-day Network Operations
- Provide network administration and ensure high level of reliability and stability along integrated systems
- Partner with cross-functional teams of internal and external stakeholders to resolve day-to-day network issues
- Configuring of BIGIP and Firewall for On demand customers
- Leading the Multi-customer outage con-calls for early restoration
- Teamed with supervisory staff in evaluating work status, addressing and resolving problems, and ensuring compliance with quality and quantity standards
- Network Assessment and Documentation (including technical, operational, and economic assessment)
- Help establish guidelines and standards for Change Procedures.
Education
Masters in Information System - Information Systems Management
University of Arizona Global Campus
Arizona City, AZ11.2024
Bachelor of Engineering - Computer Science
Visvesvaraya Technological University
Belgaum, India08.2006
Skills
- Security Management
- Information Security
- Cyber Security Management
- DevSecOps
- IT Security Operations
- IT SOC Management
- Security Operations Center
- Application Security
- Cloud Security
- Risk and Compliance
- Identify and Access Management
- People Management
Certification
- Microsoft Azure Fundamentals
- Vulnerability Management by Qualys
Timeline
Principal Security Architect
Blue Shield Of California
01.2022 - Current
Senior Security Manager
Microland Limited
08.2014 - 12.2021
Associate Operations Manager
Cognizant Technology Solutions
06.2012 - 08.2014
Senior Security Engineer
Bangalore International Airport
03.2011 - 06.2012
Network Operations Analyst
AT&T Communications
08.2009 - 01.2010
Network Security Engineer
Oracle India Pvt. Ltd
03.2007 - 08.2009
Masters in Information System - Information Systems Management
University of Arizona Global Campus
Bachelor of Engineering - Computer Science
Visvesvaraya Technological University
Similar Profiles
Maria Del Rosario ColeMaria Del Rosario Cole
Implementation Manager, Consultant at California Physicians Services - Blue Shield of CaliforniaImplementation Manager, Consultant at California Physicians Services - Blue Shield of California
Mikayla MartinMikayla Martin
Health Insurance Customer Representative at TTEC contracted to Blue Shield of CaliforniaHealth Insurance Customer Representative at TTEC contracted to Blue Shield of California
Laxman TimalsinaLaxman Timalsina
Database Developer at Blue Shield of CaliforniaDatabase Developer at Blue Shield of California
Sagar KodurupakaSagar Kodurupaka
Unix/Linux Administrator at Blue Shield of CaliforniaUnix/Linux Administrator at Blue Shield of California
Sharonda ThornhillSharonda Thornhill
Caregiver at The KeyCaregiver at The Key