Rahman Syed Ali Fazlul

Designed and managed enterprise-wide infrastructure security solutions to safeguard access and protect data both at rest and in transit, ensuring robust authentication and data integrity.

Installed, configured, and maintained commercial Application Aware firewalls, proxies, WAFs, MDM and DDoS mitigation solutions; collaborated with teams and security vendors to implement best hardening practices for all security systems with timely software updates.

Designed, deployed, and configured end-to-end (Layer 4–Layer 7) infrastructure security controls to enable secure remote connectivity.

Spearheaded the integration of multi-factor authentication systems to bolster access control measures across the organization.

Ensured business continuity by developing disaster recovery strategies and backup plans for critical systems.

• Point of contact for new assigned infrastructure setup projects (network, security, & secure connectivity between sites/servers) for new branch offices, data centers and sharing the project timelines, challenges, risk involve along with action plan.
• Setup & roll-out 30+ commercial firewalls to customer locations within specific timeframes for IBM Asia-Pacific
• Coordinate and plan to achieve results according to schedule.
• Increased customer satisfaction by resolving expert level technical issues in Infrastructure security.
• Actively listened to customers, handled concerns quickly and escalated major issues to supervisor.
• Security incident reporting & highlighting mitigation action plan in routine client calls
• Achievement :- Customer Feedback “A truly Professional attitude in giving Services to Customer”

• Functioned as technical point of contact for project Admins and Managers focused on timely and successful completion of full lifecycles of assigned IT Infra projects across sites.
• Leading projects for Datacenter migration from UK to India & regular visit to London & Manchester.
• Managing & maintaining 50+ client security devices and monitoring security events for intrusion/ unauthorized access
• Liaised with team members, stakeholders and vendors to coordinate activities, provisioning, environment setup, risk mitigation and follow-up like supervising patching of production Servers, Network & UTM devices to mitigate Zero-day attack
• 
  

• Evaluated and adopted new technologies to address changing industry needs of internal and external IT security threats
• Investigated and addressed system issues to enhance usability and improve functionality.
• Developed suggestions for technical process improvements to optimize resources
• Manage implementation of new technological improvements resulting in increased efficiency in IT Infrastructure, Content, and Web Security

• Configuring ASA 5510 with CSC SSM module for content filtering
• Configuring IPSec VPN between branch office, and Remote Access VPN using Cisco VPN Client 4.6 for remote users with split-tunneling and monitoring it with logs.
• Use of CBAC, IOS Firewall, IDS for security policies enforcement.
• Use of Vulnerabilities scanners like Nesses and Penetration testing using Nmap.
• Plan, design, and configure routing and switching environment using routers 1700, 2600, and switches CE 500, catalyst 2950 switches.
• Dividing the network into different broadcast domains using Vlans, and configuring inter-Vlan routing with router-on a stick.
• Configuration of OSPF with areas and redistribution with Static subnets.
• Reporting to enterprise team on bi-weekly enterprise call.
• Configuration of ACS for AAA.
• Working on Active Directory domains & trust with GPO implementation.