Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Sajith Vijayan

Doha

Summary

Dynamic Security Professional with over 12 years of experience in designing, implementation & management of security architecture. Expertise in developing and maintaining enterprise security architecture aligning to business strategy. Delivered subject matter expertise for business-driven projects that requires security guidance and oversight.

Overview

16
16
years of professional experience
1
1
Certification

Work History

T S Controller Network & Security

Hamad International Airport/Qatar Airways
04.2016 - Current
  • As a Security Architect, responsible for design and implementation of organization's security architecture, and delivering security solutions as required.
  • Applying security architecture frameworks such as SABSA, TOGAF translating business requirements to executable security requirements.
  • Responsible for periodic architecture review, Security Gap Assessment and proposing design changes.
  • Involved in drafting roadmaps and deriving technical strategy, translating business requirements into an architectural blueprint.
  • Involved in developing risk assessment methodologies and IS risk register to document and mitigate risks against the critical IT systems and services.
  • Transforming IT architecture design to support Zero Trust Security principles.
  • Designed and transformed legacy perimeter security infrastructure to multilayered security architecture.
  • Involved in consulting and design of architecture for secure cloud deployment.
  • Involved in design and deployment of Cisco Identity Services Engine (ISE) NAC solution across airport's wired and wireless network: Endpoint Authentication, Authorization and Security Posturing.
  • Involved in designing and migrating critical applications and services hosted in data center from legacy firewall architecture to Palo Alto Next Generation Firewalls.
  • Involved in design and implementation of DMZ architecture for the Airport.
  • Designed secured network access (extranets) for business partners and contractors.
  • Involved in design and integration of Security Operations Center (SOC) and National Cyber Security-SOC.
  • Prepared RFP, SOW, HLD and LLD ensuring project and user requirements are incorporated.
  • Developed and maintaining SOP's, configuration templates and system configuration baseline checklists.
  • Participating in periodic internal and external audits such as ISO 20000, ISO 27000 and PCI-DSS, document and address audit findings.
  • Reviewing CVEs reported through various threat intelligence sources, assess the environmental scores, and propose mitigation actions for respective systems.
  • Effectively participating in cyber security red & blue teaming exercises to overhaul security and process controls.

Team Lead-Network & Security

IBM
08.2015 - 03.2016
  • As a Network Security Team Lead, providing technical support for fault diagnosis, analysis & complete management of LAN, WAN and Security Architecture.
  • Reviewing the change requests and representing in Change Advisory Board (CAB) as Network Security team stakeholder.
  • Maintaining and administering perimeter security systems such as firewalls and intrusion detection systems.
  • Performing network security audits, periodic backup and recovery.
  • Timely resolution of high severity incidents within the SLA and performing Route Cause Analysis and taking measures to prevent the incidents in future.
  • Leading the activities like Hardware/Software Migration & network implementation.
  • Change management: Risk Assessment, planning, and execution of periodic change management.
  • Problem Management: Performed Root Cause Analysis for high severity/recurrent incidents and taking measures to prevent incidents in future.
  • Implemented Reverse Proxy, access policies and federated identity for applications using F5 Access Policy Manager.
  • Developed iRules in F5 for traffic management, content rewrite and event-based traffic controls.

Senior Engineer

MindTree Limited
04.2013 - 07.2015
  • As a Senior Engineer, performing analysis of network security needs and contributes to design, integration, and installation of hardware and software.
  • Analysing, troubleshooting and resolving network problems remotely and on-site.
  • Configure networks to ensure their smooth and reliable operation for fulfilling business objectives and processes.
  • Timely resolution of high severity incidents within the SLA and performing Route Cause Analysis and taking measures to prevent the incidents in future.
  • Leading the Technology forum team to deliver innovative ideas and taking initiatives to fix the reoccurring issues.

Senior Network Engineer & Operations Lead

IBM
11.2009 - 04.2013
  • Provided 2nd and 3rd level troubleshooting/support to maintain network and security infrastructure in ensuring high availability and minimizing downtime.
  • Performing Network Configuration changes specific to Client requirements.
  • Re-engineer the Network Architecture with latest technology features.
  • Provide feasible solutions to the technical problems, in the shortest possible time.
  • Implementing Policies in checkpoint firewall as per client requirements.

Education

Bachelor of Science (B.Sc) - Computer Science

K.V.V.S College of Science & Technology
04.2008

Skills

  • SABSA TOGAF COBIT NIST CSF
  • Threat Hunt Threat Modelling Cyber Kill Chain MITRE ATT&CK
  • Cisco ASA FTD Check Point R65- R80 VSX Fortinet UTM FortiGate NGFW Palo-Alto
  • Cisco Secure Endpoint Forcepoint DLP Symantec Trend Micro Elastic Endgame
  • IPSEC Site-to-Site Remote Access SSL DMVPN Cryptography PKI HSM
  • F5 BIG-IP LTM GSM ASM(WAF) APM
  • Federated Identity AAA EAP 8021X RADIUS NTLM KERBEROS SAML OAUTH OPENID
  • VMware vSphere vCenter Hyper-V SDN NSX Azure IAM Cloud Security IAAS PAAS SAAS
  • MS Windows 2K 2008 R2 2012R2 2016 Linux Kali-Linux Python
  • ISO 27000 GDPR PCI-DSS ISO 20000 SOC1 SOC2 Third Party Assessment
  • Wireshark NMAP NESSUS Security Onion SIEM -IBM Qradar LogRhythm

Certification

  • Certified Information Systems Security Professional (CISSP)
  • Cisco Certified Internetwork Expert (CCIE-Security)
  • Certified Ethical Hacker (CEH)
  • Microsoft Certified: Azure Fundamentals (AZ-900)

Timeline

T S Controller Network & Security

Hamad International Airport/Qatar Airways
04.2016 - Current

Team Lead-Network & Security

IBM
08.2015 - 03.2016

Senior Engineer

MindTree Limited
04.2013 - 07.2015

Senior Network Engineer & Operations Lead

IBM
11.2009 - 04.2013

Bachelor of Science (B.Sc) - Computer Science

K.V.V.S College of Science & Technology

Similar Profiles

  • Kamran Zahid

    Kamran ZahidKamran Zahid

    Safety Technical Officer at Hamad International Airport-Qatar AirwaysSafety Technical Officer at Hamad International Airport-Qatar Airways

  • Salim Pawne

    Salim PawneSalim Pawne

    Landside Shift Coordinator at HAMAD INTERNATIONAL AIRPORT (Qatar Airways Group)Landside Shift Coordinator at HAMAD INTERNATIONAL AIRPORT (Qatar Airways Group)

  • MOHD IRFAN

    MOHD IRFANMOHD IRFAN

    Customer Service Duty Supervisor at Qatar Airways, Hamad International AirportCustomer Service Duty Supervisor at Qatar Airways, Hamad International Airport

  • Sama Sajeed

    Sama SajeedSama Sajeed

    Intern at Karuna Medical CollegeIntern at Karuna Medical College

  • JERMAINE NJUGUNA

    JERMAINE NJUGUNAJERMAINE NJUGUNA

    Barista at Ali Bin AliBarista at Ali Bin Ali

CREATE PROFILE