SHUBHAM SRIVASTAVA

Senior IT Security Engineer

Deloitte & Touché US LLP

03.2016 - Current

Cyber Security Appliances’ Administration/Device Management, Security control Implementation including Patch and System Performance Management, Device Upgrades/Updates, Security Rules/Policy development, Break/Fix Incident response, RBAC, etc
Working as Device Management Lead to provide technology support, configuration, install, maintenance, upgrade, and troubleshoot server’s issues, networks, other security products for providing solutions to hardware/software problems
Worked as platform administrator on multiple Security product and solutions including SIEM Platforms/tools, Network DLP, Security Gateways (Email and Web Security), End Point Security and IDS/IPS tools to provide security services and technical solutions to clients on various issues
Investigating and troubleshooting system related issues and determining Root Cause Analysis (RCA) by working with product vendor/TAC team of issues for mission critical security devices and providing RCA reports to clients in case of any service downtime or production impact
Performing Web and email content filtering activities on Web & Email gateway solutions based on requirement or responsive security measures, i.e
SPAM attacks, etc
Responsible and also participate in complete Life Cycle Management of Managed Security products including SIEM Solutions, Web and Email Security, NDLP, IDS/IPS and Endpoint Security Products
Perform proactive monitoring of all devices to ensure 100% Uptime and availability of managed security with no downtime and keeping performance issues to minimal
Performing release notes analysis from product vendors to determine the necessity of implementation of respective patch updates and software upgrades to security appliances
Responsible for deploying complete Health Monitoring Package Alert/Rules for all SIEM Security Solutions across all existing clients and new clients
Performing the capacity/gap analysis on Security Information and Event Management tool to ensure security tool optimization and determining scope of Log Sources’ integration
Creating dashboards views, watch lists and rules for Analysts’ team as requested by client on various scenarios based on SIEM Log Sources
Creating Health and security-based use cases in SIEM for System health and security monitoring and updating same to use case repositories over online storage such as Atlassian Confluence
Creating multiple run/play books for the team as a part of knowledge sharing across the team to ensure proper response to clients with best corrective action
Providing regular on-call support as a part of operations on rotational basis to engineers and analysts during critical and potentially business impacting issues for fast resolution
Responsible for scheduling and implementing configuration level changes on managed security products and attend CAB (Change Advisory Board) meeting for change representation and approvals
Creating, testing and execution of the technical implementation plans on to various managed security products in client’s infrastructure
Informing/Notifying customers/clients on various existing security products in regards to their End of Life/End of Support cycle to ensure timely renewal and also help transition to different security products by providing technical recommendations.

Similar Profiles

Saurabh TiwariSaurabh Tiwari

Assistant Manager- Assurance (Accounting and Reporting Advisory) at Deloitte Touché Tohmatsu LLP (DTT)Assistant Manager- Assurance (Accounting and Reporting Advisory) at Deloitte Touché Tohmatsu LLP (DTT)