Debasis Behera

Experience

• 

  NH Infomedia Ltd - HP India & Few other IT companies.

  Jun 2007 - Mar 2011

  Linux System Administrator

  Worked as a skilled System Administrator focused on managing diverse IT infrastructure across multiple co-located Datacenters in different geographical regions. Adept at steering server operations, system migrations, and collaborating with vendors to ensure seamless project execution.Technical Expertise: Excellent understanding of Linux Systems (RHEL, SUSE, CentOS, openSUSE). Networking -Proficient in TCP/IP, LAN/WAN, OSI, Ethernet, VPN, SSH, PGP, PKI. Expertise Firewalls, Linux IPtables.In-depth understanding of SMTPS, HTTPS, SFTP, SSHFS. Proficient in managing Postfix, Cyrus, Nginx, Apache, Tomcat, JBoss. Sound understanding of MySQL, Oracle, PgSql database. Asterisk for Interactive Voice Response System, Software EPBX, Conference Bridges, IP instruments, etc. Expertise in VMWARE, ORACLE VM.Onsite Exposure of Datacenter:Demonstrated hands-on experience and familiarity with onsite Datacenter operations. Show less

• 

  Netcore Cloud

  Mar 2011 - Apr 2017

  Head - Information Security

  - Established and managed enterprise-wide information-security program including ISO 27001 implementation and audits.- Planning for and Facilitation of customer audits. Managed customers during presales, contracting and due diligences (client's audits).- Monitored & tracked all internal and external audit findings and facilitate closure.- Evaluated technical solutions, identified security risks, and provided expertise in Linux, Oracle VM & cloud security solutions (AWS, DigitalOcean & RackSpace).- Established comprehensive security measures, including routing, firewall policies. Oversee companywide efforts to identify and evaluate all critical systems.- Proactively identify information security risks and develop solutions to mitigate those risks. Show less

• 

  DBS Bank

  Apr 2017 - Jul 2018

  Senior Manager - Information Security Services

  - Conducted vendor risk assessment and audits of different banking vendors.- Configuration compliance review of network, servers and devices as per established policy and baseline standard. This includes manual reviews as well as using automated scripts and tools. - Initiated and coordinated Vulnerability Assessments.- Privileged user’s activity reviews, review of all assign events, investigating of events and intitate closure. - Weekly review of firewall rules, it includes review of all CR against the new implemented rules. Investigate and taking justification of unused rules and to initiate removal of unwanted rules from firewall. Show less

• 

  HCLTech

  Jul 2018 - Nov 2020

  Manager - Risk & Compliance

  - Managed compliance operations and collaborated with stakeholders on Enhance Compliance Assessments for different client engagements working from offshore ODCs. This includes review MSA for applicability (R&C sections) and drive the Enhance Compliance Assessments. - Coordinated security audits (ISO 27001, 9001, 20000, SOC1 Type II, GDPR, PCI DSS) and closure of non-conformities.- Collaborated with Delivery Compliance Partner and Cyber Security team on investigations and validations.

• 

  Mphasis

  Nov 2020 - now

  - Lead technology audits and risk assessments for corporate IT infrastructure, including multi cloud platforms and SaaS services across Mphasis.- Architect cloud security solutions considering all aspects of information security, infrastructure, data, applications, networks, and identity & access management.- Collaborate with IT and business teams to design and implement robust cloud security solutions.- Evaluate and select tools and technologies for cloud security, ensuring alignment with enterprise IT and security solutions.- Lead migration of existing security solutions and setup of new security solutions on cloud. - Partner with business teams to build business cases for cloud security frameworks and technologies.- Prepare and present risk-based reports and presentations to leaders.- Manage an engineering team for DLP, CASB, ZTNA, CSPM secure policy design, reviewing Security Exceptions and Security Change Requests. Show less

  • Sr. Manager & Lead - Technology Risk

    Dec 2023 - now

  • Manager - Technology Risk

    Nov 2020 - Dec 2023