Arvind Dhir

Experience

• 

  Hathway Cable & Datacom Ltd

  Jun 2006 - Nov 2007

  Technical Support Officer
• 

  HCL Technologies

  Jan 2008 - Aug 2008

  Techincal Help Desk (BB Talk Specialist)

  Installed, upgraded, configured and managed Windows XP professional, MS Office 2003.Handled the responsibility for the resolution of all problems and implementation of changes in IT infrastructure.Provided ISP Support, Antivirus, Firewall, Browser and Navigational issues.Performed day-to-day end user support which included, Configuration of Wireless Network, Maintenance of Mail System (Inbox) at client site, opening new mail & configuration of mail at client site using the remote assistance tool, preparation of Work Order, Job Entry Sheet & indent in One View Client.Was accountable for installation, troubleshooting & maintenance of Windows XP, MS Exchange NT client site.Successfully dealt with the broadband related issues including yahoo online protection, Hub and VOIP phones etc.Handled the frontline user queries for technical and general issues and occasionally the out of scope issues.Extended full assistance to team members on difficult customer queries and complex situation handled them with tact & diplomacy and instituted coordination among team members for operational issues.Handled the Team along with Team Leader and also in her absence. Show less

• 

  Wipro Ltd. - India

  Oct 2008 - Nov 2010

  Service Desk Engineer

  Role – Security Incident Coordinator, Major Incident Coordinator, Change Process Coordinator, Shift ManagerCustomer: Honeywell InternationalPrimary Responsibilities:Responsible for supporting IT related issues and managing the IT resources by incident and configuration management with proper coordination of local teams at their respective client offices in Asia Pacific region.Providing software distribution solution to install/ uninstall software and its patches.Providing support to end-users with regards to hardware and software related issues by remotely using LAN Desk Remote Control and Windows Net Meeting.Support for HGRA and VPN Client.Handling Security and Antivirus related cases.○ Taking care of SOC Incident detection and recording.○ Maintaining proper records all the virus cases in Excel sheet tracker.○ Taking regular follow ups regarding the dispatched alerts.○ End to end accountability for getting the mitigation done with the help of respective LOCAL IT teams.○ Collecting and verifying all the mitigation reports properly.○ Taking accountability of getting the virus incidents closed under the respective SLA’s.Handling the responsibilities of a Major Incident Coordinator.Act as a Change Coordinator handling all the responsibilities of Change Request Management.Consolidating data for Audit Purpose and communicating with them in case of any query.Auditing the tickets assigned by the Engineer and keeping quality check on them.Preparing and update the knowledge base with latest SOPs and troubleshooting documents.Giving internal process training to new joiners and all the team members as per requirement. Show less

• 

  Honeywell

  Nov 2010 - Sept 2012

  Sr. Security Analyst

  Role – Sr. Security Analyst for Global Security Operations Center (SOC): Cyber SecurityPrimary Responsibilities Working in cyber security division and handling the primary responsibilities like Security Incident Management, Forensic Analysis (Memory & Disk Forensics), Malware Analysis (Behavioral & Static Analysis), Email Threat Analysis(SPAM, Phishing, Spoofing, Spear Phishing, Fraudulent) etc.Sound understanding of Malware, Virus, Worm, Trojan horse, Rootkits, Backdoors, Spyware, Botnet, C&C, Honeypot etc. Monitor the health, status, and availability of security devices like IDS, IPS, Firewall, Gateway, VPN, AV, EPO etc.Respond to anomalistic events, manage crisis/incident response, and maintain the infrastructure that supports that role.Main focus on incident response and proactive threat detection.Develop, maintain, and troubleshoot various Information Security systems.Develop, maintain, and enforce security policies and procedures.Need to coordinate, respond and track mitigation of known threats.Provide regular input into process improvements assisting to identify opportunities for positive change, improving SOC's overall detection and response capabilities.Focus on event classification, event correlation, and root cause analysis (RCA).Define/create/implement the functionalities like sinkhole, Host based IOC (Indicators of compromise) screening (MIR), NIDS, Sys Admin Security, PCAP (Implement packet capturing technology), Email threat analysis for network visibility.Identification of malicious software through forensic analysis (Memory & Disk Forensics).Conduct hard drive acquisition and imaging for forensic analysis.After analyzing such media using a broad range of computer forensic tools like EnCase, Guidance, FTK Imager etc and need to summarize the findings in a technical report. Show less

• 

  IBM

  Sept 2012 - Nov 2017

  Digital Forensic Investigator (Global CSIRT)

  • Perform network and computer forensic analysis in support of IT security incidents.• Specialize in supporting IT security incidents.• Work with a team of incident responders to help locate, investigate, and remediate IT security incidents.• Ability to communicate and work closely and effectively with an incident response team, executive management, and targeted end users.• Forensics data capture and analysis using EnCase or FTK.• Perform intermediate level Malware analysis.• Provide assistance with global triage of systems of interest to an investigation.• Provide secondary support to corporate, legal, and commercial teams.• Understand & Maintain chain of custody as it relates to computer forensics and potential litigation.• Provide support to ongoing special projects such as regular system sampling for Malware analysis and URL/site analysis for potential phishing attempts for intelligence collection. Show less

• 

  Wipro Limited

  Nov 2017 - Apr 2018

  Practice Manager - Incident Response (Cyber Security & Risk Services)
• 

  Broadspectrum

  Apr 2018 - Jun 2018

  Project Manager Cyber Security & Risk Services

  Handled the Security Upliftment Project to complete the ISO27001 audit. Major areas of technology uplift were:Symantec DLP ImplementationSymantec ICT & ICECMDB ReconciliationAsset and Account ReconciliationPAM ImplementationTwo factor ImplementationPKI Implementation

• 

  Serco

  Jun 2018 - Sept 2020

  Senior Manager - CSIRT & SOC

  Oversee a team of 7 staff (Aust - 2; India - 5)Utilise Shared Services Team of between 50-80 staff to support as requiredMember of Board of Risk Competency (BRC) operating risk evaluation and mitigation at enterprise levelMember of Core Audit and Compliance Committee, targeting at the enterprise level and operational level Audits

• 

  IBM

  Sept 2020 - May 2023

  Client Security Delivery Executive (Cyber Security)

  Manage multiple portfolios with between $8m to $10m spendIdentify profitability of accounts and make appropriate adjustmentsManage internal cyber security projects in clients portfolioLead the growth and management of all facets of the business, primarily by using this global position and perspective to assist the local geographies

• 

  CSO Group

  May 2023 - now

  Technical Account Manager / Service Delivery Manager - Cyber Assurance Services