Ajit Kulkarni

Experience

• 

  ASHIDA Electronics

  Dec 2003 - Dec 2004

  Site Engineer

  •Installation of Relays used in India Railways.•Quality testing of the devices used for electrical faults.

• 

  PRIMENET GLOBAL PRIVATE LIMITED

  Sept 2005 - Nov 2006

  Network Engineer

  •Managing over 55 leased lines.•Monitoring network traffic.•Configuring and Management of CISCO, TECHROUTES Routers and Switches. •Mitigating common threats to networking devices and physical installations.•Configuring TELLABS, TATA LOOP MODEMS in master-slave mode.•Maintaining security with access-list using RFC 1918.

• 

  CMS Computer Company Limited

  Dec 2006 - Sept 2007

  L3 Engineer

  •Involved in the re-design of VSNL IPCC—II setup regarding introduction of CISCO ASA.•Troubleshooting medium-sized LAN, designing rack cabling for medium-sized LAN using patch-panel (AVAYA) and cable managers with EPBX (Structured Cabling).•Working on IP Telephony (Voice over Internet Protocol).•Troubleshooting of CISCO IP PHONES.•Working with CISCO CALL-MANAGER.•Working with VG224 & VG248 voice gateways.

• 

  Tata Consultancy Services

  Sept 2007 - now

  This was TCS internal project comprising all of the locations in India and overseas.•Worked as Firewall Security Administrator•Drafted and installed Firewall rules,•Implemented VPN tunnels between different TCS locations•Setup static/dynamic NAT on firewalls•Created new Subnets and configured new routes to reach them•Configured network IDS/IPS against the attacks•Monitor alerts and clear false positives•Managed Ticket queue assigned to himself and his group•Approved / Disapproved Change Requests•Managed ITIL (Incident & Problem) process•Business Continuity Planning for Firewall team Show less

  • Associate Consultant

    Sept 2007 - now

  • Firewall Engineer

    Sept 2007 - Apr 2012
• 

  TCS

  Sept 2007 - Apr 2012

  Firewall Administrator

  This was TCS internal project comprising all of the locations in India and overseas.•Worked as Firewall Security Administrator•Drafted and installed Firewall rules,•Implemented VPN tunnels between different TCS locations•Setup static/dynamic NAT on firewalls•Created new Subnets and configured new routes to reach them•Configured network IDS/IPS against the attacks•Monitor alerts and clear false positives•Managed Ticket queue assigned to himself and his group•Approved / Disapproved Change Requests•Managed ITIL (Incident & Problem) process•Business Continuity Planning for Firewall team Show less

• 

  Tata Communications

  May 2012 - Jul 2012

  IT Analyst

  • Compliance Assessment and Design,• Gap analysis and recommendations to meet compliance and regulatory requirements,• Vendor and third-party risk assessments,• ISO 27001 consulting including gap assessments, policy and procedure design, risk assessments, information,• Systems controls design and evaluation, • Security metrics design, measurement and survey,• Information security and compliance programs, incorporating international standards, regulatory requirements and industry best practices,• Information System Audit,• Compliance and risk-based audits, including IT security, IT operations, • IT Governance, Risk and Compliance (GRC) &• Information Security Strategy and Roadmap. Show less

• 

  Nest pensions

  Sept 2012 - Oct 2012

  Consultant

  Vulnerabilities Assessment & Penetration Testing.• Documentation of devices (servers & devices),• Formulation of plan to carryout VA over internal network/internet,• Tools finalization for carrying VA - Nessus & N-map,• Reporting/documentation of the tools output,• Submission of report in the format provided by client,• Auditing of client's Firewall & Intrusion Prevention devices &• Test spamming using client's mail server access.

• 

  Tata Communications

  Oct 2012 - Nov 2012

  Business Consultant

  ISO 27001 audit for India locations.• Define & document the scope,• Meeting with stakeholders,• Minutes of meeting of the discussions,• Preparation of questionnaire for the meetings w.r.t ISO 27001 audit,• Documentation of the discussions and collection of the evidences w.r.t ISO 27001 audit,• Documentation of policies, procedures & processes of the client & • Final submission of the final report.

• 

  HDFC Life

  Dec 2012 - Oct 2014

  Business Consultant

  Documentation of technical requirements i.e., architecture/network diagrams, port opening at Firewall, design of High Availability/ DR, OS, Protection Licenses etc.,•Documentation of non-technical requirements i.e., errors encountered, Data Flow Analysis discussion for Seclore IRM, sensitivity of data, types of documents supported by application etc., •Requirement management by continuous meeting with internal & external stake holders so as to meet expectations of the client,•Network design with respect to firewall,•Direction to the IS team for opening of ports following the Change Management process,providing appropriate explanation why this needs to be done. Follow up with respective teams for approving the CR request,•Testing of High Availability on periodic basis and document the same,•Conducting the trainings for respective teams before go-live for the same,•Writing updates to Senior management on basis of complete/incomplete work, no. of teams where go-live has been done, constraints in implementation, future plans with approx. dates, trainings conducted for teams, •Followed ITIL processes (like Incident, Problem, Change and Vendor management etc.) &•Conducted Data Flow Analysis for teams to understand how data originates and is distributed inside and outside organization and finally to be destroyed if needed i.e., complete life-cycle identified. Show less

• 

  Smart Communications

  Mar 2015 - Jun 2015

  Business Analyst

  •Conducted strategic planning to validate and perform critical business process analysis,•Developed and presented briefings to senior leaders organizational meetings,•Contributed in analysis and display of findings in comparison to ISO 27001/2,•Drafted and reviewed the organization process as per ISO 27001/2 process,•Interpreted data and produced written analyses and visual presentations for distribution to diverse internal audiences,•Participated and documented stakeholder minutes of meetings with identified teams,•Drafted written and verbal testimony, responses to potential questions from committee members, and updated information papers in preparation for hearings &•Analyzed program data and prepared reports for management in a CMMI level format Show less

• 

  Sony Pictures Entertainment

  Sept 2015 - Jun 2016

  Sarbanes Oxley Consultant

  • Developed and drafted project plans,• Reviewed and documented system infrastructure and developed improvement strategies,• Collected user requirements to inform decision-making process,• Manual review of issues on legacy systems like Access Control & Segregation of Duties,• Successfully handing over the completed project to other team for operation & maintenance,• Handling client queries in weekly status meetings &• Preparing minutes of meetings after meetings.

• 

  Barclays Investment Bank

  Oct 2016 - Jun 2017

  Sarbanes Oxley Tester

  Testing of Sox & Non-Sox controls.•Familiarity with latest SOX internal controls, and compliance,•Familiarity with general audit methodology and documentation process,•Knowledge of SOX testing compliance and documentation management,•Planning, conducting, and coordinating internal controls audits,•Conducted risk assessment of business operations and reporting findings to company management,•Worked with internal auditors and resolved SOX related issues &•Reviewed documents prepared by associates and pointed out descripancies. Show less

• 

  Credit Suisse

  Feb 2018 - Aug 2018

  Business Analyst

  Analysis of Business needs:•Documentation of Microsoft IRM User Cases•Requirement gathering for File Share Migration.

• 

  Shri Guru Gobind Singhji Institute of Engineering and Technology

  Oct 2018 - Oct 2018

  TCS Cyber Security Awareness Program

  Preparation for Presentation/Lecture/Training at Shri Guru Gobind Singhji Institute of Engineering and Technology for CISSP Chapters 3: Security Architecture and Engineering. The lecture was a part of TCS Cyber Security Awareness dated October 06, 2018. Also received letter of appreciation from TCS for the same.

• 

  Transamerica

  Oct 2018 - Oct 2019

  Business Analyst

  Managed 9 vulnerability scanners and identified vulnerabilities on infrastructures in scope,A member of a team involved in network design for installing scanners,Assisting the client security team in report management &Creating policies for the systems as per the client requirement.