Namit Maurya

Experience

• 

  Tata Consultancy Services

  Mar 2010 - May 2012

  Systems Security Engineer

  -Maintenance and upgrade of SSIM, SEPM (Antivirus), Email Gateway and SCSP (HIDS)-Monitored and analyzed real-time and co-related events generated on SIEM tool-Modified/created co-relation rules for fine tuning of SIEM tool(Symantec SIEM - SSIM)-Remotely remediated the Trojan, Virus or Rootkit infected machine from Antivirus console- SEPM-Insured proper delivery of emails to the intended receiver via Symantec Messaging Gateway-Allowed safe internet access to the user on the basis of IP address with the help of Proxy-Properly interrogated and followed-up on security alerts generated in SCSP(HIDS) Show less

• 

  HCL Technologies

  Jun 2012 - Nov 2014

  Security Specialist

  -Policy creation and management of Symantec DLP, HP ArcSight, McAfee Web Gateway Proxy, Checkpoint FW, MAS and Nexpose VA tool-Preparation of weekly MOM and reports related to performance of team-Analysis and remediation of personal information disclosure incidents in Symantec DLP-Perform vulnerability assessment of client’s network infrastructure with Rapid 7 Nexpose-Analyze real time traffic using Checkpoint Smart View Tracker-Rule Creation using Smart Dashboard R70 based on change request-Manage rules on McAfee proxy, granting access to specific URL’s to users as per the request Show less

• 

  Happiest Minds Technologies

  Nov 2014 - Jun 2015

  Technical Lead- Cyber Security

  1.) Deployment and Implementation of McAfee Nitro Security SIEM.2.) Integration of different components of SIEM solution with the Manager(ESM)3.) Syslog Data source configuration to forward logs to the receiver component of SIEM4.) WMI logs source configuration to pull logs from Windows log sources5.) SIEM collector configuration to collect logs for DNS server, Exchange and SQL DB Audit logs6.) Creation of alarms, watchlist, views and reports as per the client requirementMost important: Created custom parsers to integrate telecom devices(custom application logs) which were not supported by McAfee out-of-the-box. Show less

• 

  IBM

  Jun 2015 - Jul 2015

  Senior Security Advisor

  I have been involved in implementation and delivering Training for IBM QRadar.I have implemented QRadar for customers of IBM and have provided assistance in SOC operations. I have vast experience in installing, configuring, deploying, administrating, using and maintaining QRadar consisting of tasks like:- Training of end users on how to use IBM QRadar (Basic and Advanced Courses)- Advising architects, Product managers, Client Project managers and Service managers. Writing proposals on how to install, configure, use, tune and maintain IBM QRadar HA environment- Installing and configuration QRadar test-environment. Writing installation and configuration documents- Testing and deploying changes- Managing roles, security profiles, authentication, users and permissions within QRadar- Managing licenses, configuring updates, internet connections, payload indexing- Manage system and sources in deployment manager- Adding log-sources (assets, vulnerabilities, flows and events)- Configuring Universal Device Support Modules(UDSM)- Collecting events and flows- Managing data aggregations- Mapping events to QID's (QRadar ID's)- Creating Log Source Extensions (LSX's)- Creating Custom Event/low Properties- Writing and testing regular expressions- Creating graphs and dashboards- Searching events and flows/creating search groups and saved searches- Creating use-cases/creating rules/anomaly rules/building blocks/assignment and exports of offenses and creating reports- Performance tuning/handling false positives- Incident and problem handling- Backup & Restore procedure- Configuring remote network and services- Define Retention Buckets / Store and Forward Procedures- Managing authorized services / configuring components- Defining reference sets / reference data collections- Adaptive Log Exporter / WinCollect Show less

• 

  Ingram Micro

  Sept 2015 - Jan 2021

  Professional Services Consultant and Trainer

  Professional Services Consultant for Security Products (McAfee and IBM). I am responsible for conducting PoCs, preparing BoQs, architecture designing, end to end implementation, conducting training of security solutions which include:- 1.) McAfee Nitro Security (SIEM), McAfee ePO , McAfee ENS, MOVE, McAfee DLPe, Drive Encryption2.) IBM QRadar (SIEM)Experienced in delivering official training courses of IBM QRadar: - 1.) BQ 102G2.) BQ 103G3.) BQ 150G4.) BQ 132G5.) BQ 203G Show less

• 

  Moro Hub

  Feb 2021 - now

  • Manager - Security Solutions and Pre Sales

    Jun 2024 - now

  • MSSP Lead - Cyber Security

    Feb 2021 - Oct 2024