Bharanidharan Muthusubramanian

Security operations: Provided my cyber strategies to engineer, design and monitor the security posture of the mission critical network containing NGFW such as Checkpoint, Palo Alto, Fortinet firewalls by continuous collaboration with first level network security operations support team, stakeholders, and external clients using change and incident management.

Cost savings: Saved $500,000 quarterly through cost efficient measurements by identification and recommendation of automation of tasks like regular firewall pushes, network devices backup, security alert monitoring using Python programs and Ansible scripts.

Leadership: Led a technical team of security engineers by providing mentorship and technical training including but not limited to process improvement validation, major network changes planning and BCP/DR exercises execution.

Patch management: Increased the security posture to 99.5% by providing high level technical expertise on vulnerability management scanners and conducting periodic production patching schedules for critical security devices such as Bluecoat ProxySG, Netscout Arbor, Citrix ADC and F5 load balancers.

Risk and compliance: Documented and conducted risk analysis in network architecture such as network testing, network audits, continuous network monitoring, security policy review, security control optimization, application security, IAM enhancements, vulnerability assessments, customer management, service level improvements and regulatory laws, frameworks to achieve 100% breach prevention.

Cloud security: Proactively presented my expert thoughts & observations of growth of AWS cloud security, SD-WAN advancements, SASE (Prisma access and Zscaler) technologies and persuaded clients to migrate to cloud infrastructure with software defined networks in place which subsequently improved user experience and application stability by 48% year on year (YoY) increase.

Network and infrastructure security: Developed technical solutions and troubleshooted IT assets such as Arbor, Firepower, Imperva WAF and VPN systems.

SME in threat detection: Squared back internal and external threats to zero by implementing NAC & BYOD systems such as HPE Clearpass Policy Manager and Cisco ISE. Provided critical incident response on suspected security breaches, vulnerabilities, and unauthorized access.

Packet capture analysis: Effectively analyzed the live traffic through constant packet captures using Wireshark for traffic inspection and protocol analysis.

Security solutions: Researched and studied the complete infrastructure of the network with data flow diagrams with security solutions like SSL, IPSEC, TLS, GRE for secured application flow.

Business delivery: Lead advisor on business partnership coordination and proposed wireless solutions (Cisco wireless controllers 5508, 2504 series and Aruba wireless controllers 7205, 7210 series & 200, 300 series access points) and implemented across 100 government sectors.